BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [local] TP-Link VN020 F3v(T) TT_V6.2.1021) - DHCP Stack Buffer Overflow
- [webapps] WordPress Frontend Login and Registration Blocks Plugin 1.0.7 - Privilege Escalation
- [webapps] Kentico Xperience 13.0.178 - Cross Site Scripting (XSS)
- [local] RDPGuard 9.9.9 - Privilege Escalation
- [webapps] WordPress Depicter Plugin 3.6.1 - SQL Injection
- [webapps] SureTriggers OttoKit Plugin 1.0.82 - Privilege Escalation
- [local] Microsoft Windows 11 Pro 23H2 - Ancillary Function Driver for WinSock Privilege Escalation
- [local] VirtualBox 7.0.16 - Privilege Escalation
- [remote] Apache ActiveMQ 6.1.6 - Denial of Service (DOS)
- [webapps] ERPNext 14.82.1 - Account Takeover via Cross-Site Request Forgery (CSRF)
Is Your Cloud App Server Secure? Best Practices for Data Protection
/in General NewsAlmost every company nowadays depends on cloud computing since it is a necessary tool in the world of…
Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – Read More
Whopping Number of Microsoft Zero-Days Under Attack
/in General NewsThe number of zero-day vulnerabilities getting patched in Microsoft’s March update is the company’s second-largest ever.
darkreading – Read More
Trump Taps Sean Plankey To Fill Empty CISA Director Chair
/in General NewsPlankey has served in numerous cybersecurity positions in the past, including during the first Trump presidency from 2018-2020.
darkreading – Read More
Fake Binance Wallet Email Promises TRUMP Coin, Installs Malware
/in General NewsScammers use fake Binance wallet emails to lure users with TRUMP Coin, but instead, they install malware that grants hackers full control over victims’ devices.
Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – Read More
Hot Button Facebook Ads Tag Middle East, N. Africa Victims
/in General NewsA Libya-linked threat actor has resurfaced, using the same old political phishing tricks to deliver AsyncRAT that have worked for years.
darkreading – Read More
Previously unidentified botnet infects unpatched TP-Link Archer home routers
/in General NewsResearchers at Cato Networks said that during a recent investigation into router vulnerabilities, they discovered a new botnet — which they named Ballista — infecting TP-Link Archer devices.
The Record from Recorded Future News – Read More
Why Small and Medium Businesses Are Adopting Blockchain Solutions
/in General NewsBlockchain technology is revolutionizing industries by enabling secure transactions, decentralization, and transparency. At the same time, Blockchain software…
Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – Read More
Patch Tuesday: Microsoft Patches 57 Flaws, Flags Six Active Zero-Days
/in General NewsRedmond ships major security updates with warnings that a half-dozen Windows vulnerabilities have already been exploited in the wild.
The post Patch Tuesday: Microsoft Patches 57 Flaws, Flags Six Active Zero-Days appeared first on SecurityWeek.
SecurityWeek – Read More
DOGE axes CISA ‘red team’ staffers amid ongoing federal cuts
/in General NewsAffected staff say more than 100 employees working to protect U.S. government networks were ‘axed’ with no prior warning
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
Patch Tuesday: Critical Code-Execution Bugs in Acrobat and Reader
/in General NewsAdobe documents 35 security flaws in a wide range of products, including code-execution issues in the Acrobat and Reader applications.
The post Patch Tuesday: Critical Code-Execution Bugs in Acrobat and Reader appeared first on SecurityWeek.
SecurityWeek – Read More