BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
- Uro - Declutters Url Lists For Crawling/Pentesting
- Wshlient - A Simple Tool To Interact With Web Shells And Command Injection Vulnerabilities
Exploit DB
- [remote] Apache ActiveMQ 6.1.6 - Denial of Service (DOS)
- [local] VirtualBox 7.0.16 - Privilege Escalation
- [webapps] WordPress Depicter Plugin 3.6.1 - SQL Injection
- [local] Microsoft Windows 11 Pro 23H2 - Ancillary Function Driver for WinSock Privilege Escalation
- [webapps] SureTriggers OttoKit Plugin 1.0.82 - Privilege Escalation
- [webapps] ERPNext 14.82.1 - Account Takeover via Cross-Site Request Forgery (CSRF)
- [webapps] Casdoor 1.901.0 - Cross-Site Request Forgery (CSRF)
- [webapps] Grokability Snipe-IT 8.0.4 - Insecure Direct Object Reference (IDOR)
- [local] Daikin Security Gateway 14 - Remote Password Reset
- [local] ZTE ZXV10 H201L - RCE via authentication bypass
A Step-by-Step Guide to How Threat Hunting Works
/in General NewsStay ahead of cybercrime with proactive threat hunting. Learn how threat hunters identify hidden threats, protect critical systems,…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Facebook Businesses Targeted in Infostealer Phishing Campaign
/in General NewsThe threat actors deceive their victims by impersonating the legal teams of companies, well-known Web stores, and manufacturers.
darkreading – Read More
Cybersecurity Job Market Stagnates, Dissatisfaction Abounds
/in General NewsThe 2024 ISC2 Cybersecurity Workforce Study found that amid a tightening job market and dynamic cyber-threat environment, ongoing staffing and skills shortages are putting organizations at serious risk. Can AI move the needle in defenders’ favor?
darkreading – Read More
FBI: Iranian cyber group targeted Summer Olympics with attack on French display provider
/in General NewsThe hacking group’s goal was to “display photo montages denouncing the participation of Israeli athletes in the 2024 Olympic and Paralympic Games,” the FBI said.
The Record from Recorded Future News – Read More
Microsoft delays its troubled AI-powered Recall feature yet again
/in General NewsMicrosoft needs ‘additional time to refine’ Recall. Here’s the new target date for rollout and what else we know.
Latest stories for ZDNET in Security – Read More
Midnight Blizzard Escalates Spear-Phishing Attacks On Over 100 Organizations
/in General NewsRussian hackers, known as Midnight Blizzard, launch targeted spear-phishing on U.S. officials, exploiting RDP files to gain access to data.
Security | TechRepublic – Read More
Canada Grapples With ‘Second-to-None’ PRC-Backed Threat Actors
/in General NewsChinese APTs lurked in Canadian government networks for five years — and that’s just one among a whole host of threats from Chinese bad actors.
darkreading – Read More
New Xiū gǒu Phishing Kit Hits UK, US, Japan, Australia Across Key Sectors
/in General NewsCybersecurity researchers uncovered the “Xiū gǒu” phishing kit targeting users in the UK, US, Spain, Australia, and Japan.…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Shopping scam sprawled across thousands of websites, bilked ‘tens of millions of dollars’
/in General NewsThe crooks hacked legitimate shopping websites and redirected people to fake online shops that sold, but never shipped, hard-to-find items.
The Record from Recorded Future News – Read More
How To Create a Complete GitHub Backup
/in General NewsThe issue of GitHub data protection is increasingly discussed among developers on platforms like Reddit, X, and HackerNews.…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More