BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
- [webapps] Elber Wayber Analog/Digital Audio STL 4.00 - Authentication Bypass
Fog Ransomware Now Targeting the Financial Sector
/in General NewsFog, a variant of STOP/DJVU family, targets various sectors, exploiting VPN vulnerabilities to infiltrate network defenses. After infiltration, Fog ransomware disables protective measures, encrypts vital files, and demands ransom via the Tor network.
Cyware News – Latest Cyber News – Read More
North Korean Threat Actors Deploy COVERTCATCH Malware via LinkedIn Job Scams
/in General NewsThreat actors affiliated with North Korea have been observed leveraging LinkedIn as a way to target developers as part of a fake job recruiting operation.
These attacks employ coding tests as a common initial infection vector, Google-owned Mandiant said in a new report about threats faced by the Web3 sector.
“After an initial chat conversation, the attacker sent a ZIP file that contained
The Hacker News – Read More
FBI Cracks Down on Dark Web Marketplace Managed by Russian and Kazakh Nationals
/in General NewsTwo men have been indicted in the U.S. for their alleged involvement in managing a dark web marketplace called WWH Club that specializes in the sale of sensitive personal and financial information.
Alex Khodyrev, a 35-year-old Kazakhstan national, and Pavel Kublitskii, a 37-year-old Russian national, have been charged with conspiracy to commit access device fraud and conspiracy to commit wire
The Hacker News – Read More
Penpie DeFi platform files reports with FBI, Singapore police after $27 million crypto theft
/in General NewsThe Penpie DeFi platform recently reported a $27 million cryptocurrency theft to the FBI and Singapore police. Hackers targeted the protocol, stealing ethereum and prompting Penpie to halt withdrawals and deposits.
Cyware News – Latest Cyber News – Read More
New Stealthy Malware Campaign Dubbed DarkCracks Exploits GLPI and WordPress Sites
/in General NewsDarkCracks isn’t your typical malware campaign—it’s a sophisticated Launcher designed for long-term exploitation. It deploys malicious payloads through public websites, like school portals and booking systems, to infect unsuspecting users.
Cyware News – Latest Cyber News – Read More
CyberVolk Ransomware: A New and Evolving Threat to Global Cybersecurity
/in General NewsCyberVolk, infamous for DDoS attacks and data breaches, has gained particular notoriety for its ransomware, detected in July 2024, due to its advanced features and capabilities.
Cyware News – Latest Cyber News – Read More
Critical GeoServer Vulnerability Exploited in Global Malware Campaign
/in General NewsA critical GeoServer vulnerability (CVE-2024-36401) is being actively exploited, allowing attackers to take control of systems for malware…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Tenable: 26,500 Cyber Vulnerabilities Risk SE Asia’s Banks
/in General NewsThe internet-facing assets were found to be susceptible to potential exploitation in a sample of 90 banking and financial services organisations.
Security | TechRepublic – Read More
Commercial Spyware Use Roars Back Despite Sanctions
/in General NewsVendors of mercenary spyware tools used by nation-states to track citizens and enemies have gotten savvy about evading efforts to limit their use.
darkreading – Read More
Feds Warn on Russian Actors Targeting Critical Infrastructure
/in General NewsIn the past, Putin’s Unit 29155 has utilized malware like WhisperGate to target organizations, particularly those in Ukraine.
darkreading – Read More