BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [webapps] Skyvern 0.1.85 - Remote Code Execution (RCE) via SSTI
- [remote] PCMan FTP Server 2.0.7 - Buffer Overflow
- [webapps] Litespeed Cache WordPress Plugin 6.3.0.1 - Privilege Escalation
- [local] Parrot and DJI variants Drone OSes - Kernel Panic Exploit
- [remote] Windows 11 SMB Client - Privilege Escalation & Remote Code Execution (RCE)
- [remote] AirKeyboard iOS App 1.0.5 - Remote Input Injection
- [webapps] PHP CGI Module 8.3.4 - Remote Code Execution (RCE)
- [remote] WebDAV Windows 10 - Remote Code Execution (RCE)
- [local] Microsoft Excel Use After Free - Local Code Execution
- [remote] Windows File Explorer Windows 10 Pro x64 - TAR Extraction
How Builder.ai is Democratizing AI for the Next Billion Users
/in General NewsDubai UAE, UAE, 3rd February 2025, CyberNewsWire
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
How Thomson Reuters and Anthropic built an AI that lawyers actually trust
/in General NewsThomson Reuters integrates Anthropic’s Claude AI into its legal and tax platforms, enhancing CoCounsel with AI-powered tools that process professional content through secure Amazon cloud infrastructure.Read More
Security News | VentureBeat – Read More
Casio Website Infected With Skimmer
/in General NewsA threat actor has infected Casio UK’s website with a web skimmer on all pages, except the typical checkout page.
The post Casio Website Infected With Skimmer appeared first on SecurityWeek.
SecurityWeek – Read More
Hundreds of Thousands Hit by Data Breaches at Healthcare Firms in Colorado, North Carolina
/in General NewsHundreds of thousands have been impacted by data breaches at Asheville Eye Associates and Delta County Memorial Hospital District.
The post Hundreds of Thousands Hit by Data Breaches at Healthcare Firms in Colorado, North Carolina appeared first on SecurityWeek.
SecurityWeek – Read More
Riot raises $30 million for its cybersecurity product suite focused on employees
/in General NewsFrench startup Riot has raised a $30 million Series B round after reaching $10 million in annual revenue in 2024. Originally focused on educating employees about cybersecurity risks, the company now wants to go one step further and nudge employees so that they minimize their attack surface. Left Lane Capital is leading today’s round with […]
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
Coyote Malware Expands Reach: Now Targets 1,030 Sites and 73 Financial Institutions
/in General NewsBrazilian Windows users are the target of a campaign that delivers a banking malware known as Coyote.
“Once deployed, the Coyote Banking Trojan can carry out various malicious activities, including keylogging, capturing screenshots, and displaying phishing overlays to steal sensitive credentials,” Fortinet FortiGuard Labs researcher Cara Lin said in an analysis published last week.
The
The Hacker News – Read More
DeepSeek Security: System Prompt Jailbreak, Details Emerge on Cyberattacks
/in General NewsResearchers found a jailbreak method that exposed DeepSeek’s system prompt, while others have analyzed the DDoS attacks aimed at the new gen-AI.
The post DeepSeek Security: System Prompt Jailbreak, Details Emerge on Cyberattacks appeared first on SecurityWeek.
SecurityWeek – Read More
⚡ THN Weekly Recap: Top Cybersecurity Threats, Tools and Tips [27 February]
/in General NewsThis week, our news radar shows that every new tech idea comes with its own challenges. A hot AI tool is under close watch, law enforcement is shutting down online spots that help cybercriminals, and teams are busy fixing software bugs that could let attackers in. From better locks on our devices to stopping sneaky tricks online, simple steps are making a big difference.
Let’s take a
The Hacker News – Read More
1 Million Impacted by Data Breach at Connecticut Healthcare Provider
/in General NewsCommunity Health Center, Inc. says hackers stole the personal and health information of over one million individuals.
The post 1 Million Impacted by Data Breach at Connecticut Healthcare Provider appeared first on SecurityWeek.
SecurityWeek – Read More
Crazy Evil Gang Targets Crypto with StealC, AMOS, and Angel Drainer Malware
/in General NewsA Russian-speaking cybercrime gang known as Crazy Evil has been linked to over 10 active social media scams that leverage a wide range of tailored lures to deceive victims and trick them into installing malware such as StealC, Atomic macOS Stealer (aka AMOS), and Angel Drainer.
“Specializing in identity fraud, cryptocurrency theft, and information-stealing malware, Crazy Evil employs a
The Hacker News – Read More