BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [local] TightVNC 2.8.83 - Control Pipe Manipulation
- [remote] ProSSHD 1.2 20090726 - Denial of Service (DoS)
- [webapps] Laravel Pulse 1.3.1 - Arbitrary Code Injection
- [local] Microsoft Windows 11 Version 24H2 Cross Device Service - Elevation of Privilege
- [remote] ABB Cylon Aspect 3.08.04 DeploySource - Remote Code Execution (RCE)
- [remote] Grandstream GSD3710 1.0.11.13 - Stack Overflow
- [webapps] CloudClassroom PHP Project 1.0 - SQL Injection
- [remote] Microsoft Windows Server 2025 JScript Engine - Remote Code Execution (RCE)
- [local] macOS LaunchDaemon iOS 17.2 - Privilege Escalation
- [remote] Apache Tomcat 10.1.39 - Denial of Service (DoS)
Emerging Threats & Vulnerabilities to Prepare for in 2025
/in General NewsFrom zero-day exploits to 5G network vulnerabilities, these are the threats that are expected to persist over the next 12 months.
darkreading – Read More
These were the badly handled data breaches of 2024
/in General NewsBlaming victims, months of silence, and suing security researchers all featured in cybersecurity in 2024.
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
The Intersection of AI and OSINT: Advanced Threats On The Horizon
/in General NewsArtificial Intelligence (A) is revolutionizing intelligence gathering, empowering cybersecurity defenders, and amplifying threat actor capabilities.
The post The Intersection of AI and OSINT: Advanced Threats On The Horizon appeared first on SecurityWeek.
SecurityWeek – Read More
Nearly half a million people had data stolen after cyberattack on American Addiction Centers
/in General NewsThe company began mailing out breach notification letters ahead of the Christmas holiday, warning 422,424 people that Social Security numbers and health insurance information were among the data leaked during the attack.
The Record from Recorded Future News – Read More
Defense Giant General Dynamics Says Employees Targeted in Phishing Attack
/in General NewsGeneral Dynamics says several benefits accounts were hacked after threat actors targeted employees in a phishing campaign.
The post Defense Giant General Dynamics Says Employees Targeted in Phishing Attack appeared first on SecurityWeek.
SecurityWeek – Read More
Cl0p Ransomware Group to Name Over 60 Victims of Cleo Attack
/in General NewsThe Cl0p ransomware group has confirmed that Blue Yonder was hit in the Cleo attack and the hackers are preparing to name over 60 others.
The post Cl0p Ransomware Group to Name Over 60 Victims of Cleo Attack appeared first on SecurityWeek.
SecurityWeek – Read More
Researchers Uncover Dark Web Operation Entirely Focused on KYC Bypass
/in General NewsiProov uncovers a major Dark Web operation selling stolen identities with matching biometrics, posing a serious threat to KYC verification systems
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Japan Airlines Was Hit by a Cyberattack, Delaying Flights During the Year-End Holiday Season
/in General NewsJapan Airlines was hit by a cyberattack, causing delays to more than 20 domestic flights, but there was no threat to flight safety.
The post Japan Airlines Was Hit by a Cyberattack, Delaying Flights During the Year-End Holiday Season appeared first on SecurityWeek.
SecurityWeek – Read More
DDoS Attacks Surge as Africa Expands Its Digital Footprint
/in General NewsAs organizations on the continent expand their use of digital technologies, they increasingly face many of the same threats that entities in other regions have had to deal with for years.
darkreading – Read More
SEO Poisoning: How Cybercriminals Are Turning Search Engines into Traps
/in General NewsStay protected from SEO poisoning, a cyber threat exploiting search engine rankings to spread malware and phishing scams.…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More