BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] SOPlanning 1.52.01 (Simple Online Planning Tool) - Remote Code Execution (RCE) (Authenticated)
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
RansomHub Ransomware Group Targets 210 Victims Across Critical Sectors
/in General NewsThreat actors linked to the RansomHub ransomware group encrypted and exfiltrated data from at least 210 victims since its inception in February 2024, the U.S. government said.
The victims span various sectors, including water and wastewater, information technology, government services and facilities, healthcare and public health, emergency services, food and agriculture, financial services,
The Hacker News – Read More
Global Phishing Scam Hits Canadian Pizza Chains for Credit Card Data
/in General NewsScammers are using domain spoofing, phishing and other tactics to steal customer information from pizza restaurants, especially in…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Forrester’s CISO budget priorities for 2025 focus on API, supply chain security
/in General NewsSafeguarding revenue and minimizing business risks will dominate CISOs’ budgets next year, starting with APIs and software supply chains.Read More
Security News | VentureBeat – Read More
For Windows 11 setup, which user account type should you choose? How to decide
/in General NewsWhen you set up a new Windows PC, you can choose from up to four types of user accounts – but your first choice might not be the right one.
Latest stories for ZDNET in Security – Read More
A Macro Look at the Most Pressing Cybersecurity Risks
/in General NewsA Forescout report highlighted a 43% increase in published vulnerabilities, with 23,668 reported in H1 2024. Ransomware attacks also rose by 6%, totaling 3,085 incidents, with the U.S. being the most targeted country.
Cyware News – Latest Cyber News – Read More
Passkey Adoption Is Accelerating in APAC — Except for Australia
/in General NewsAustralian banks and government agencies are not rushing to adopt passkey authentication methods, despite the added security benefits.
Security | TechRepublic – Read More
GreenCharlie Infrastructure Targeting US Political Entities with Advanced Phishing and Malware
/in General NewsGreenCharlie attackers use dynamic DNS providers to register domains for phishing attacks, with deceptive themes like cloud services and document visualization to trick victims into revealing sensitive information or downloading malware payloads.
Cyware News – Latest Cyber News – Read More
Why Incident Response Planning is Critical for Cybersecurity Resilience
/in General NewsCyber threats are inevitable, making preparedness necessary. In 2023, the average cost of a data breach reached $4.45…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
A New Variant of Cicada Ransomware Targets VMware ESXi Systems
/in General NewsThe group behind Cicada3301 has been recruiting affiliates on cybercrime forums since June. It is speculated that Cicada3301 could be related to the now-defunct ALPHV group, as both ransomware share similarities.
Cyware News – Latest Cyber News – Read More
Uniqkey Raises $5.92M in Funding
/in General NewsBackers included BackingMinds, in combination with industry veterans such as Jesper Zerlang (ex-CEO of Logpoint), Lars Ankjer, Otto Krabbe, Rolf Bladt, and several angels and key employees.
Cyware News – Latest Cyber News – Read More