BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] SOPlanning 1.52.01 (Simple Online Planning Tool) - Remote Code Execution (RCE) (Authenticated)
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
WhiteRabbitNeo: High-Powered Potential of Uncensored AI Pentesting for Attackers and Defenders
/in General NewsVersion 2.5 of WhiteRabbitNeo is designed to think like a seasoned red team expert, capable of identifying and exploiting vulnerabilities with remarkable speed and precision.
The post WhiteRabbitNeo: High-Powered Potential of Uncensored AI Pentesting for Attackers and Defenders appeared first on SecurityWeek.
SecurityWeek – Read More
CyberNews Digest: French ISP, Windows Vulnerability, Henry Schein Breach
/in General NewsOne year later, Henry Schein has disclosed a databreach from that was claimed by by BlackCat Randsomware gang. BlackCat (ALPHV) claming they’ve aquired 35TB of sensitive data. In this breach more than 160000 people got their personal information stolen. Source Alon Leviev shared recently a research project…
Source
TechSplicer – Read More
Master IT Fundamentals With This CompTIA Certification Prep Bundle
/in General NewsPrepare for a successful IT career with lifetime access to expert-led courses covering CompTIA A+, Network+, Security+, and Cloud+ certification prep.
Security | TechRepublic – Read More
Back to the Future, Securing Generative AI
/in General NewsWhile there are similar security challenges that parallel traditional security, we must understand that AI requires new ways to approach security.
The post Back to the Future, Securing Generative AI appeared first on SecurityWeek.
SecurityWeek – Read More
Recent Version of LightSpy iOS Malware Packs Destructive Capabilities
/in General NewsA newer version of the LightSpy malware for iOS includes over a dozen new plugins, many with destructive capabilities.
The post Recent Version of LightSpy iOS Malware Packs Destructive Capabilities appeared first on SecurityWeek.
SecurityWeek – Read More
Google Patches Critical Chrome Vulnerability Reported by Apple
/in General NewsGoogle has patched CVE-2024-10487, a critical Chrome vulnerability, and Mozilla has patched high-severity flaws in Firefox.
The post Google Patches Critical Chrome Vulnerability Reported by Apple appeared first on SecurityWeek.
SecurityWeek – Read More
Synology, QNAP, TrueNAS Address Vulnerabilities Exploited at Pwn2Own Ireland
/in General NewsSynology, QNAP and TrueNAS have started patching and mitigating the vulnerabilities exploited recently at Pwn2Own Ireland 2024.
The post Synology, QNAP, TrueNAS Address Vulnerabilities Exploited at Pwn2Own Ireland appeared first on SecurityWeek.
SecurityWeek – Read More
Best Antivirus Software for Small Businesses in 2024
/in General NewsBitdefender is our overall pick for the best antivirus software for small businesses, while Norton offers 24/7 support, and ESET provides scalability.
Security | TechRepublic – Read More
Italian Politicians Express Alarm at Latest Data Breach Allegedly Affecting 800,000 Citizens
/in General NewsProsecutors say the data of at least 800,000 Italians was compromised in breaches dating from 2022 by a private investigative agency.
The post Italian Politicians Express Alarm at Latest Data Breach Allegedly Affecting 800,000 Citizens appeared first on SecurityWeek.
SecurityWeek – Read More
Russia’s ‘Midnight Blizzard’ hackers target government workers in novel info-stealing campaign
/in General NewsMicrosoft’s Threat Intelligence team said it has seen a Russian actor it tracks as Midnight Blizzard sending “highly targeted spear-phishing emails to individuals in government, academia, defense, non-governmental organizations, and other sectors” since October 22.
The Record from Recorded Future News – Read More