BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [webapps] Moodle 4.4.0 - Authenticated Remote Code Execution
- [remote] Microsoft SharePoint 2019 - NTLM Authentication
- [remote] gogs 0.13.0 - Remote Code Execution (RCE)
- [remote] Wing FTP Server 7.4.3 - Unauthenticated Remote Code Execution (RCE)
- [remote] OneTrust SDK 6.33.0 - Denial Of Service (DoS)
- [remote] PX4 Military UAV Autopilot 1.12.3 - Denial of Service (DoS)
- [webapps] Pterodactyl Panel 1.11.11 - Remote Code Execution (RCE)
- [remote] freeSSHd 1.0.9 - Denial of Service (DoS)
- [remote] McAfee Agent 5.7.6 - Insecure Storage of Sensitive Information
- [remote] Microsoft Excel 2024 Use after free - Remote Code Execution (RCE)
Top Apple, Google VPN Apps May Help China Spy on Users
/in General NewsApple and Google espouse strong values about data privacy, but they allow programs from a Big Brother state to thrive on their app stores, researchers allege.
darkreading – Read More
Cloudflare blocks largest DDoS attack – here’s how to protect yourself
/in General NewsBut, even bigger attacks are on their way. Here’s what you can do to slow them down and hopefully stop them in their tracks.
Latest stories for ZDNET in Security – Read More
Can AI run a physical shop? Anthropic’s Claude tried and the results were gloriously, hilariously bad
/in General NewsAnthropic’s AI assistant Claude ran a vending machine business for a month, selling tungsten cubes at a loss, giving endless discounts, and experiencing an identity crisis where it claimed to wear a blazer.Read More
Security News | VentureBeat – Read More
How runtime attacks turn profitable AI into budget black holes
/in General NewsAI inference attacks drain enterprise budgets, derail regulatory compliance and destroy new AI deployment ROI.Read More
Security News | VentureBeat – Read More
Prolific cybercrime gang now targeting airlines and the transportation sector
/in General NewsThe fresh wave of attacks targeting airlines comes soon after the hackers hit the U.K. retail sector and the insurance industry.
Security News | TechCrunch – Read More
‘CitrixBleed 2’ Shows Signs of Active Exploitation
/in General NewsIf exploited, the critical vulnerability allows attackers to maintain access for longer periods of time than the original CitrixBleed flaw, all while remaining undetected.
darkreading – Read More
How Anthropic’s new initiative will prepare for AI’s looming economic impact
/in General NewsThe program, which includes research grants and public forums, follows the company CEO’s dire predictions about widespread AI-induced job loss.
Latest stories for ZDNET in Security – Read More
New Stealthy Remcos Malware Campaigns Target Businesses and Schools
/in General NewsForcepoint’s X-Labs reveals Remcos malware using new tricky phishing emails from compromised accounts and advanced evasion techniques like…
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
Over 1,000 SOHO Devices Hacked in China-linked LapDogs Cyber Espionage Campaign
/in General NewsThreat hunters have discovered a network of more than 1,000 compromised small office and home office (SOHO) devices that have been used to facilitate a prolonged cyber espionage infrastructure campaign for China-nexus hacking groups.
The Operational Relay Box (ORB) network has been codenamed LapDogs by SecurityScorecard’s STRIKE team.
“The LapDogs network has a high concentration of victims
The Hacker News – Read More
Windows’ Infamous ‘Blue Screen of Death’ Will Soon Turn Black
/in General NewsAfter more than 40 years of being set against a very recognizable blue, the updated error message will soon be displayed across a black background.
The post Windows’ Infamous ‘Blue Screen of Death’ Will Soon Turn Black appeared first on SecurityWeek.
SecurityWeek – Read More