BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [local] TightVNC 2.8.83 - Control Pipe Manipulation
- [remote] ProSSHD 1.2 20090726 - Denial of Service (DoS)
- [webapps] Laravel Pulse 1.3.1 - Arbitrary Code Injection
- [local] Microsoft Windows 11 Version 24H2 Cross Device Service - Elevation of Privilege
- [remote] ABB Cylon Aspect 3.08.04 DeploySource - Remote Code Execution (RCE)
- [remote] Grandstream GSD3710 1.0.11.13 - Stack Overflow
- [webapps] CloudClassroom PHP Project 1.0 - SQL Injection
- [remote] Microsoft Windows Server 2025 JScript Engine - Remote Code Execution (RCE)
- [local] macOS LaunchDaemon iOS 17.2 - Privilege Escalation
- [remote] Apache Tomcat 10.1.39 - Denial of Service (DoS)
764 Terror Network Member Richard Densmore Sentenced to 30 Years in Prison
/in General NewsThe 47-year-old Michigan man, who pleaded guilty to sexually exploiting a child, was highly active in the online criminal network called 764, which the FBI now considers a “tier one” terrorism threat.
Security Latest – Read More
‘SteelFox’ Malware Blitz Infects 11K Victims With Bundle of Pain
/in General NewsThe malware combines a miner and data stealer, and it packs functions that make detection and mitigation a challenge.
darkreading – Read More
North Korean Hackers Target macOS Users with Fake Crypto PDFs
/in General NewsNorth Korean cryptocurrency thieves caught targeting macOS with fake PDF applications, backdoors and new persistence tactics.
The post North Korean Hackers Target macOS Users with Fake Crypto PDFs appeared first on SecurityWeek.
SecurityWeek – Read More
Fabrice Malware on PyPI Has Been Stealing AWS Credentials for 3 Years
/in General NewsThe malicious Python package “Fabrice” on PyPI mimics the “Fabric” library to steal AWS credentials, affecting thousands. Learn how…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Hacker says they banned ‘thousands’ of Call of Duty gamers by abusing anti-cheat flaw
/in General NewsThe hacker, who goes by Vizor, tells TechCrunch that they exploited a bug in the popular game’s anti-cheat software for months.
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
The Biggest Inhibitor of Cybersecurity: The Human Element
/in General NewsEssential steps such as security awareness training, MFA, and Zero Trust identity management help organizations reduce the human element and stay ahead in the cybersecurity curve.
The post The Biggest Inhibitor of Cybersecurity: The Human Element appeared first on SecurityWeek.
SecurityWeek – Read More
Androxgh0st Botnet Integrates Mozi, Expands Attacks on IoT Vulnerabilities
/in General NewsCloudSEK reports that the Androxgh0st botnet has integrated with the Mozi botnet and exploits a wide range of…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
China-linked hackers tasked with Japanese targets pursue them through Europe
/in General NewsA Beijing-aligned hacker group has been spotted targeting a diplomatic organization in the European Union for the first time. The attack used a Japanese-themed lure.
The Record from Recorded Future News – Read More
The Power of Process in Creating a Successful Security Posture
/in General NewsEstablishing realistic, practitioner-driven processes prevents employee burnout, standardizes experiences, and closes many of the gaps exposed by repeated one-offs.
darkreading – Read More
North Korean Hackers Use Fake News to Spread ‘Hidden Risk’ Malware
/in General NewsNorth Korean hackers are targeting cryptocurrency businesses with a sophisticated new malware campaign, dubbed “Hidden Risk.” Learn how…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More