BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [webapps] Moodle 4.4.0 - Authenticated Remote Code Execution
- [remote] Microsoft SharePoint 2019 - NTLM Authentication
- [remote] gogs 0.13.0 - Remote Code Execution (RCE)
- [remote] Wing FTP Server 7.4.3 - Unauthenticated Remote Code Execution (RCE)
- [webapps] Sitecore 10.4 - Remote Code Execution (RCE)
- [remote] PX4 Military UAV Autopilot 1.12.3 - Denial of Service (DoS)
- [webapps] Pterodactyl Panel 1.11.11 - Remote Code Execution (RCE)
- [remote] OneTrust SDK 6.33.0 - Denial Of Service (DoS)
- [remote] freeSSHd 1.0.9 - Denial of Service (DoS)
- [remote] McAfee Agent 5.7.6 - Insecure Storage of Sensitive Information
Neuro Nostalgia Hackathon 2024: A Retro Journey with Modern Twists
/in General NewsRelive the 90s web era! The Neuro Nostalgia Hackathon challenged teams to transform modern sites into retro masterpieces…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Non-Human Identities Gain Momentum, Requires Both Management, Security
/in General NewsThe number of Non-Human Identities (NHIs) in many organizations has exploded. Key trends, drivers, and market landscape in this fast-developing area are explored.
darkreading – Read More
Lazarus Group Targets Nuclear Industry with CookiePlus Malware
/in General NewsKEY SUMMARY POINTS Securelist by Kaspersky has published its latest threat intelligence report focused on the activities of…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
TunnelBear VPN review: An affordable, easy-to-use VPN with few a few notable pitfalls
/in General NewsTunnelBear is one of our favorite free VPNs, thanks to its secure encryption, access to over 40 servers, and access to most features with a free plan.
Latest stories for ZDNET in Security – Read More
Protect 3 Devices With This Maximum Security Software
/in General NewsTrend Micro guards desktop and mobile devices from ransomware, phishing schemes, spam, and more for one year.
Security | TechRepublic – Read More
Beware Of Shadow AI – Shadow IT’s Less Well-Known Brother
/in General NewsWhile AI tools can enable employees to be innovative and productive, significant data privacy risks can stem from their usage.
The post Beware Of Shadow AI – Shadow IT’s Less Well-Known Brother appeared first on SecurityWeek.
SecurityWeek – Read More
The code whisperer: How Anthropic’s Claude is changing the game for software developers
/in General NewsThe software development world is experiencing its biggest transformation since the advent of open-source coding. Artificial intelligence assistants, once viewed with skepticism by professional developers, have become indispensable tools in the $736.96 billion global software development market. One of the products leading this seismic shift is An…Read More
Security News | VentureBeat – Read More
How CISOs Can Communicate With Their Boards Effectively
/in General NewsWith the increased frequency of board reporting, CISOs need to ensure their interactions are brief, productive, and valuable.
darkreading – Read More
AI Could Generate 10,000 Malware Variants, Evading Detection in 88% of Case
/in General NewsCybersecurity researchers have found that it’s possible to use large language models (LLMs) to generate new variants of malicious JavaScript code at scale in a manner that can better evade detection.
“Although LLMs struggle to create malware from scratch, criminals can easily use them to rewrite or obfuscate existing malware, making it harder to detect,” Palo Alto Networks Unit 42 researchers
The Hacker News – Read More
Middle East Cyberwar Rages On, With No End in Sight
/in General NewsSince October 2023, cyberattacks among countries in the Middle East have persisted, fueled by the conflict between Israel and Hamas, reeling in others on a global scale.
darkreading – Read More