BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [remote] CrushFTP 11.3.1 - Authentication Bypass
- [remote] Invision Community 5.0.6 - Remote Code Execution (RCE)
- [local] Zyxel USG FLEX H series uOS 1.31 - Privilege Escalation
- [local] RDPGuard 9.9.9 - Privilege Escalation
- [webapps] Kentico Xperience 13.0.178 - Cross Site Scripting (XSS)
- [local] TP-Link VN020 F3v(T) TT_V6.2.1021) - DHCP Stack Buffer Overflow
- [webapps] WordPress Frontend Login and Registration Blocks Plugin 1.0.7 - Privilege Escalation
- [webapps] SureTriggers OttoKit Plugin 1.0.82 - Privilege Escalation
- [local] Microsoft Windows 11 Pro 23H2 - Ancillary Function Driver for WinSock Privilege Escalation
- [local] VirtualBox 7.0.16 - Privilege Escalation
Got a suspicious E-ZPass text? It’s a trap – how to spot the scam
/in General NewsE-ZPass phishing texts seem to be hitting everyone – even non-drivers. Here’s what to watch for and what to do if you receive one.
Latest stories for ZDNET in Security – Read More
Japanese telco giant NTT Com says hackers accessed details of almost 18,000 organizations
/in General NewsUnidentified hackers breached NTT Com’s network to steal personal information of employees at thousands of corporate customers
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
How Cyberattacks Affect Your Staff
/in General NewsBusinesses have a responsibility to safeguard their workforce, which is best achieved by preparing and equipping the whole organization to better face these worst-case cyber scenarios.
darkreading – Read More
FBI: Fake Ransomware Attack Claims Sent to US Executives via Snail Mail
/in General NewsAn extortion group has been sending physical mail to corporate executives, threatening to leak their data unless a ransom is paid.
The post FBI: Fake Ransomware Attack Claims Sent to US Executives via Snail Mail appeared first on SecurityWeek.
SecurityWeek – Read More
Microsoft Says One Million Devices Impacted by Infostealer Campaign
/in General NewsMicrosoft has uncovered a malvertising campaign that redirected users to information stealers hosted on GitHub.
The post Microsoft Says One Million Devices Impacted by Infostealer Campaign appeared first on SecurityWeek.
SecurityWeek – Read More
Many Schools Report Data Breach After Retirement Services Firm Hit by Ransomware
/in General NewsDozens of schools and thousands of individuals are impacted by a data breach resulting from a ransomware attack on Carruth Compliance Consulting.
The post Many Schools Report Data Breach After Retirement Services Firm Hit by Ransomware appeared first on SecurityWeek.
SecurityWeek – Read More
Webinar: Learn How ASPM Transforms Application Security from Reactive to Proactive
/in General NewsAre you tired of dealing with outdated security tools that never seem to give you the full picture? You’re not alone.
Many organizations struggle with piecing together scattered information, leaving your apps vulnerable to modern threats. That’s why we’re excited to introduce a smarter, unified approach: Application Security Posture Management (ASPM).
ASPM brings together the best of both
The Hacker News – Read More
18,000 Organizations Impacted by NTT Com Data Breach
/in General NewsNTT Communications Corporation has disclosed a data breach impacting the information of nearly 18,000 customer organizations.
The post 18,000 Organizations Impacted by NTT Com Data Breach appeared first on SecurityWeek.
SecurityWeek – Read More
FBI says scammers are targeting US executives with fake BianLian ransom notes
/in General NewsThe FBI is warning that scammers are impersonating the BianLian ransomware gang using fake ransom notes sent to U.S. corporate executives. The fake ransom notes, first reported by U.S. cybersecurity company GuidePoint Security, claim that hackers have gained access to an organization’s network to steal sensitive data, and threaten to publish the stolen data unless […]
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
U.S. Secret Service Seizes Russian Garantex Crypto Exchange Website
/in General NewsA coalition of international law enforcement agencies has seized the website associated with the cryptocurrency exchange Garantex (“garantex[.]org”), nearly three years after the service was sanctioned by the U.S. Treasury Department in April 2022.
“The domain for Garantex has been seized by the United States Secret Service pursuant to a seizure warrant obtained by the United States Attorney’s
The Hacker News – Read More