BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [local] TightVNC 2.8.83 - Control Pipe Manipulation
- [remote] ProSSHD 1.2 20090726 - Denial of Service (DoS)
- [webapps] Laravel Pulse 1.3.1 - Arbitrary Code Injection
- [local] Microsoft Windows 11 Version 24H2 Cross Device Service - Elevation of Privilege
- [remote] ABB Cylon Aspect 3.08.04 DeploySource - Remote Code Execution (RCE)
- [remote] Grandstream GSD3710 1.0.11.13 - Stack Overflow
- [webapps] CloudClassroom PHP Project 1.0 - SQL Injection
- [remote] Microsoft Windows Server 2025 JScript Engine - Remote Code Execution (RCE)
- [local] macOS LaunchDaemon iOS 17.2 - Privilege Escalation
- [remote] Apache Tomcat 10.1.39 - Denial of Service (DoS)
Tracker firm Hapn spilling names of thousands of GPS tracking customers
/in General NewsA security researcher found customer names and workplace affiliations spilling directly from Hapn’s servers.
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
FBI Warns of HiatusRAT Malware Targeting Webcams and DVRs
/in General NewsKEY SUMMARY POINTS The FBI has issued a Private Industry Notification (PIN) to highlight new malware campaigns targeting…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
A lightweight app comes with some heavy consequences, researchers say
/in General NewsAn app that marketed itself as a BMI calculator was actually an infostealer with the ability to record screen activity, steal text messages and survey the list of the other apps on the device, according to researchers at McAfee.
The Record from Recorded Future News – Read More
Maximizing Productivity with Online Document Solutions
/in General NewsMany professionals juggle multiple document formats, leading to confusion and wasted time. Imagine a streamlined process that simplifies…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
This $1 phone scanner app can detect Pegasus spyware. Here’s how
/in General NewsPegasus spyware has been infamous for infecting the phones of journalists, activists, human rights organizations, and dissidents globally. iVerifyBasic helped me scan my phone for spyware in just 5 minutes.
Latest stories for ZDNET in Security – Read More
Phishers Spoof Google Calendar Invites in Fast-Spreading, Global Campaign
/in General NewsAttackers are using links to the popular Google scheduling app to lead users to pages that steal credentials, with the ultimate goal of committing financial fraud.
darkreading – Read More
How the ransomware attack at Change Healthcare went down: A timeline
/in General NewsA hack on UnitedHealth-owned tech giant Change Healthcare likely stands as one of the biggest data breaches of U.S. medical data in history.
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
Bureau Raises $30M to Tackle Deepfakes, Payment Fraud
/in General NewsSan Francisco startup scores a Series B round to thwart money mule accounts, deep-fake identities, account takeovers and payment fraud.
The post Bureau Raises $30M to Tackle Deepfakes, Payment Fraud appeared first on SecurityWeek.
SecurityWeek – Read More
Wallarm Releases API Honeypot Report Highlighting API Attack Trends
/in General NewsPost Content
darkreading – Read More
Hackers Exploiting Linux eBPF to Spread Malware in Ongoing Campaign
/in General NewsKEY SUMMARY POINTS Cybersecurity researchers Dr. Web have uncovered a new and active Linux malware campaign aimed at…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More