BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
- Uro - Declutters Url Lists For Crawling/Pentesting
- Wshlient - A Simple Tool To Interact With Web Shells And Command Injection Vulnerabilities
Exploit DB
- [remote] Apache ActiveMQ 6.1.6 - Denial of Service (DOS)
- [local] VirtualBox 7.0.16 - Privilege Escalation
- [webapps] WordPress Depicter Plugin 3.6.1 - SQL Injection
- [local] Microsoft Windows 11 Pro 23H2 - Ancillary Function Driver for WinSock Privilege Escalation
- [webapps] SureTriggers OttoKit Plugin 1.0.82 - Privilege Escalation
- [webapps] ERPNext 14.82.1 - Account Takeover via Cross-Site Request Forgery (CSRF)
- [webapps] Casdoor 1.901.0 - Cross-Site Request Forgery (CSRF)
- [webapps] Grokability Snipe-IT 8.0.4 - Insecure Direct Object Reference (IDOR)
- [local] Daikin Security Gateway 14 - Remote Password Reset
- [local] ZTE ZXV10 H201L - RCE via authentication bypass
UnitedHealthcare’s Optum left an AI chatbot, used by employees to ask questions about claims, exposed to the internet
/in General NewsOptum’s AI chatbot was found exposed online at a time when the healthcare giant faces scrutiny for its use of AI to allegedly deny patient claims.
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
The New Jersey Drone Mystery May Not Actually Be That Mysterious
/in General NewsA flurry of drone sightings across New Jersey and New York has sparked national intrigue and US government responses. But experts are pouring cold water on America’s hottest new conspiracy theory.
Security Latest – Read More
Serhiy Tokarev Explains Why Health Tech Startups Are Worth Investing In
/in General NewsHealth Tech is booming, projected to grow from $312.92B in 2024 to $981.23B by 2032. Serhiy Tokarev highlights…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Three arrested in Kosovo for operating Rydox cybercriminal marketplace
/in General NewsArdit Kutleshi, 26, and Jetmir Kutleshi, 28, were arrested in Kosovo by local law enforcement on Thursday and U.S. officials submitted a request for extradition through an indictment unsealed in the Western District of Pennsylvania. Another operator was also arrested and is expected to be prosecuted in Kosovo.
The Record from Recorded Future News – Read More
Critical OpenWrt Vulnerability Exposes Devices to Malicious Firmware Injection
/in General NewsA security flaw has been disclosed in OpenWrt’s Attended Sysupgrade (ASU) feature that, if successfully exploited, could have been abused to distribute malicious firmware packages.
The vulnerability, tracked as CVE-2024-54143, carries a CVSS score of 9.3 out of a maximum of 10, indicating critical severity. Flatt Security researcher RyotaK has been credited with discovering and reporting the
The Hacker News – Read More
Keeper review: An easy-to-use password manager with top-notch security features
/in General NewsWe went hands-on with Keeper’s password manager, and found that it takes security seriously, using leading encryption technology to protect your sensitive data.
Latest stories for ZDNET in Security – Read More
Why the US Military Can’t Just Shoot Down the Mystery Drones
/in General NewsSmall, easily weaponizable drones have become a feature of battlefields from the Middle East to Ukraine. Now the threat looms over the US homeland—and the Pentagon’s ability to respond is limited.
Security Latest – Read More
The Role of Blockchain and Smart Contracts in Securing Digital Transactions
/in General NewsLearn how blockchain and smart contracts improve cybersecurity factors in online transactions, remove the element of fraud, and…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
US Updates a Science and Technology Pact With China to Reflect Growing Rivalry and Security Threats
/in General NewsThe new agreement has a narrower scope and additional safeguards to minimize the risk to national security.
The post US Updates a Science and Technology Pact With China to Reflect Growing Rivalry and Security Threats appeared first on SecurityWeek.
SecurityWeek – Read More
Critical Vulnerabilities Found in Ruijie Reyee Cloud Management Platform
/in General NewsResearchers warn about critical vulnerabilities in Ruijie Networks’ Reyee cloud management platform and Reyee OS network devices.
The post Critical Vulnerabilities Found in Ruijie Reyee Cloud Management Platform appeared first on SecurityWeek.
SecurityWeek – Read More