BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [webapps] Moodle 4.4.0 - Authenticated Remote Code Execution
- [remote] Microsoft SharePoint 2019 - NTLM Authentication
- [remote] gogs 0.13.0 - Remote Code Execution (RCE)
- [remote] Wing FTP Server 7.4.3 - Unauthenticated Remote Code Execution (RCE)
- [webapps] Sitecore 10.4 - Remote Code Execution (RCE)
- [remote] PX4 Military UAV Autopilot 1.12.3 - Denial of Service (DoS)
- [webapps] Pterodactyl Panel 1.11.11 - Remote Code Execution (RCE)
- [remote] OneTrust SDK 6.33.0 - Denial Of Service (DoS)
- [remote] freeSSHd 1.0.9 - Denial of Service (DoS)
- [remote] McAfee Agent 5.7.6 - Insecure Storage of Sensitive Information
Google Patches Chrome Sandbox Escape Zero-Day Caught by Kaspersky
/in General NewsThe vulnerability, tracked as CVE-2025-2783, was chained with a second exploit for remote code execution in attacks in Russian.
The post Google Patches Chrome Sandbox Escape Zero-Day Caught by Kaspersky appeared first on SecurityWeek.
SecurityWeek – Read More
How to tell if your online accounts have been hacked
/in General NewsThis is a guide on how to check whether someone compromised your online accounts.
Security News | TechCrunch – Read More
After Detecting 30B Phishing Attempts, Microsoft Adds Even More AI to Its Security Copilot
/in General NewsMicrosoft is partnering with top firms to launch new AI security tools, boosting breach analysis, threat detection, and AI model protection across cloud platforms.
Security | TechRepublic – Read More
Nearly $13 million stolen from Abracadabra Finance in crypto heist
/in General NewsThe crypto lending platform said the issue was sourced back to a product it calls “cauldrons” — isolated lending markets that allow users to borrow against a variety of cryptocurrencies.
The Record from Recorded Future News – Read More
Malaysia PM says country rejected $10 million ransom demand after airport outages
/in General NewsComputer outages at Malaysia’s Kuala Lumpur International Airport (KLIA) this weekend were attributed to a recent cyberattack, according to the country’s cybersecurity agency and aviation authority.
The Record from Recorded Future News – Read More
Satellite Navigation Systems Facing Rising Jamming and Spoofing Attacks
/in General NewsSatellite navigation systems are under rising threat from jamming and spoofing attacks, risking aviation, maritime, and telecom safety worldwide, warn global agencies.
Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – Read More
Alleged Snowflake hacker consents to extradition from Canada after US charges
/in General NewsConnor Riley Moucka signed a consent order on Friday in Ontario Superior Court in Kitchener that would allow him to be transferred to U.S. custody to face multiple charges.
The Record from Recorded Future News – Read More
Accused Snowflake Attacker ‘Judische’ Agrees to US Extradition
/in General NewsThough there is no confirmation as to when this extradition will occur, Alexander Moucka agreed to be transferred in writing before a judge.
darkreading – Read More
23andMe files for bankruptcy: How to delete your data
/in General News23andMe holds millions of customers’ genetic information. Here’s what you can do to protect your data.
Security News | TechCrunch – Read More
Hackers Are Using Microsoft’s .NET MAUI to Spread Android Malware
/in General NewsMcAfee Labs reveals new Android malware exploiting .NET MAUI to steal user data. Learn about advanced evasion techniques and how to stay protected.
Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – Read More