BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [webapps] Skyvern 0.1.85 - Remote Code Execution (RCE) via SSTI
- [remote] PCMan FTP Server 2.0.7 - Buffer Overflow
- [webapps] Litespeed Cache WordPress Plugin 6.3.0.1 - Privilege Escalation
- [local] Parrot and DJI variants Drone OSes - Kernel Panic Exploit
- [remote] Windows 11 SMB Client - Privilege Escalation & Remote Code Execution (RCE)
- [remote] AirKeyboard iOS App 1.0.5 - Remote Input Injection
- [webapps] PHP CGI Module 8.3.4 - Remote Code Execution (RCE)
- [remote] WebDAV Windows 10 - Remote Code Execution (RCE)
- [local] Microsoft Excel Use After Free - Local Code Execution
- [remote] Windows File Explorer Windows 10 Pro x64 - TAR Extraction
UnitedHealth updates number of data breach victims to 190 million
/in General NewsThe 2024 ransomware attack on Change Healthcare exposed the data of about 190 million people, according to an update from parent company UnitedHealth Group.
The Record from Recorded Future News – Read More
US Privacy Snags a Win as Judge Limits Warrantless FBI Searches
/in General NewsPlus: A hacker finds an issue with Cloudflare’s systems that could reveal app users’ rough locations, and the Trump administration puts a wrench in a key cybersecurity investigation.
Security Latest – Read More
UnitedHealth confirms 190 million Americans affected by Change Healthcare data breach
/in General NewsThe number of individuals confirmed to be affected by the data breach is almost double the company’s previous estimate.
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
CISOs Are Gaining C-Suite Swagger, but Has It Come With a Cost?
/in General NewsThe number of CISOs who report directly to the CEO is up sharply in recent years, but many still say it’s not enough to secure adequate resources.
darkreading – Read More
DoJ Busts Up Another Multinational DPRK IT Worker Scam
/in General NewsA departmentwide initiative has now led to five major law enforcement actions, in an attempt to curb the increasingly common trend of North Korean hackers posing as IT job applicants.
darkreading – Read More
MITRE’s Latest ATT&CK Simulations Tackles Cloud Defenses
/in General NewsThe MITRE framework’s applied exercise provides defenders with critical feedback about how to detect and defend against common, but sophisticated, attacks.
darkreading – Read More
Cisco: Critical Meeting Management Bug Requires Urgent Patch
/in General NewsThe bug has been given a 9.9 CVSS score, and could allow authenticated threat actors to escalate their privileges to admin-level if exploited.
darkreading – Read More
3 Use Cases for Third-Party API Security
/in General NewsThird-party API security requires a tailored approach for different scenarios. Learn how to adapt your security strategy to outbound data flows, inbound traffic, and SaaS-to-SaaS interconnections.
darkreading – Read More
US Charges Five in North Korean IT Worker Hiring Scam
/in General NewsUS prosecutors charged five, including North Koreans, for tricking firms into hiring fake IT workers, sending $866K+ to…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
At least $69 million stolen from crypto platform Phemex in suspected cyberattack
/in General NewsSingapore-based cryptocurrency platform Phemex was forced to pause some of its operations on Thursday after a suspected cyberattack led to the theft of more than $69 million in digital coins.
The Record from Recorded Future News – Read More