BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [remote] Windows File Explorer Windows 10 Pro x64 - TAR Extraction
- [webapps] Roundcube 1.6.10 - Remote Code Execution (RCE)
- [remote] Freefloat FTP Server 1.0 - Remote Buffer Overflow
- [remote] ProSSHD 1.2 20090726 - Denial of Service (DoS)
- [local] Microsoft Windows 11 Version 24H2 Cross Device Service - Elevation of Privilege
- [webapps] Laravel Pulse 1.3.1 - Arbitrary Code Injection
- [local] TightVNC 2.8.83 - Control Pipe Manipulation
- [remote] Microsoft Windows Server 2025 JScript Engine - Remote Code Execution (RCE)
- [remote] Apache Tomcat 10.1.39 - Denial of Service (DoS)
- [webapps] CloudClassroom PHP Project 1.0 - SQL Injection
Coalition of US states to file lawsuit after Musk’s DOGE gains access to Americans’ personal data
/in General NewsThe states plan to file the lawsuit in defense of Americans’ “right to privacy.”
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
UK Engineering Giant IMI Hit by Cyberattack
/in General NewsUK engineering firm IMI says it suffered a cyberattack that resulted in unauthorized access to some of its systems.
The post UK Engineering Giant IMI Hit by Cyberattack appeared first on SecurityWeek.
SecurityWeek – Read More
430,000 Impacted by Data Breaches at New York, Pennsylvania Healthcare Organizations
/in General NewsUniversity Diagnostic Medical Imaging and Allegheny Health Network have disclosed data breaches impacting approximately 430,000 patients.
The post 430,000 Impacted by Data Breaches at New York, Pennsylvania Healthcare Organizations appeared first on SecurityWeek.
SecurityWeek – Read More
PowerSchool data breach affected 16,000 students in the UK
/in General NewsThe edtech giant has begun notifying individuals outside of the US and Canada affected by the breach
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
India’s RBI Introduces Exclusive “bank.in” Domain to Combat Digital Banking Fraud
/in General NewsIndia’s central bank, the Reserve Bank of India (RBI), said it’s introducing an exclusive “bank.in” internet domain for banks in the country to combat digital financial fraud.
“This initiative aims to reduce cyber security threats and malicious activities like phishing; and, streamline secure financial services, thereby enhancing trust in digital banking and payment services,” the RBI said in a
The Hacker News – Read More
Trimble Cityworks Customers Warned of Zero-Day Exploitation
/in General NewsTrimble Cityworks is affected by a zero-day vulnerability that has been exploited in attacks involving the delivery of malware.
The post Trimble Cityworks Customers Warned of Zero-Day Exploitation appeared first on SecurityWeek.
SecurityWeek – Read More
India to launch new domain name for banks to fight digital fraud
/in General NewsIndia’s central bank is introducing an exclusive “.bank.in” domain for banks from April 2025 as part of efforts to combat rising digital payment frauds and bolster trust in online banking services. The Institute for Development and Research in Banking Technology (IDRBT) will serve as the exclusive registrar for the new domain, the Reserve Bank of […]
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
Hackers Exploiting SimpleHelp RMM Flaws for Persistent Access and Ransomware
/in General NewsThreat actors have been observed exploiting recently disclosed security flaws in SimpleHelp’s Remote Monitoring and Management (RMM) software as a precursor for what appears to be a ransomware attack.
The intrusion leveraged the now-patched vulnerabilities to gain initial access and maintain persistent remote access to an unspecified target network, cybersecurity company Field Effect said in a
The Hacker News – Read More
S. Korea’s Notorious Sex Crime Hub Ya-moon Hacked, User Data Leaked
/in General NewsYa-moon, S. Korea’s notorious sex crime hub operating since 1990, hacked; user data leaked, exposing CSAM, exploitation, and illicit activities.
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
US Cybersecurity Efforts for Spacecraft Are Up in the Air
/in General NewsWhile President Trump supported federal space efforts during his first administration, the addition of SpaceX chief Elon Musk to his circle likely means challenges for regulating spacecraft cybersecurity, experts say.
darkreading – Read More