BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
- [webapps] Elber Wayber Analog/Digital Audio STL 4.00 - Authentication Bypass
Critical Flaws in Ollama AI Framework Could Enable DoS, Model Theft, and Poisoning
/in General NewsCybersecurity researchers have disclosed six security flaws in the Ollama artificial intelligence (AI) framework that could be exploited by a malicious actor to perform various actions, including denial-of-service, model poisoning, and model theft.
“Collectively, the vulnerabilities could allow an attacker to carry out a wide-range of malicious actions with a single HTTP request, including
The Hacker News – Read More
Columbus says ransomware gang stole personal data of 500,000 Ohio residents
/in General NewsColumbus says hackers accessed resident’s Social Security numbers and bank account details
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
Scammers Use DocuSign API to Evade Spam Filters with Phishing Invoices
/in General NewsScammers are exploiting DocuSign’s APIs to send realistic fake invoices, primarily targeting security software like Norton. This phishing…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
210,000 Impacted by Saint Xavier University Data Breach
/in General NewsSaint Xavier University is notifying over 210,000 individuals of personal information compromise in a July 2023 data breach.
The post 210,000 Impacted by Saint Xavier University Data Breach appeared first on SecurityWeek.
SecurityWeek – Read More
Monitoring Distributed Microservices
/in General NewsAs data and usage grow, apps adopt distributed microservices with load balancers for scalability. Monitoring error rates, resource…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
FBI Seeking Information on Chinese Hackers Targeting Sophos Firewalls
/in General NewsThe FBI is asking for information on the Chinese threat actors targeting Sophos edge devices to compromise private and government entities.
The post FBI Seeking Information on Chinese Hackers Targeting Sophos Firewalls appeared first on SecurityWeek.
SecurityWeek – Read More
Cyber Threats That Could Impact the Retail Industry This Holiday Season (and What to Do About It)
/in General NewsAs the holiday season approaches, retail businesses are gearing up for their annual surge in online (and in-store) traffic. Unfortunately, this increase in activity also attracts cybercriminals looking to exploit vulnerabilities for their gain.
Imperva, a Thales company, recently published its annual holiday shopping cybersecurity guide. Data from the Imperva Threat Research team’s
The Hacker News – Read More
The Future in Software Development Lifecycle Looks Filled with AI
/in General NewsThe software development fields’s constant shift in landscape is not something that was threatened by generative AI became mainstream. If we refer to web development, the statement is also correct. With browser battles, the new frontier that this web ecosystem felt in the early 2000’s of the .com burst, on top of it, adding the technological advancements in terms of hardware as well…
Source
TechSplicer – Read More
City of Columbus Ransomware Attack Impacts 500,000 People
/in General NewsThe City of Columbus says the personal information of 500,000 people was stolen in a ransomware attack.
The post City of Columbus Ransomware Attack Impacts 500,000 People appeared first on SecurityWeek.
SecurityWeek – Read More
Inside the Massive Crime Industry That’s Hacking Billion-Dollar Companies
/in General NewsWhen you download a piece of pirated software, you might also be getting a piece of infostealer malware, and entering a highly complex hacking ecosystem that’s fueling some of the biggest breaches on the planet.
Security Latest – Read More