BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [local] TP-Link VN020 F3v(T) TT_V6.2.1021) - DHCP Stack Buffer Overflow
- [webapps] WordPress Frontend Login and Registration Blocks Plugin 1.0.7 - Privilege Escalation
- [webapps] Kentico Xperience 13.0.178 - Cross Site Scripting (XSS)
- [local] RDPGuard 9.9.9 - Privilege Escalation
- [webapps] WordPress Depicter Plugin 3.6.1 - SQL Injection
- [webapps] SureTriggers OttoKit Plugin 1.0.82 - Privilege Escalation
- [local] Microsoft Windows 11 Pro 23H2 - Ancillary Function Driver for WinSock Privilege Escalation
- [local] VirtualBox 7.0.16 - Privilege Escalation
- [remote] Apache ActiveMQ 6.1.6 - Denial of Service (DOS)
- [webapps] ERPNext 14.82.1 - Account Takeover via Cross-Site Request Forgery (CSRF)
Dark Web Anti-Bot Services Let Phishers Bypass Google’s Red Page
/in General NewsAnti-bot services on the dark web allow phishers to bypass Google’s Red Page warnings, evading detection and making…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Skills shortage persists in cybersecurity with many jobs going unfilled
/in General NewsA new report from CyberSeek found that there are only enough workers to fill 83% of available jobs.Read More
Security News | VentureBeat – Read More
Department of Defense’s Space Security Tool Aranya Goes Open Source
/in General NewsIn a positive outcome, the Department of Defense’s encryption software has been made open source. Now everyone can have access to military grade encryption tech that was previously exclusive to government agencies and defense contractors. SpiderOak announced on October 17 that Aranya, their zero-trust framework used in OrbitSecure platform, is now available on GitHub. OrbitSecure is a security…
Source
TechSplicer – Read More
INE Security Launches New Training Solutions to Enhance Cyber Hygiene for SMBs
/in General NewsCary, NC, 22nd October 2024, CyberNewsWire
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Anthropic’s new AI can use computers like a human, redefining automation for enterprises
/in General NewsAnthropic’s new AI, Claude 3.5 Sonnet, introduces groundbreaking “Computer Use” capabilities, allowing AI to interact with applications and complete complex tasks, potentially transforming enterprise workflows.Read More
Security News | VentureBeat – Read More
US Police Detective Charged With Purchasing Stolen Credentials
/in General NewsTerrance Michael Ciszek is charged with buying stolen account credentials from the Genesis Market dark web marketplace.
The post US Police Detective Charged With Purchasing Stolen Credentials appeared first on SecurityWeek.
SecurityWeek – Read More
What Today’s SOC Teams Can Learn From Baseball
/in General NewsThere are more similarities between developing a professional athlete and developing a cybersecurity pro than you might expect.
darkreading – Read More
UK ‘considering all options’ to tackle cyberthreats, says government minister
/in General NewsDan Jarvis, the U.K.’s security minister, says the country’s options for improving its defenses against cybercrime and digital espionage include an overhaul of the 1990 Computer Misuse Act.
The Record from Recorded Future News – Read More
The struggle for software liability: Inside a ‘very, very, very hard problem’
/in General NewsLegal experts, technologists and tech-industry representatives say software liability is extremely difficult to design, with multiple competing approaches. But some lawmakers want to make it a top priority.
The Record from Recorded Future News – Read More
Generative AI grows 17% in 2024, but data quality plummets: Key findings from Appen’s State of AI Report
/in General NewsAppen’s 2024 State of AI report reveals surging generative AI adoption, but companies face growing challenges with data quality, bottlenecks, and declining ROI in AI deployments.Read More
Security News | VentureBeat – Read More