BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [webapps] Skyvern 0.1.85 - Remote Code Execution (RCE) via SSTI
- [remote] PCMan FTP Server 2.0.7 - Buffer Overflow
- [webapps] Litespeed Cache WordPress Plugin 6.3.0.1 - Privilege Escalation
- [local] Parrot and DJI variants Drone OSes - Kernel Panic Exploit
- [remote] Windows 11 SMB Client - Privilege Escalation & Remote Code Execution (RCE)
- [remote] AirKeyboard iOS App 1.0.5 - Remote Input Injection
- [webapps] PHP CGI Module 8.3.4 - Remote Code Execution (RCE)
- [remote] WebDAV Windows 10 - Remote Code Execution (RCE)
- [local] Microsoft Excel Use After Free - Local Code Execution
- [remote] Windows File Explorer Windows 10 Pro x64 - TAR Extraction
Why Cybersecurity Needs Probability — Not Predictions
/in General NewsWhile probabilities may be based on subjective information, when used in an objective framework, they demonstrate an effective way to improve the value of hard decisions.
darkreading – Read More
New target of Paragon spyware comes forward
/in General NewsThe latest target of Paragon spyware openly questions if he was targeted by the Italian government.
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
The Collapse of USAID Is Already Fueling Human Trafficking and Slavery at Scammer Compounds
/in General NewsThe dismantling of USAID by Elon Musk’s DOGE and a State Department funding freeze have severely disrupted efforts to help people escape forced labor camps run by criminal scammers.
Security Latest – Read More
How Agentic AI will be Weaponized for Social Engineering Attacks
/in General NewsWith each passing year, social engineering attacks are becoming bigger and bolder thanks to rapid advancements in artificial intelligence.
The post How Agentic AI will be Weaponized for Social Engineering Attacks appeared first on SecurityWeek.
SecurityWeek – Read More
Banking Malware Uses Live Numbers to Hijack OTPs, Targeting 50,000 Victims
/in General NewsA banking malware campaign using live phone numbers to redirect SMS messages has been identified by the zLabs research team, uncovering 1,000+ malicious apps and 2.5GB of exposed data.
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
21% of CISOs Have Been Pressured Not to Report a Compliance Issue, Research Finds
/in General NewsCISOs face growing boardroom pressure, compliance challenges, and cyber threats. Discover key insights from Splunk’s latest report on cybersecurity leadership.
Security | TechRepublic – Read More
5 great Chrome-like browsers that put your privacy first
/in General NewsChrome isn’t the most secure browser on the market and with the continued rise of malicious attacks, you should consider one of these Chrome-based alternatives
Latest stories for ZDNET in Security – Read More
Hacker Conversations: David Kennedy – an Atypical Typical Hacker
/in General NewsDavid Kennedy is a hacker. There is no doubt about that. He has qualities common among hackers, but also many differences.
The post Hacker Conversations: David Kennedy – an Atypical Typical Hacker appeared first on SecurityWeek.
SecurityWeek – Read More
Canadian Charged in $65M KyberSwap, Indexed Finance DeFi Hack
/in General NewsCanadian man charged in $65 million DeFi hack. Exploited KyberSwap, Indexed Finance smart contracts, laundered funds, and attempted extortion. Faces 20 years.
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Cybersecurity M&A Roundup: 45 Deals Announced in January 2025
/in General NewsA significant number of cybersecurity-related merger and acquisition (M&A) deals announced in January 2025.
The post Cybersecurity M&A Roundup: 45 Deals Announced in January 2025 appeared first on SecurityWeek.
SecurityWeek – Read More