BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [local] TightVNC 2.8.83 - Control Pipe Manipulation
- [remote] ProSSHD 1.2 20090726 - Denial of Service (DoS)
- [webapps] Laravel Pulse 1.3.1 - Arbitrary Code Injection
- [local] Microsoft Windows 11 Version 24H2 Cross Device Service - Elevation of Privilege
- [remote] ABB Cylon Aspect 3.08.04 DeploySource - Remote Code Execution (RCE)
- [remote] Grandstream GSD3710 1.0.11.13 - Stack Overflow
- [webapps] CloudClassroom PHP Project 1.0 - SQL Injection
- [remote] Microsoft Windows Server 2025 JScript Engine - Remote Code Execution (RCE)
- [local] macOS LaunchDaemon iOS 17.2 - Privilege Escalation
- [remote] Apache Tomcat 10.1.39 - Denial of Service (DoS)
Halliburton Remains Optimistic Amid $35M Data Breach Losses
/in General NewsThough its third-quarter earnings report confirms that the company remains on track, it’s unclear how that will be affected if the threat actors commit further damage.
darkreading – Read More
Revamped Remcos RAT Deployed Against Microsoft Windows Users
/in General NewsWindows users are at risk for full device takeover by an emerging malicious version of the Remcos remote admin tool, which is being used in an ongoing campaign exploiting a known remote code execution (RCE) vulnerability in Microsoft Office and WordPad.
darkreading – Read More
Google DeepMind open-sources AlphaFold 3, ushering in a new era for drug discovery and molecular biology
/in General NewsGoogle DeepMind releases AlphaFold 3’s source code to academics, marking a significant advance in AI-powered molecular biology and drug discovery, while balancing open science with commercial interests in the wake of its creators’ Nobel Prize win.Read More
Security News | VentureBeat – Read More
NordVPN maker’s new identity theft protection service will reimburse you
/in General NewsNordProtect includes ID recovery and restoration, secure credit monitoring, dark web monitoring, and cyber extortion protection. Here’s how to try it.
Latest stories for ZDNET in Security – Read More
Amazon confirms employee data stolen after hacker claims MOVEit breach
/in General NewsAmazon has confirmed that employee data was compromised after a “security event” at a third-party vendor. In a statement given to TechCrunch on Monday, Amazon spokesperson Adam Montgomery confirmed that employee information had been involved in a data breach. “Amazon and AWS systems remain secure, and we have not experienced a security event. We were […]
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
Flexible Structure of Zip Archives Exploited to Hide Malware Undetected
/in General NewsAttackers abuse concatenation, a method that involves appending multiple zip archives into a single file, to deliver a variant of the SmokeLoader Trojan hidden in malicious attachments delivered via phishing
darkreading – Read More
Microsoft Bookings Flaw Enables Account Hijacking and Impersonation
/in General NewsA vulnerability in Microsoft Bookings can expose your organization to serious security risks. Learn how attackers can exploit…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Facebook Asks Supreme Court to Dismiss Cambridge Analytica Lawsuit
/in General NewsMeta has maintained that Facebook did not mislead investors by not including mention of the Cambridge Analytica scandal in its forward-looking risk disclosures, but the plaintiffs say it was a glaring omission.
darkreading – Read More
Sweet Security Announces Availability of its Cloud Native Detection & Response Platform on the AWS Marketplace
/in General NewsTEL AVIV, Israel, 11th November 2024, CyberNewsWire
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Open Source Security Incidents Aren’t Going Away
/in General NewsCompanies and organizations need to recognize the importance of investing in engineers who possess both the soft and hard skills required to secure open source software effectively.
darkreading – Read More