BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [remote] Apache Tomcat 10.1.39 - Denial of Service (DoS)
- [remote] Grandstream GSD3710 1.0.11.13 - Stack Overflow
- [webapps] CloudClassroom PHP Project 1.0 - SQL Injection
- [remote] Microsoft Windows Server 2025 JScript Engine - Remote Code Execution (RCE)
- [remote] ABB Cylon Aspect 3.08.04 DeploySource - Remote Code Execution (RCE)
- [local] macOS LaunchDaemon iOS 17.2 - Privilege Escalation
- [remote] Automic Agent 24.3.0 HF4 - Privilege Escalation
- [remote] Fortra GoAnywhere MFT 7.4.1 - Authentication Bypass
- [webapps] WordPress Digits Plugin 8.4.6.1 - Authentication Bypass via OTP Bruteforcing
- [remote] SolarWinds Serv-U 15.4.2 HF1 - Directory Traversal
Interpol Clamps Down on Cybercrime and Arrests Over 1,000 Suspects in Africa
/in General NewsOperation Serengeti targeted criminal suspects in Africa behind ransomware, business email compromise, digital extortion and scams.
The post Interpol Clamps Down on Cybercrime and Arrests Over 1,000 Suspects in Africa appeared first on SecurityWeek.
SecurityWeek – Read More
Salt Typhoon Builds Out Malware Arsenal With GhostSpider
/in General NewsThe APT, aka Earth Estries, is one of China’s most effective threat actors, performing espionage for sometimes years on end against telcos, ISPs, and governments before being detected.
darkreading – Read More
RansomHub gang says it broke into networks of Texas city, Minneapolis agency
/in General NewsThe RansomHub cybercrime operation took credit for publicly reported cyberattacks on the Coppell, Texas, government and the citywide parks agency for Minneapolis.
The Record from Recorded Future News – Read More
Russia-linked hackers exploited Firefox and Windows bugs in ‘widespread’ hacking campaign
/in General NewsThe Russia-aligned RomCom gang exploited the vulnerabilities to target hundreds of Firefox users across Europe and North America.
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
Automating Data Encryption and Security Audits for Continuous Protection
/in General NewsProtecting sensitive data is critical for businesses facing constant cyber threats. Automating encryption, audits, and access control strengthens security and reduces human error.
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
OpenSea Phishers Aim to Drain Crypto Wallets of NFT Enthusiasts
/in General NewsCyberattackers have been targeting the online NFT marketplace with emails claiming to make an offer to a targeted user; in reality, clicking on a malicious link takes victims to a crypto-draining site.
darkreading – Read More
Australia Passes Groundbreaking Cyber Security Law to Boost Resilience
/in General NewsAustralia’s landmark Cyber Security Act has been passed, setting new standards for incident reporting, ransomware payments, and critical infrastructure protection.
Security | TechRepublic – Read More
‘Matrix’ Hackers Deploy Massive New IoT Botnet for DDoS Attacks
/in General NewsAqua Nautilus researchers have discovered a campaign powering a series of large-scale DDoS attacks launched by Matrix, which…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Canadian privacy regulators publish details of medical testing company’s data breach
/in General NewsA 2020 report detailing the hack of a Canadian medical testing company was released Monday after a court ruled it could be made public, ending a four-year battle during which the company sought to keep the details of the investigation secret.
The Record from Recorded Future News – Read More
Anthropic bets on personalization in the AI arms race with new ‘styles’ feature
/in General NewsAnthropic’s AI assistant Claude can now match your writing style and tone at work, making it easier for companies to use AI while keeping their brand voice – a feature missing from ChatGPT and Google’s AI tools.Read More
Security News | VentureBeat – Read More