BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [webapps] Discourse 3.2.x - Anonymous Cache Poisoning
- [remote] Microsoft PowerPoint 2019 - Remote Code Execution (RCE)
- [remote] ScriptCase 9.12.006 (23) - Remote Command Execution (RCE)
- [local] Sudo chroot 1.9.17 - Local Privilege Escalation
- [local] Sudo 1.9.17 Host Option - Elevation of Privilege
- [remote] Microsoft Outlook - Remote Code Execution (RCE)
- [webapps] Stacks Mobile App Builder 5.2.3 - Authentication Bypass via Account Takeover
- [local] Microsoft Defender for Endpoint (MDE) - Elevation of Privilege
- [remote] gogs 0.13.0 - Remote Code Execution (RCE)
- [remote] Wing FTP Server 7.4.3 - Unauthenticated Remote Code Execution (RCE)
Does your Brother printer have an unpatchable security flaw? How to check – and what you can do
/in General NewsIf your Brother printer is affected, you need to change its default admin password now. Here’s how.
Latest stories for ZDNET in Security – Read More
NASA Needs Agency-Wide Cybersecurity Risk Assessment: GAO
/in General NewsNASA needs to perform an agency-wide cybersecurity risk assessment and to complete important cybersecurity tasks for each of its projects.
The post NASA Needs Agency-Wide Cybersecurity Risk Assessment: GAO appeared first on SecurityWeek.
SecurityWeek – Read More
AI-Themed SEO Poisoning Attacks Spread Info, Crypto Stealers
/in General NewsMalicious websites designed to rank high in Google search results for ChatGPT and Luma AI deliver the Lumma and Vidar infostealers and other malware.
darkreading – Read More
How 2 Ransomware Attacks on 2 Hospitals Led to 2 Deaths in Europe
/in General NewsTwo deadly Ransomware Attacks on European hospitals show cybercrime now risks lives not just data with patients dying after treatment delays.
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
Swiss nonprofit health organization breached by Sarcoma ransomware group
/in General NewsSarcoma, a recently emerged cybercrime group, was responsible for a data breach of Swiss health nonprofit Radix, according to a statement by the Zurich-based organization.
The Record from Recorded Future News – Read More
Why Cybersecurity Should Come Before AI in Schools
/in General NewsThe sooner we integrate cybersecurity basics into school curriculum, the stronger and more resilient our children — and their futures — will be.
darkreading – Read More
SquareX Reveals that Employees are No Longer the Weakest Link, Browser AI Agents Are
/in General NewsPalo Alto, California, 30th June 2025, CyberNewsWire
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
‘Disgruntled’ British IT worker jailed for hacking employer after being suspended
/in General NewsA U.K. man is serving a seven-month jail term because he changed access credentials and did other damage to his employer’s systems after he was suspended from the job.
The Record from Recorded Future News – Read More
Casie Antalis Named Executive Director of CISA
/in General NewsCasie Antalis is the new executive director of the Cybersecurity and Infrastructure Security Agency after the departure of Bridget Bean.
The post Casie Antalis Named Executive Director of CISA appeared first on SecurityWeek.
SecurityWeek – Read More
Airoha Chip Vulnerabilities Expose Headphones to Takeover
/in General NewsVulnerabilities in Airoha Bluetooth SoCs expose headphone and earbud products from multiple vendors to takeover attacks.
The post Airoha Chip Vulnerabilities Expose Headphones to Takeover appeared first on SecurityWeek.
SecurityWeek – Read More