BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [webapps] Moodle 4.4.0 - Authenticated Remote Code Execution
- [remote] Microsoft SharePoint 2019 - NTLM Authentication
- [remote] gogs 0.13.0 - Remote Code Execution (RCE)
- [remote] Wing FTP Server 7.4.3 - Unauthenticated Remote Code Execution (RCE)
- [webapps] Sitecore 10.4 - Remote Code Execution (RCE)
- [remote] PX4 Military UAV Autopilot 1.12.3 - Denial of Service (DoS)
- [webapps] Pterodactyl Panel 1.11.11 - Remote Code Execution (RCE)
- [remote] OneTrust SDK 6.33.0 - Denial Of Service (DoS)
- [remote] freeSSHd 1.0.9 - Denial of Service (DoS)
- [remote] McAfee Agent 5.7.6 - Insecure Storage of Sensitive Information
Russia arrests CEO of tech company linked to Doppelgänger disinformation campaign
/in General NewsTwo other employees at the St. Petersburg-based hosting provider Azea Group were arrested. The company has alleged links to state-sponsored disinformation campaigns and cybercriminal infrastructure.
The Record from Recorded Future News – Read More
Scattered Spider’s ‘King Bob’ Pleads Guilty to Cyber Charges
/in General NewsThe 20-year-old was arrested in January 2024 alongside four other group members who carried out related cybercriminal acts, earning them similar charges.
darkreading – Read More
Scattered Spider member pleads guilty to identity theft, wire fraud charges
/in General NewsNoah Urban, one of five Scattered Spider suspects identified by U.S. authorities, pleaded guilty in Florida to charges related to the cybercrime operation.
The Record from Recorded Future News – Read More
Hackers are pretending to be drone companies and state agencies to spy on Ukrainian victims
/in General NewsThe hackers have targeted Ukraine’s armed forces, law enforcement agencies and local government bodies — especially those near the country’s eastern border, which is close to Russia.
The Record from Recorded Future News – Read More
Brothers Behind Rydox Dark Web Market Extradited to US
/in General NewsUSA secures extradition of criminals from 9 countries, including two brothers behind Rydox, a dark web market for stolen data and hacking tools.
Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – Read More
Everest ransomware group’s darknet site offline following defacement
/in General NewsThe darknet leak site used by the ransomware gang Everest went offline Monday after being apparently hacked and defaced over the weekend.
The Record from Recorded Future News – Read More
UK’s demand for Apple backdoor should not be heard in secret, says court
/in General NewsA UK surveillance court said the backdoor order targeting Apple iCloud can be heard partly in public.
Security News | TechCrunch – Read More
Google Pushing ‘Sec-Gemini’ AI Model for Threat-Intel Workflows
/in General NewsExperimental Sec-Gemini v1 touts a combination of Google’s Gemini LLM capabilities with real-time security data and tooling from Mandiant.
The post Google Pushing ‘Sec-Gemini’ AI Model for Threat-Intel Workflows appeared first on SecurityWeek.
SecurityWeek – Read More
Intergenerational Mentoring: Key to Cybersecurity’s AI Future
/in General NewsAs threats evolve and technology changes, our ability to work together across generations will determine our success.
darkreading – Read More
Xanthorox AI Surfaces on Dark Web as Full Spectrum Hacking Assistant
/in General NewsNew Xanthorox AI hacking platform spotted on dark web with modular tools, offline mode, and advanced voice, image, and code-based cyberattack features.
Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – Read More