BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [webapps] WP Publications WordPress Plugin 1.2 - Stored XSS
- [local] Microsoft Graphics Component Windows 11 Pro (Build 26100+) - Local Elevation of Privileges
- [remote] Keras 2.15 - Remote Code Execution (RCE)
- [local] Microsoft Brokering File System Windows 11 Version 22H2 - Elevation of Privilege
- [webapps] PivotX 3.0.0 RC3 - Remote Code Execution (RCE)
- [hardware] TOTOLINK N300RB 8.54 - Command Execution
- [webapps] SugarCRM 14.0.0 - SSRF/Code Injection
- [webapps] Langflow 1.2.x - Remote Code Execution (RCE)
- [remote] NodeJS 24.x - Path Traversal
- [remote] MikroTik RouterOS 7.19.1 - Reflected XSS
5 Tips You Should Know before Developing an Innovative Product
/in General NewsAre you aiming to develop an innovative startup that will make a boom effect in the modern market?…
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
Doppel Banks $35M for AI-Based Digital Risk Protection
/in General NewsThe new investment values Doppel at $205 million and provides runway to meet enterprise demand for AI-powered threat detection tools.
The post Doppel Banks $35M for AI-Based Digital Risk Protection appeared first on SecurityWeek.
SecurityWeek – Read More
Why Secure Document Management Matters Against Cybersecurity Threats
/in General NewsCybersecurity threats aren’t just aimed at servers or customer databases. They also target a company’s most vital but…
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
Kelly Benefits Data Breach Impact Grows to 400,000 Individuals
/in General NewsKelly Benefits has determined that the impact of the recently disclosed data breach is much bigger than initially believed.
The post Kelly Benefits Data Breach Impact Grows to 400,000 Individuals appeared first on SecurityWeek.
SecurityWeek – Read More
7 ways to lock down your phone’s security – before it’s too late
/in General NewsFrom border crossings to data breaches, there are more reasons than ever to protect your smartphone. Here’s a practical guide to securing your device and your digital life.
Latest stories for ZDNET in Security – Read More
Man Admits Hacking Disney and Leaking Data Disguised as Hacktivist
/in General NewsA 25-year-old has admitted hacking Disney systems and leaking data under the guise of a hacktivist collective named NullBulge.
The post Man Admits Hacking Disney and Leaking Data Disguised as Hacktivist appeared first on SecurityWeek.
SecurityWeek – Read More
Germany Most Targeted Country in Q1 2025 DDoS Attacks
/in General NewsCloudflare’s Q1 2025 DDoS Threat Report: DDoS attacks surged 358% YoY to 20.5M. Germany hit hardest; gaming and…
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
Ransomware Group Claims Attacks on UK Retailers
/in General NewsThe DragonForce ransomware group has claimed responsibility for the recent cyberattacks on UK retailers Co-op, Harrods, and M&S.
The post Ransomware Group Claims Attacks on UK Retailers appeared first on SecurityWeek.
SecurityWeek – Read More
TeleMessage, a modified Signal clone used by US govt. officials, has been hacked
/in General NewsA hacker has exploited a vulnerability in TeleMessage, which provides modded versions of encrypted messaging apps such as Signal, Telegram and WhatsApp, to extract archived messages and other data relating to U.S. government officials and companies who used the tool, 404 Media reported. TeleMessage came into the spotlight last week after it was reported that […]
Security News | TechCrunch – Read More
PoC Published for Exploited SonicWall Vulnerabilities
/in General NewsPoC code targeting two exploited SonicWall flaws was published just CISA added them to the KEV catalog.
The post PoC Published for Exploited SonicWall Vulnerabilities appeared first on SecurityWeek.
SecurityWeek – Read More