BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [remote] Apache Tomcat 10.1.39 - Denial of Service (DoS)
- [remote] Grandstream GSD3710 1.0.11.13 - Stack Overflow
- [webapps] CloudClassroom PHP Project 1.0 - SQL Injection
- [remote] Microsoft Windows Server 2025 JScript Engine - Remote Code Execution (RCE)
- [remote] ABB Cylon Aspect 3.08.04 DeploySource - Remote Code Execution (RCE)
- [local] macOS LaunchDaemon iOS 17.2 - Privilege Escalation
- [remote] Automic Agent 24.3.0 HF4 - Privilege Escalation
- [remote] Fortra GoAnywhere MFT 7.4.1 - Authentication Bypass
- [webapps] WordPress Digits Plugin 8.4.6.1 - Authentication Bypass via OTP Bruteforcing
- [remote] SolarWinds Serv-U 15.4.2 HF1 - Directory Traversal
Russian hospital programmer gets 14 years for leaking soldier data to Ukraine
/in General NewsA Russian court sentenced a former hospital programmer to 14 years in a high-security penal colony for allegedly leaking personal data of Russian soldiers to Ukraine, authorities said.
The Record from Recorded Future News – Read More
Lock down your data and save 20% on this encrypted Kingston portable SSD
/in General NewsThe Kingston IronKey Vault Privacy 80 features real-time AES-256 bit encryption, dual read-only modes, and password protection. The 2TB version is on sale right now at B&H Photo.
Latest stories for ZDNET in Security – Read More
Nearly 70,000 impacted by ransomware attack on Sheboygan, Wisconsin
/in General NewsThe city filed breach notification letters with regulators seven months after a ransomware gang accessed systems.
The Record from Recorded Future News – Read More
China accuses Taiwan-linked group of cyberattack on local tech company
/in General NewsAccording to police in Guangzhou, the group — allegedly linked to Taiwan’s ruling Democratic Progressive Party (DPP) — has targeted more than 1,000 key networks in over 10 Chinese provinces.
The Record from Recorded Future News – Read More
Danabot Takedown Deals Blow to Russian Cybercrime
/in General NewsA multiyear investigation by a public-private partnership has resulted in the seizure of the botnet’s US-based infrastructure and indictments for its key players, significantly disrupting a vast cybercriminal enterprise.
darkreading – Read More
Adidas Confirms Cyber Attack, Customer Data Stolen
/in General NewsAdidas confirms cyber attack compromising customer data, joining other major retailers targeted by advanced threats and rising cybersecurity risks.
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
MATLAB developer bringing systems back online following ransomware attack
/in General NewsMassachusetts-based MathWorks provided an update to customers on Monday after initially reporting outages on May 18, confirming that it experienced a ransomware attack that took down online applications and internal systems used by staff.
The Record from Recorded Future News – Read More
DragonForce Ransomware Hackers Exploiting SimpleHelp Vulnerabilities
/in General NewsSophos warns that a DragonForce ransomware operator chained three vulnerabilities in SimpleHelp to target a managed service provider.
The post DragonForce Ransomware Hackers Exploiting SimpleHelp Vulnerabilities appeared first on SecurityWeek.
SecurityWeek – Read More
Russian Government Hackers Caught Buying Passwords from Cybercriminals
/in General NewsMicrosoft flags a new Kremlin hacking team buying stolen usernames and passwords from infostealer markets for use in cyberespionage attacks.
The post Russian Government Hackers Caught Buying Passwords from Cybercriminals appeared first on SecurityWeek.
SecurityWeek – Read More
CVE Uncertainty Underlines Importance of Cyber Resilience
/in General NewsOrganizations need to broaden their strategy to manage vulnerabilities more effectively and strengthen network cyber resilience.
darkreading – Read More