BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [local] TP-Link VN020 F3v(T) TT_V6.2.1021) - DHCP Stack Buffer Overflow
- [webapps] WordPress Frontend Login and Registration Blocks Plugin 1.0.7 - Privilege Escalation
- [webapps] Kentico Xperience 13.0.178 - Cross Site Scripting (XSS)
- [local] RDPGuard 9.9.9 - Privilege Escalation
- [webapps] WordPress Depicter Plugin 3.6.1 - SQL Injection
- [webapps] SureTriggers OttoKit Plugin 1.0.82 - Privilege Escalation
- [local] Microsoft Windows 11 Pro 23H2 - Ancillary Function Driver for WinSock Privilege Escalation
- [local] VirtualBox 7.0.16 - Privilege Escalation
- [remote] Apache ActiveMQ 6.1.6 - Denial of Service (DOS)
- [webapps] ERPNext 14.82.1 - Account Takeover via Cross-Site Request Forgery (CSRF)
Zoom Patches 4 High-Severity Vulnerabilities
/in General NewsZoom has patched five vulnerabilities in its applications, including four high-severity flaws.
The post Zoom Patches 4 High-Severity Vulnerabilities appeared first on SecurityWeek.
SecurityWeek – Read More
Signal no longer cooperating with Ukraine on Russian cyber threats, official says
/in General NewsThe encrypted messaging app Signal has stopped responding to requests from Ukrainian law enforcement regarding Russian cyber threats, a Ukrainian official claimed, warning that the shift is aiding Moscow’s intelligence efforts.
The Record from Recorded Future News – Read More
Update your iPhone now: iOS 18.3.2 patches a serious web browser bug
/in General NewsThis update also re-enables Apple Intelligence for those who previously had turned off this feature. Here’s how to fix that, too.
Latest stories for ZDNET in Security – Read More
The CISO as Business Resilience Architect
/in General NewsTo truly become indispensable in the boardroom, CISOs need to meet the dual demands of defending against sophisticated adversaries while leading resilience strategies.
darkreading – Read More
CYREBRO’s AI-Native MDR Platform Earns Silver at the 2025 Globee Cybersecurity Awards
/in General NewsTel Aviv, Israel, 12th March 2025, CyberNewsWire
Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – Read More
China’s Volt Typhoon Hackers Dwelled in US Electric Grid for 300 Days
/in General NewsDragos case study reveals that Volt Typhoon hacked the US electric grid and stole information on OT systems.
The post China’s Volt Typhoon Hackers Dwelled in US Electric Grid for 300 Days appeared first on SecurityWeek.
SecurityWeek – Read More
Pentera nabs $60M at a $1B+ valuation to build simulated network attacks to train security teams
/in General NewsStrong and smart security operations teams are at the heart of any cybersecurity strategy, and today a startup that builds tooling to help keep them on their toes is announcing some funding on the back of a lot of growth. Pentera — which has built a system that launches simulations of network attacks to stress […]
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
Aptori Now on Google Cloud Marketplace for AI-Powered Security and Automated Risk Remediation
/in General NewsSan Jose, United States / California, 12th March 2025, CyberNewsWire
Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – Read More
PowerSchool Portal Compromised Months Before Massive Data Breach
/in General NewsHackers used compromised credentials to access PowerSchool’s PowerSource portal months before the December 2024 data breach.
The post PowerSchool Portal Compromised Months Before Massive Data Breach appeared first on SecurityWeek.
SecurityWeek – Read More
The Rising Threat of API Attacks: How to Secure Your APIs in 2025
/in General NewsAPI attacks are constantly on the rise, with a recent alarming study showing that 59% of organizations give…
Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – Read More