BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [local] TightVNC 2.8.83 - Control Pipe Manipulation
- [remote] ProSSHD 1.2 20090726 - Denial of Service (DoS)
- [webapps] Laravel Pulse 1.3.1 - Arbitrary Code Injection
- [local] Microsoft Windows 11 Version 24H2 Cross Device Service - Elevation of Privilege
- [remote] ABB Cylon Aspect 3.08.04 DeploySource - Remote Code Execution (RCE)
- [remote] Grandstream GSD3710 1.0.11.13 - Stack Overflow
- [webapps] CloudClassroom PHP Project 1.0 - SQL Injection
- [remote] Microsoft Windows Server 2025 JScript Engine - Remote Code Execution (RCE)
- [local] macOS LaunchDaemon iOS 17.2 - Privilege Escalation
- [remote] Apache Tomcat 10.1.39 - Denial of Service (DoS)
Apple and Google take down malicious mobile apps from their app stores
/in General NewsApple and Google have pulled as many as 20 apps from their respective apps for carrying a data-stealing malware.
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
XE Group Shifts From Card Skimming to Supply Chain Attacks
/in General NewsThe likely Vietnam-based threat actor has been using two zero-days in VeraCore’s warehouse management software in some of its latest cyberattacks.
darkreading – Read More
Guilty Plea in Hacking of the SEC’s X Account That Caused Bitcoin Value Spike
/in General NewsPost Content
darkreading – Read More
120K Victims Compromised in Memorial Hospital Ransomware Attack
/in General NewsAfter claiming responsibility for the ransomware attack in 2024, the “Embargo” ransomware group posted 1.15 terabytes of stolen data to its public Tor site.
darkreading – Read More
Who’s using AI the most? The Anthropic Economic Index breaks down the data
/in General NewsNew Anthropic study uncovers AI’s true impact on modern workforce: 57% augmentation vs 43% automation across industries, based on analysis of 4 million Claude interactions.Read More
Security News | VentureBeat – Read More
8Base ransomware site taken down as Thai authorities arrest 4 connected to operation
/in General NewsThe leak site for the 8Base ransomware gang was taken down Monday and replaced with a banner by multiple law enforcement agencies.
The Record from Recorded Future News – Read More
Newspaper Giant Lee Enterprises Reels From Cyberattack
/in General NewsThe newspaper company expects the investigation to take some time, but said in an SEC filing that it has not yet identified any material impact.
darkreading – Read More
Apple fixes iPhone and iPad bug used in an ‘extremely sophisticated attack’
/in General NewsUnknown attackers may have exploited a zero-day bug to access data on locked phones, according to Apple.
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
Apple Confirms USB Restricted Mode Exploited in ‘Extremely Sophisticated’ Attack
/in General NewsCupertino’s security response team said the flaw was used in “an extremely sophisticated attack against specific targeted individuals.”
The post Apple Confirms USB Restricted Mode Exploited in ‘Extremely Sophisticated’ Attack appeared first on SecurityWeek.
SecurityWeek – Read More
Australians Hit With One Cyber Attack Every Second in 2024
/in General NewsAustralia saw a record surge in cyber attacks in 2024, with data breaches escalating. Experts warn of rising risks as hackers may exploit AI-driven tactics.
Security | TechRepublic – Read More