BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [webapps] Stacks Mobile App Builder 5.2.3 - Authentication Bypass via Account Takeover
- [remote] Microsoft PowerPoint 2019 - Remote Code Execution (RCE)
- [remote] ScriptCase 9.12.006 (23) - Remote Command Execution (RCE)
- [local] Sudo chroot 1.9.17 - Local Privilege Escalation
- [local] Sudo 1.9.17 Host Option - Elevation of Privilege
- [local] Microsoft Defender for Endpoint (MDE) - Elevation of Privilege
- [webapps] Discourse 3.2.x - Anonymous Cache Poisoning
- [remote] Microsoft Outlook - Remote Code Execution (RCE)
- [remote] Microsoft SharePoint 2019 - NTLM Authentication
- [remote] Wing FTP Server 7.4.3 - Unauthenticated Remote Code Execution (RCE)
Data of more than 740,000 stolen in ransomware attack on Michigan hospital network
/in General NewsMcLaren Health Care told regulators that a ransomware attack initially reported in August 2024 breached the data of hundreds of thousands of people.
The Record from Recorded Future News – Read More
A CISO’s AI Playbook
/in General NewsIn a market where security budgets flatten while threats accelerate, improving analyst throughput is fiscal stewardship.
darkreading – Read More
Fake DMV Texts Scam Thousands in Widespread Phishing Campaign
/in General NewsA series of fraudulent text messages impersonating state Departments of Motor Vehicles (DMVs) has spread throughout the United…
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
This Linux distro routes all your traffic through the Tor network – and it’s my new favorite for privacy
/in General NewsI could easily see myself defaulting to Securonis when I need serious security.
Latest stories for ZDNET in Security – Read More
Critical Authentication Bypass Flaw Patched in Teleport
/in General NewsA critical-severity vulnerability in Teleport could allow remote attackers to bypass SSH authentication and access managed systems.
The post Critical Authentication Bypass Flaw Patched in Teleport appeared first on SecurityWeek.
SecurityWeek – Read More
743,000 Impacted by McLaren Health Care Data Breach
/in General NewsThe personal information of 743,000 individuals was compromised in a 2024 ransomware attack on McLaren Health Care.
The post 743,000 Impacted by McLaren Health Care Data Breach appeared first on SecurityWeek.
SecurityWeek – Read More
Fake Minecraft Mods on GitHub Found Stealing Player Data
/in General NewsMalware hidden in fake Minecraft Mods on GitHub is stealing passwords and crypto from players. Over 1,500 devices may be affected, researchers warn.
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
US Braces for Cyberattacks After Joining Israel-Iran War
/in General NewsIranian hackers are expected to intensify cyberattacks against the US after the recent air strikes on Iran’s nuclear sites.
The post US Braces for Cyberattacks After Joining Israel-Iran War appeared first on SecurityWeek.
SecurityWeek – Read More
Zyxel Devices Hit by Active Exploits Targeting CVE-2023-28771 Vulnerability
/in General NewsZyxel users beware: A critical remote code execution flaw (CVE-2023-28771) in Zyxel devices is under active exploitation by a Mirai-like botnet. GreyNoise observed a surge on June 16, targeting devices globally.
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
Taiwan Is Rushing to Make Its Own Drones Before It’s Too Late
/in General NewsUnmanned vehicles are increasingly becoming essential weapons of war. But with a potential conflict with China looming large, Taiwan is scrambling to build a domestic drone industry from scratch.
Security Latest – Read More