BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
- [webapps] Elber Wayber Analog/Digital Audio STL 4.00 - Authentication Bypass
Synology Urges Patch for Critical Zero-Click RCE Flaw Affecting Millions of NAS Devices
/in General NewsTaiwanese network-attached storage (NAS) appliance maker Synology has addressed a critical security flaw impacting DiskStation and BeePhotos that could lead to remote code execution.
Tracked as CVE-2024-10443 and dubbed RISK:STATION by Midnight Blue, the zero-day flaw was demonstrated at the Pwn2Own Ireland 2024 hacking contest by security researcher Rick de Jager.
RISK:STATION is an ”
The Hacker News – Read More
Malware Campaign Uses Ethereum Smart Contracts to Control npm Typosquat Packages
/in General NewsAn ongoing campaign is targeting npm developers with hundreds of typosquat versions of their legitimate counterparts in an attempt to trick them into running cross-platform malware.
The attack is notable for utilizing Ethereum smart contracts for command-and-control (C2) server address distribution, according to independent findings from Checkmarx, Phylum, and Socket published over the past few
The Hacker News – Read More
Canadian Suspect Arrested Over Snowflake Data Breach and Extortion Attacks
/in General NewsCanadian law enforcement authorities have arrested an individual who is suspected to have conducted a series of hacks stemming from the breach of cloud data warehousing platform Snowflake earlier this year.
The individual in question, Alexander “Connor” Moucka (aka Judische and Waifu), was apprehended on October 30, 2024, on the basis of a provisional arrest warrant, following a request by the
The Hacker News – Read More
Iranian APT Group Targets IP Cameras, Extends Attacks Beyond Israel
/in General NewsThe Iran-linked group Emennet Pasargad aims to undermine public confidence in Israeli and Western nations by using hack-and-leak campaigns and disrupting government services, including elections.
darkreading – Read More
Google Warns of Actively Exploited CVE-2024-43093 Vulnerability in Android System
/in General NewsGoogle has warned that a security flaw impacting its Android operating system has come under active exploitation in the wild.
The vulnerability, tracked as CVE-2024-43093, has been described as a privilege escalation flaw in the Android Framework component that could result in unauthorized access to “Android/data,” “Android/obb,” and “Android/sandbox” directories and its sub-directories,
The Hacker News – Read More
Schneider Electric says hackers accessed internal project execution tracking platform
/in General NewsFrench multinational Schneider Electric confirmed on Monday that it is investigating a cyberattack following confirmation of a breach.
The Record from Recorded Future News – Read More
APT36 Refines Tools in Attacks on Indian Targets
/in General NewsThe Pakistan-based advanced persistent threat actor has been carrying on a cyber-espionage campaign targeting organizations on the subcontinent for more than a decade, and it’s now using a new and improved “ElizaRAT” malware.
darkreading – Read More
Okta Fixes Auth Bypass Bug After 3-Month Lull
/in General NewsThe bug affected accounts with 52-character user names, and had several pre-conditions that needed to be met in order to be exploited.
darkreading – Read More
Cisco notifies ‘limited set’ of customers after hacker accessed non-public files
/in General NewsThe company has said it didn’t suffer a breach, but announced a threat actor downloaded data on a public-facing DevHub environment.
The Record from Recorded Future News – Read More
UC San Diego, Tsinghua University researchers just made AI way better at knowing when to ask for help
/in General NewsUC San Diego and Tsinghua University researchers develop breakthrough AI method that teaches small language models when to use tools versus internal knowledge, achieving 28% better accuracy while using fewer resources than larger models like GPT-4.Read More
Security News | VentureBeat – Read More