BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [local] TightVNC 2.8.83 - Control Pipe Manipulation
- [remote] ProSSHD 1.2 20090726 - Denial of Service (DoS)
- [webapps] Laravel Pulse 1.3.1 - Arbitrary Code Injection
- [local] Microsoft Windows 11 Version 24H2 Cross Device Service - Elevation of Privilege
- [remote] ABB Cylon Aspect 3.08.04 DeploySource - Remote Code Execution (RCE)
- [remote] Grandstream GSD3710 1.0.11.13 - Stack Overflow
- [webapps] CloudClassroom PHP Project 1.0 - SQL Injection
- [remote] Microsoft Windows Server 2025 JScript Engine - Remote Code Execution (RCE)
- [local] macOS LaunchDaemon iOS 17.2 - Privilege Escalation
- [remote] Apache Tomcat 10.1.39 - Denial of Service (DoS)
McAfee launches scam detector to stop scams before they strike
/in General NewsScams are everywhere. McAfee’s new scam detector spots and stops scams across text, email, and video to keep you from being fooled.Read More
Security News | VentureBeat – Read More
Security Risk Advisors joins the Microsoft Intelligent Security Association
/in General NewsPhiladelphia, Pennsylvania, 7th January 2025, CyberNewsWire
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Name That Edge Toon: Greetings and Salutations
/in General NewsFeeling creative? Submit your caption and our panel of experts will reward the winner with a $25 gift card.
darkreading – Read More
Cybercriminals Don’t Care About National Cyber Policy
/in General NewsWe can’t put defense on hold until Inauguration Day.
darkreading – Read More
UN aviation agency ‘investigating’ security breach after hacker claims theft of personal data
/in General NewsICAO says the incident was allegedly linked to a hacker ‘known for targeting international organizations’
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
CyTwist Launches Advanced Security Solution to identify AI-Driven Cyber Threats in minutes
/in General NewsRamat Gan, Israel, 7th January 2025, CyberNewsWire
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Dell, HPE, MediaTek Patch Vulnerabilities in Their Products
/in General NewsMediaTek, HPE and Dell release advisories to inform customers about potentially serious vulnerabilities found and patched in their products.
The post Dell, HPE, MediaTek Patch Vulnerabilities in Their Products appeared first on SecurityWeek.
SecurityWeek – Read More
Washington Attorney General Sues T-Mobile Over 2021 Data Breach
/in General NewsWashington State Attorney General Bob Ferguson has filed a lawsuit against T-Mobile over a 2021 data breach that impacted over 76 million consumers.
The post Washington Attorney General Sues T-Mobile Over 2021 Data Breach appeared first on SecurityWeek.
SecurityWeek – Read More
CISA: No Federal Agency Beyond Treasury Impacted by BeyondTrust Incident
/in General NewsCISA says no federal agencies other than Treasury were impacted by the recent compromise of a BeyondTrust cloud-based service.
The post CISA: No Federal Agency Beyond Treasury Impacted by BeyondTrust Incident appeared first on SecurityWeek.
SecurityWeek – Read More
University’s Critical Infrastructure Ransomware Attack Tracker Reaches 2,000 Incidents
/in General NewsTemple University’s Critical Infrastructure Ransomware Attacks (CIRA) database now contains over 2,000 entries.
The post University’s Critical Infrastructure Ransomware Attack Tracker Reaches 2,000 Incidents appeared first on SecurityWeek.
SecurityWeek – Read More