BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [webapps] Discourse 3.2.x - Anonymous Cache Poisoning
- [remote] Microsoft PowerPoint 2019 - Remote Code Execution (RCE)
- [remote] ScriptCase 9.12.006 (23) - Remote Command Execution (RCE)
- [local] Sudo chroot 1.9.17 - Local Privilege Escalation
- [local] Sudo 1.9.17 Host Option - Elevation of Privilege
- [remote] Microsoft Outlook - Remote Code Execution (RCE)
- [webapps] Stacks Mobile App Builder 5.2.3 - Authentication Bypass via Account Takeover
- [local] Microsoft Defender for Endpoint (MDE) - Elevation of Privilege
- [remote] gogs 0.13.0 - Remote Code Execution (RCE)
- [remote] Wing FTP Server 7.4.3 - Unauthenticated Remote Code Execution (RCE)
As grocery shortages persist, UNFI says it’s recovering from cyberattack
/in General NewsWhole Foods and other grocery stores reported shortages following the cyberattack
Security News | TechCrunch – Read More
Car sharing giant Zoomcar says hacker accessed personal data of 8.4 million users
/in General NewsThe personal data includes customer names, phone numbers, and car registration numbers.
Security News | TechCrunch – Read More
Anubis Ransomware Encrypts and Wipes Files, Making Recovery Impossible Even After Payment
/in General NewsAn emerging ransomware strain has been discovered incorporating capabilities to encrypt files as well as permanently erase them, a development that has been described as a “rare dual-threat.”
“The ransomware features a ‘wipe mode,’ which permanently erases files, rendering recovery impossible even if the ransom is paid,” Trend Micro researchers Maristel Policarpio, Sarah Pearl Camiling, and
The Hacker News – Read More
Google’s $32 Billion Wiz Deal Draws DOJ Antitrust Scrutiny: Report
/in General NewsAccording to reports, the US Department of Justice will assess whether the deal would harm competition in the cybersecurity market.
The post Google’s $32 Billion Wiz Deal Draws DOJ Antitrust Scrutiny: Report appeared first on SecurityWeek.
SecurityWeek – Read More
Archetyp Dark Web Market Seized, Admin Arrested in Spain
/in General NewsEuropean law enforcement agencies have dismantled Archetyp Market, a long-running dark web platform used primarily for drug sales,…
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
8.4 million people affected by data breach at Indian car share company Zoomcar
/in General NewsThe Bengaluru-based company told investors that it initially became aware of the breach on June 9.
The Record from Recorded Future News – Read More
Mac Mini won’t power on? Apple will fix it for you – for free
/in General NewsHere’s how to check if you qualify to get your system repaired.
Latest stories for ZDNET in Security – Read More
NIST Outlines Real-World Zero-Trust Examples
/in General NewsSP 1800-35 offers 19 examples of how to implement zero-trust architecture (ZTA) using off-the-shelf commercial technologies.
darkreading – Read More
Whole Foods supplier making progress on restoration after cyberattack left shelves empty
/in General NewsUnited Natural Foods (UNFI) said in an update that it “made significant progress” toward restoring its ordering systems after a cyberattack affected the company’s ability to keep grocery stores stocked.
The Record from Recorded Future News – Read More
Asheville Eye Associates Says 147,000 Impacted by Data Breach
/in General NewsAsheville Eye Associates says the personal information of 147,000 individuals was stolen in a November 2024 data breach.
The post Asheville Eye Associates Says 147,000 Impacted by Data Breach appeared first on SecurityWeek.
SecurityWeek – Read More