BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] SOPlanning 1.52.01 (Simple Online Planning Tool) - Remote Code Execution (RCE) (Authenticated)
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
Cisco Patches Critical Vulnerabilities in Secure Email Gateway, SSM
/in General NewsCisco has released patches for critical vulnerabilities in Secure Email Gateway and Smart Software Manager On-Prem.
The post Cisco Patches Critical Vulnerabilities in Secure Email Gateway, SSM appeared first on SecurityWeek.
SecurityWeek – Read More
IPVanish vs ExpressVPN (2024): Which VPN Is Better?
/in General NewsWhich VPN is better, IPVanish or ExpressVPN? Use our guide to compare pricing, features and more.
Security | TechRepublic – Read More
Weak Credentials Behind Nearly Half of All Cloud-Based Attacks, Research Finds
/in General NewsCredential mismanagement was the leading cause of cloud-based attacks in the first half of 2024, according to a Google Cloud report. Weak credentials and misconfigurations were responsible for 75% of network intrusions during this period.
Cyware News – Latest Cyber News – Read More
Proton promises that its Scribe AI writing assistant won’t mishandle your data
/in General NewsIf you want to boost your productivity with AI but are concerned about privacy, Proton’s new writing assistant is here to help.
Latest news – Read More
Russia-linked FIN7 Hackers Sell Their Security Evasion Tool to Other Groups on Darknet
/in General NewsRussia-linked cybercriminal group FIN7 sells its security evasion tool, AvNeutralizer, to other criminal gangs on darknet forums. The tool helps hackers bypass threat detection systems on victims’ devices.
Cyware News – Latest Cyber News – Read More
Report: Half of SMEs Unprepared for Cyber-Threats
/in General NewsAccording to a new report by JumpCloud, About 49% of SME IT teams feel they lack resources to defend against cyber-threats, with layoffs affecting nearly half of them. 71% believe budget cuts would increase risk.
Cyware News – Latest Cyber News – Read More
Most GitHub Actions Workflows are Insecure in Some Way
/in General NewsA report by Legit Security highlights concerns around the security posture of the GitHub Actions marketplace, with most custom Actions lacking verification and being maintained by one developer.
Cyware News – Latest Cyber News – Read More
Chinese APT Targets Italian Government Agencies and Companies Using 9002 RAT
/in General NewsThe 9002 RAT malware, used in Operation Aurora in 2009, is a versatile trojan that can monitor network traffic, capture screenshots, and execute commands from a remote server. The malware is constantly updated with new variants to avoid detection.
Cyware News – Latest Cyber News – Read More
These two features make the Arc browser even better. Here’s why I love them
/in General NewsArc has several features that make it stand out among web browsers. Two such features are Little Arc and Peak which make the browser more efficient.
Latest news – Read More
Global Police Swoop on Black Axe Cybercrime Syndicate
/in General NewsInterpol’s global operation, Jackal III, targeted West African cybercrime groups, including Black Axe. It resulted in 300 arrests across 21 countries, seizure of $3 million, identification of 400 suspects, and the blocking of over 720 bank accounts.
Cyware News – Latest Cyber News – Read More