BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [webapps] Moodle 4.4.0 - Authenticated Remote Code Execution
- [remote] Microsoft SharePoint 2019 - NTLM Authentication
- [remote] gogs 0.13.0 - Remote Code Execution (RCE)
- [remote] Wing FTP Server 7.4.3 - Unauthenticated Remote Code Execution (RCE)
- [webapps] Sitecore 10.4 - Remote Code Execution (RCE)
- [remote] PX4 Military UAV Autopilot 1.12.3 - Denial of Service (DoS)
- [webapps] Pterodactyl Panel 1.11.11 - Remote Code Execution (RCE)
- [remote] OneTrust SDK 6.33.0 - Denial Of Service (DoS)
- [remote] freeSSHd 1.0.9 - Denial of Service (DoS)
- [remote] McAfee Agent 5.7.6 - Insecure Storage of Sensitive Information
Trump’s Aggression Sours Europe on US Cloud Giants
/in General NewsCompanies in the EU are starting to look for ways to ditch Amazon, Google, and Microsoft cloud services amid fears of rising security risks from the US. But cutting ties won’t be easy.
Security Latest – Read More
Is the Middle East’s Race to Digitize a Threat to Infrastructure?
/in General NewsAs the region continues with its ambitious road map, cybersecurity must be woven into every step of the process.
darkreading – Read More
How to Delete Duplicate Photos on iPhone to Save Storage
/in General NewsLearn the easiest way to delete duplicate photos on your iPhone device with our simple, step-by-step guide.
Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – Read More
Ansible vs Terraform: Which is More Secure for Infrastructure Automation?
/in General NewsGartner describes infrastructure as code (IaC) as a key way to unlock the potential of the cloud. However,…
Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – Read More
GitHub Supply Chain Breach: Coinbase Attack Exposes 218 Repositories, Leaks CI/CD Secrets
/in General NewsThe supply chain attack involving the GitHub Action “tj-actions/changed-files” started as a highly-targeted attack against one of Coinbase’s open-source projects, before evolving into something more widespread in scope.
“The payload was focused on exploiting the public CI/CD flow of one of their open source projects – agentkit, probably with the purpose of leveraging it for further compromises,”
The Hacker News – Read More
How Counterfeiters Use Technology to Fake Product Labels (and Strategies to Combat Fraud)
/in General NewsCounterfeit products are a growing problem in today’s market. With advancements in technology, counterfeiters have become more skilled…
Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – Read More
How Cybercriminals Exploit Notification Channels
/in General NewsCybercriminals are always looking for new ways to take advantage of people. One effective method they use is…
Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – Read More
Why AI Systems Need Red Teaming Now More Than Ever
/in General NewsAI systems are becoming a huge part of our lives, but they are not perfect. Red teaming helps…
Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – Read More
How Cybercriminals Exploit Public Info for Attacks: Understanding Risks and Prevention
/in General NewsCybercriminals are skilled at using public information to their advantage. Knowing how they gather this data can help…
Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – Read More
Oracle Denies Breach Amid Hacker’s Claim of Access to 6 Million Records
/in General NewsOracle denies breach claims as hacker alleges access to 6 million cloud records. CloudSEK reports a potential zero-day exploit affecting 140,000 tenants.
Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – Read More