BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] SOPlanning 1.52.01 (Simple Online Planning Tool) - Remote Code Execution (RCE) (Authenticated)
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
Six senators tell Biden administration UN cybercrime treaty must be changed
/in General NewsThe United States “must not align itself with repressive regimes by supporting a Convention that undermines human rights and U.S. interests” under the guise of improving cybersecurity, six Democrats said in a letter to top federal officials.
The Record from Recorded Future News – Read More
French ISP Confirms Cyberattack, Data Breach Affecting 19M
/in General NewsIn the latest attack against ISPs, second-largest French provider Free fell victim to unknown cyberattackers who attempted to sell the compromised data it stole from the company on an underground cybercrime forum.
darkreading – Read More
Operation Magnus: Police Dismantles RedLine and META Infostealer Infrastructure
/in General NewsAn international law enforcement operation, led by the United States, Europol, and the Netherlands, has successfully dismantled the…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Russia and China-linked state hackers intensify attacks on Netherlands, security officials warn
/in General NewsMost of these attacks primarily aim to gain a foothold within critical infrastructure for potential future sabotage, as well as to obtain sensitive information, the Dutch principal counterterrorism unit (NCTV) said in research published Monday.
The Record from Recorded Future News – Read More
Proofpoint to Acquire Data Security Posture Management Firm Normalyze
/in General NewsEnterprise cybersecurity giant Proofpoint is acquiring data security posture management (DSPM) company Normalyze.
The post Proofpoint to Acquire Data Security Posture Management Firm Normalyze appeared first on SecurityWeek.
SecurityWeek – Read More
Russian Malware Attack Targets Ukrainian Military Recruits via Telegram
/in General NewsRussian hackers launched a targeted malware campaign via Telegram, aimed at Ukrainian military recruits. Disguised as recruitment tools,…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
FBI, Partners Disrupt RedLine, Meta Stealer Operations
/in General NewsA collaboration with the FBI and law-enforcement agencies in Europe, the UK, and Australia, Operation Magnus has seized servers and source code related to the two malware families, which have stolen data from millions of victims worldwide.
darkreading – Read More
US names and charges Maxim Rudometov with developing the Redline infostealer
/in General NewsAn unsealed criminal complaint says U.S. investigators used public evidence from various online platforms to identify a Russian national as the alleged creator of the Redline malware.
The Record from Recorded Future News – Read More
RedLine and Meta Infostealers Disrupted by Law Enforcement
/in General NewsAuthorities announce server shutdowns, domain seizures, and arrests in RedLine and Meta infostealers takedown operation.
The post RedLine and Meta Infostealers Disrupted by Law Enforcement appeared first on SecurityWeek.
SecurityWeek – Read More
Russia arrests hacker accused of preventing electronic voting during local election
/in General NewsAccording to the agency’s press service, the 61-year-old suspect used Ukraine-made software to carry out the DDoS attacks on Russia’s critical information infrastructure. His activity coincided with the regional parliamentary and municipal elections.
The Record from Recorded Future News – Read More