BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [webapps] Campcodes Online Hospital Management System 1.0 - SQL Injection
- [webapps] WordPress Digits Plugin 8.4.6.1 - Authentication Bypass via OTP Bruteforcing
- [remote] Fortra GoAnywhere MFT 7.4.1 - Authentication Bypass
- [remote] Automic Agent 24.3.0 HF4 - Privilege Escalation
- [remote] SolarWinds Serv-U 15.4.2 HF1 - Directory Traversal
- [remote] Windows File Explorer Windows 11 (23H2) - NTLM Hash Disclosure
- [remote] Grandstream GSD3710 1.0.11.13 - Stack Buffer Overflow
- [webapps] WordPress User Registration & Membership Plugin 4.1.2 - Authentication Bypass
- [local] Microsoft Windows Server 2016 - Win32k Elevation of Privilege
- [remote] Windows 2024.15 - Unauthenticated Desktop Screenshot Capture
Iran’s APT34 Abuses MS Exchange to Spy on Gulf Gov’ts
/in General NewsA MOIS-aligned threat group has been using Microsoft Exchange servers to exfiltrate sensitive data from Gulf-state government agencies.
darkreading – Read More
Nvidia just dropped a new AI model that crushes OpenAI’s GPT-4—no big launch, just big results
/in General NewsNvidia quietly launched a groundbreaking AI model that surpasses OpenAI’s GPT-4 and Anthropic’s Claude 3.5, signaling a major shift in the competitive landscape of artificial intelligence.Read More
Security News | VentureBeat – Read More
Anthropic flags AI’s potential to ‘automate sophisticated destructive cyber attacks’
/in General NewsThe maker of Claude LLMs revises its safety guidelines to manage escalating risks.
Latest stories for ZDNET in Security – Read More
Hacker allegedly behind attacks on FBI, Airbus, National Public Data arrested in Brazil
/in General NewsPolice did not name the suspect, but a threat actor known as USDoD has long boasted of being behind the attacks that were highlighted by Brazilian law enforcement following the arrest.
The Record from Recorded Future News – Read More
Brazil arrests USDoD hacker tied to FBI, National Public Data breaches
/in General NewsBrazilian police have arrested the hacker known as USDoD, responsible for high-profile breaches including the FBI’s InfraGard and…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
71% of Hackers Believe AI Technologies Increase the Value of Hacking
/in General NewsPost Content
darkreading – Read More
Port Raises $35M for its End-to-End Internal Developer Portal
/in General NewsPost Content
darkreading – Read More
Chinese Researchers Tap Quantum to Break Encryption
/in General NewsBut the time when quantum computers pose a tangible threat to modern encryption is likely still several years away.
darkreading – Read More
US Charges Duo Behind Anonymous Sudan for Over 35,000 DDoS Attacks
/in General NewsThe US DoJ indicts two Sudanese nationals allegedly behind Anonymous Sudan for over 35,000 DDoS attacks targeting critical…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Code Execution, Data Tampering Flaw in Nvidia NeMo Gen-AI Framework
/in General NewsArtificial intelligence tech giant Nvidia issues a warning for code execution and data tampering security problems in the NeMo platform.
The post Code Execution, Data Tampering Flaw in Nvidia NeMo Gen-AI Framework appeared first on SecurityWeek.
SecurityWeek – Read More