BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] SOPlanning 1.52.01 (Simple Online Planning Tool) - Remote Code Execution (RCE) (Authenticated)
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
The Case Against Abandoning CrowdStrike Post-Outage
/in General NewsKnee-jerk reactions to major vendor outages could do more harm than good.
darkreading – Read More
Noma arrives to provide security from data storage to deployment for enterprise AI solutions
/in General NewsNoma’s platform is designed to safeguard every stage of AI model development and operation, incorporating security tools.Read More
Security News | VentureBeat – Read More
China Says Seabed Sentinels Are Spying, After Trump Taps
/in General NewsOn the heels of a Chinese APT eavesdropping on phone calls made by Trump and Harris campaign staffers, Beijing says foreign nations have mounted an extensive seafaring espionage effort.
darkreading – Read More
North Korean Hackers Team Up with Play Ransomware in Global Attack
/in General NewsState-Sponsored Espionage Meets Ransomware!
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Yahoo Discloses NetIQ iManager Flaws Allowing Remote Code Execution
/in General NewsYahoo researchers found nearly a dozen vulnerabilities in OpenText’s NetIQ iManager and some could have been chained for unauthenticated RCE.
The post Yahoo Discloses NetIQ iManager Flaws Allowing Remote Code Execution appeared first on SecurityWeek.
SecurityWeek – Read More
Mystic Valley Elder Services Data Breach Impacts 87,000 People
/in General NewsMystic Valley Elder Services detected a security breach in April and now says files containing personal information may have been stolen.
The post Mystic Valley Elder Services Data Breach Impacts 87,000 People appeared first on SecurityWeek.
SecurityWeek – Read More
2024 looks set to be another record-breaking year for ransomware — and it’s likely going to get worse
/in General NewsThis year, 2024, looks set to be the most profitable yet for hackers, with four ransom demands paid in the tens of millions of dollars.
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
Designing a Future-focused Cybersecurity Investment Strategy
/in General NewsCISOs must attempt to define a strategic approach to technology investment that will protect the business over the long term.
The post Designing a Future-focused Cybersecurity Investment Strategy appeared first on SecurityWeek.
SecurityWeek – Read More
API Security Matters: The Risks of Turning a Blind Eye
/in General NewsWillfully ignoring important security issues to make our lives easier is, unfortunately, something that does happen in the security field.
The post API Security Matters: The Risks of Turning a Blind Eye appeared first on SecurityWeek.
SecurityWeek – Read More
The best password manager for iPhone in 2024: Expert tested
/in General NewsWe tested some of the best iPhone password managers to help you keep all of your logins secure. These are our favorites.
Latest stories for ZDNET in Security – Read More