BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [remote] Apache Tomcat 10.1.39 - Denial of Service (DoS)
- [remote] Grandstream GSD3710 1.0.11.13 - Stack Overflow
- [webapps] CloudClassroom PHP Project 1.0 - SQL Injection
- [remote] Microsoft Windows Server 2025 JScript Engine - Remote Code Execution (RCE)
- [remote] ABB Cylon Aspect 3.08.04 DeploySource - Remote Code Execution (RCE)
- [local] macOS LaunchDaemon iOS 17.2 - Privilege Escalation
- [remote] Automic Agent 24.3.0 HF4 - Privilege Escalation
- [remote] Fortra GoAnywhere MFT 7.4.1 - Authentication Bypass
- [webapps] WordPress Digits Plugin 8.4.6.1 - Authentication Bypass via OTP Bruteforcing
- [remote] SolarWinds Serv-U 15.4.2 HF1 - Directory Traversal
White House Outlines AI’s Role in National Security
/in General NewsThe National Security Memorandum on Artificial Intelligence tasks various federal agencies with securing the AI supply chain from potential cyberattacks and disseminating timely threat information about such attacks.
darkreading – Read More
‘Midnight Blizzard’ Targets Networks With Signed RDP Files
/in General NewsThe Russian-backed group is using a novel access vector to harvest victim data and compromise devices in a large-scale intelligence-gathering operation.
darkreading – Read More
The cybsecurity problems and opportunities facing open-source startups
/in General NewsOpen-source software is everywhere, and in everything.Many startups are pursuing explicitly open-source business models. But every company out there that builds software has at least some dependency on open-source code. Recent security issues, however, have made it plain that open-source software is a target for state-level hackers.So, how can we keep building and using code […]
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
Fake Meta Ads Hijacking Facebook Accounts to Spread SYS01 Infostealer
/in General NewsA malvertising campaign is exploiting Meta’s platform to spread SYS01 infostealer, targeting men 45+ via fake ads for…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
15 Leading Technology and Service Providers Achieve SASE Certification
/in General NewsPost Content
darkreading – Read More
Norton Report Reveals Nearly Half of US Consumers Were Targeted by a Scam While Online Shopping
/in General NewsPost Content
darkreading – Read More
Ex-Disney Employee Charged With Hacking Menu Database
/in General NewsIn a vengeful move against the happiest place on Earth, the former employee allegedly used his old credentials to make potentially deadly changes.
darkreading – Read More
Zenity Raises $38M Series B Funding Round to Secure Agentic AI
/in General NewsPost Content
darkreading – Read More
Operation Magnus: Joint Law Enforcement Operation Targets Major Infostealer Networks
/in General NewsRead more about a joint operation between several law enforcement agencies across the globe to tackle RedLine Stealer and META malware.
Security | TechRepublic – Read More
Google’s AI system could change the way we write: InkSight turns handwritten notes digital
/in General NewsGoogle’s InkSight AI transforms handwritten notes into digital text while preserving personal writing style, bridging traditional note-taking with digital efficiency across multiple languages and complex documents.Read More
Security News | VentureBeat – Read More