BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [local] TightVNC 2.8.83 - Control Pipe Manipulation
- [remote] ProSSHD 1.2 20090726 - Denial of Service (DoS)
- [webapps] Laravel Pulse 1.3.1 - Arbitrary Code Injection
- [local] Microsoft Windows 11 Version 24H2 Cross Device Service - Elevation of Privilege
- [remote] ABB Cylon Aspect 3.08.04 DeploySource - Remote Code Execution (RCE)
- [remote] Grandstream GSD3710 1.0.11.13 - Stack Overflow
- [webapps] CloudClassroom PHP Project 1.0 - SQL Injection
- [remote] Microsoft Windows Server 2025 JScript Engine - Remote Code Execution (RCE)
- [local] macOS LaunchDaemon iOS 17.2 - Privilege Escalation
- [remote] Apache Tomcat 10.1.39 - Denial of Service (DoS)
Why Custom IOCs Are Necessary for Advanced Threat Hunting and Detection
/in General NewsThe ability to internalize and operationalize customized threat intelligence as part of a holistic security system is no longer a luxury; it’s a necessity.
The post Why Custom IOCs Are Necessary for Advanced Threat Hunting and Detection appeared first on SecurityWeek.
SecurityWeek – Read More
Discontinued GeoVision Products Targeted in Botnet Attacks via Zero-Day
/in General NewsA zero-day vulnerability affecting five discontinued GeoVision product models has been exploited by a botnet.
The post Discontinued GeoVision Products Targeted in Botnet Attacks via Zero-Day appeared first on SecurityWeek.
SecurityWeek – Read More
Why the Demand for Cybersecurity Innovation Is Surging
/in General NewsCompanies that recognize current market opportunities — from the need to safely implement revolutionary technology like AI to the vast proliferation of cyber threats — have remarkable growth prospects.
darkreading – Read More
5 Best VPNs for Streaming in 2024
/in General NewsDiscover the top VPN services for streaming that offer fast speeds, reliable connections and access to a wide range of streaming platforms.
Security | TechRepublic – Read More
The Problem of Permissions and Non-Human Identities – Why Remediating Credentials Takes Longer Than You Think
/in General NewsAccording to research from GitGuardian and CyberArk, 79% of IT decision-makers reported having experienced a secrets leak, up from 75% in the previous year’s report. At the same time, the number of leaked credentials has never been higher, with over 12.7 million hardcoded credentials in public GitHub repositories alone. One of the more troubling aspects of this report is that over 90% of valid
The Hacker News – Read More
Ransomware Attack on Oklahoma Medical Center Impacts 133,000
/in General NewsGreat Plains Regional Medical Center says the personal information of 133,000 individuals was compromised in a ransomware attack.
The post Ransomware Attack on Oklahoma Medical Center Impacts 133,000 appeared first on SecurityWeek.
SecurityWeek – Read More
Space tech giant Maxar confirms hacker accessed employees’ personal data
/in General NewsMaxar has 2,600 employees — with more than half having security clearances to work on classified U.S. government projects.
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
The best password manager for Mac in 2024: Expert tested
/in General NewsWe tested the best password managers for Mac right now, to help you keep your laptop logins secure. These are our favorites.
Latest stories for ZDNET in Security – Read More
Fortinet VPN Zero-Day Exploited in Malware Attacks Remains Unpatched: Report
/in General NewsThe DeepData malware framework was seen exploiting a Fortinet VPN client for Windows zero-day that remains unpatched.
The post Fortinet VPN Zero-Day Exploited in Malware Attacks Remains Unpatched: Report appeared first on SecurityWeek.
SecurityWeek – Read More
Mozilla 0Din Warns of ChatGPT Sandbox Flaws Enabling Python Execution
/in General NewsMozilla’s 0Din uncovers critical flaws in ChatGPT’s sandbox, allowing Python code execution and access to internal configurations. OpenAI…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More