BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [local] TP-Link VN020 F3v(T) TT_V6.2.1021) - DHCP Stack Buffer Overflow
- [webapps] WordPress Frontend Login and Registration Blocks Plugin 1.0.7 - Privilege Escalation
- [webapps] Kentico Xperience 13.0.178 - Cross Site Scripting (XSS)
- [local] RDPGuard 9.9.9 - Privilege Escalation
- [webapps] WordPress Depicter Plugin 3.6.1 - SQL Injection
- [webapps] SureTriggers OttoKit Plugin 1.0.82 - Privilege Escalation
- [local] Microsoft Windows 11 Pro 23H2 - Ancillary Function Driver for WinSock Privilege Escalation
- [local] VirtualBox 7.0.16 - Privilege Escalation
- [remote] Apache ActiveMQ 6.1.6 - Denial of Service (DOS)
- [webapps] ERPNext 14.82.1 - Account Takeover via Cross-Site Request Forgery (CSRF)
American Water Reconnects Its Network Taps After Cyber Incident
/in General NewsThe company is beginning to bring its systems back online, though the investigation wages on.
darkreading – Read More
Relyance AI Raises $32M Series B Funding to Safeguard AI Innovation in the Enterprise
/in General NewsPost Content
darkreading – Read More
Firefox Update Patches Exploited Vulnerability
/in General NewsInvestigation of the use-after-free flaw is ongoing, but organizations and individual users can update Firefox now for a fix.
Security | TechRepublic – Read More
Deepfakes Can Fool Facial Recognition on Crypto Exchanges
/in General NewsCreating new accounts under fake identities provides attackers with a way to launder money or commit fraud.
Security | TechRepublic – Read More
Microsoft blocked your Windows 11 upgrade? This just-released tool can get the job done
/in General NewsA new version of the popular Rufus utility once again bypasses Microsoft’s strict hardware compatibility requirements for Windows 11 upgrades. But the way it’s implemented might make some people nervous.
Latest stories for ZDNET in Security – Read More
The Internet Archive Breach: Over 31 Million User Accounts Exposed
/in General NewsAttackers got hold of a 6.4 GB file containing the email addresses and hashed passwords of users registered with The Internet Archive.
Security | TechRepublic – Read More
GitHub, Telegram Bots, and QR Codes Abused in New Wave of Phishing Attacks
/in General NewsA new tax-themed malware campaign targeting insurance and finance sectors has been observed leveraging GitHub links in phishing email messages as a way to bypass security measures and deliver Remcos RAT, indicating that the method is gaining traction among threat actors.
“In this campaign, legitimate repositories such as the open-source tax filing software, UsTaxes, HMRC, and InlandRevenue were
The Hacker News – Read More
Ukraine police arrest hacker for operating illegal VPN service to access sanctioned Russian sites
/in General NewsThe suspect’s VPN service allowed users to access more than 48 million IP addresses within the Russian segment of the internet, which is banned within Ukraine.
The Record from Recorded Future News – Read More
HyperRing Demonstrates Wearable Smart Device in Joint Venture With The College of Extraordinary Experiences
/in General NewsSecurity-focused wearable company HyperRing has launched a joint venture with Paul Bulencea, the co-founder of The College of…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Cybersecurity Awareness Lags as Global Workforce Engages in Risky AI Practices
/in General News46% of Gen Z employees are sharing data with AI, according to new research.
Security | TechRepublic – Read More