BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
- [webapps] Elber Wayber Analog/Digital Audio STL 4.00 - Authentication Bypass
Scammers Use DocuSign API to Evade Spam Filters with Phishing Invoices
/in General NewsScammers are exploiting DocuSign’s APIs to send realistic fake invoices, primarily targeting security software like Norton. This phishing…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
210,000 Impacted by Saint Xavier University Data Breach
/in General NewsSaint Xavier University is notifying over 210,000 individuals of personal information compromise in a July 2023 data breach.
The post 210,000 Impacted by Saint Xavier University Data Breach appeared first on SecurityWeek.
SecurityWeek – Read More
Monitoring Distributed Microservices
/in General NewsAs data and usage grow, apps adopt distributed microservices with load balancers for scalability. Monitoring error rates, resource…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
FBI Seeking Information on Chinese Hackers Targeting Sophos Firewalls
/in General NewsThe FBI is asking for information on the Chinese threat actors targeting Sophos edge devices to compromise private and government entities.
The post FBI Seeking Information on Chinese Hackers Targeting Sophos Firewalls appeared first on SecurityWeek.
SecurityWeek – Read More
Cyber Threats That Could Impact the Retail Industry This Holiday Season (and What to Do About It)
/in General NewsAs the holiday season approaches, retail businesses are gearing up for their annual surge in online (and in-store) traffic. Unfortunately, this increase in activity also attracts cybercriminals looking to exploit vulnerabilities for their gain.
Imperva, a Thales company, recently published its annual holiday shopping cybersecurity guide. Data from the Imperva Threat Research team’s
The Hacker News – Read More
The Future in Software Development Lifecycle Looks Filled with AI
/in General NewsThe software development fields’s constant shift in landscape is not something that was threatened by generative AI became mainstream. If we refer to web development, the statement is also correct. With browser battles, the new frontier that this web ecosystem felt in the early 2000’s of the .com burst, on top of it, adding the technological advancements in terms of hardware as well…
Source
TechSplicer – Read More
City of Columbus Ransomware Attack Impacts 500,000 People
/in General NewsThe City of Columbus says the personal information of 500,000 people was stolen in a ransomware attack.
The post City of Columbus Ransomware Attack Impacts 500,000 People appeared first on SecurityWeek.
SecurityWeek – Read More
Inside the Massive Crime Industry That’s Hacking Billion-Dollar Companies
/in General NewsWhen you download a piece of pirated software, you might also be getting a piece of infostealer malware, and entering a highly complex hacking ecosystem that’s fueling some of the biggest breaches on the planet.
Security Latest – Read More
Siemens and Rockwell Tackle Industrial Cybersecurity, but Face Customer Hesitation
/in General NewsSiemens and Rockwell Automation are taking steps to improve cybersecurity in industrial organizations, but getting customers to install security systems and upgrade ICS can still be challenging.
The post Siemens and Rockwell Tackle Industrial Cybersecurity, but Face Customer Hesitation appeared first on SecurityWeek.
SecurityWeek – Read More
Businesses Worldwide Targeted in Large-Scale ChatGPT Phishing Campaign
/in General NewsBarracuda has observed a large-scale OpenAI impersonation campaign whose goal is to phish for ChatGPT credentials.
The post Businesses Worldwide Targeted in Large-Scale ChatGPT Phishing Campaign appeared first on SecurityWeek.
SecurityWeek – Read More