BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
- Uro - Declutters Url Lists For Crawling/Pentesting
- Wshlient - A Simple Tool To Interact With Web Shells And Command Injection Vulnerabilities
Exploit DB
- [remote] Apache ActiveMQ 6.1.6 - Denial of Service (DOS)
- [local] VirtualBox 7.0.16 - Privilege Escalation
- [webapps] WordPress Depicter Plugin 3.6.1 - SQL Injection
- [local] Microsoft Windows 11 Pro 23H2 - Ancillary Function Driver for WinSock Privilege Escalation
- [webapps] SureTriggers OttoKit Plugin 1.0.82 - Privilege Escalation
- [webapps] ERPNext 14.82.1 - Account Takeover via Cross-Site Request Forgery (CSRF)
- [webapps] Casdoor 1.901.0 - Cross-Site Request Forgery (CSRF)
- [webapps] Grokability Snipe-IT 8.0.4 - Insecure Direct Object Reference (IDOR)
- [local] Daikin Security Gateway 14 - Remote Password Reset
- [local] ZTE ZXV10 H201L - RCE via authentication bypass
How Russia, China & Iran Are Targeting US Elections
/in General NewsWhile these threats remain a valid concern, US government agencies have doubled down on their assurances to the American public that election infrastructure is secure.
darkreading – Read More
Sophisticated RAT Hides Behind P. Diddy Scandal Lures
/in General NewsThe advanced Python-based PysSilon malware can steal data, record keystrokes, and execute remote commands. The attackers behind it are promising to leak details of deleted X posts related to accused rapper and music producer Sean Combs.
darkreading – Read More
Cyber Founder Recipe for Success: Clear Vision and Trusted Experts
/in General NewsA clear, consistent vision, along with reliable experts, are the two essential ingredients for startup founders to achieve success—both in cyber and beyond.
The post Cyber Founder Recipe for Success: Clear Vision and Trusted Experts appeared first on SecurityWeek.
SecurityWeek – Read More
Modified LockBit and Conti ransomware shows up in DragonForce gang’s attacks
/in General NewsThe manufacturing, real estate and transportation industries are recent targets of the cybercrime operation known as DragonForce. Researchers say it’s serving up versions of LockBit and Conti to affiliates.
The Record from Recorded Future News – Read More
DragonForce Ransomware Expands RaaS, Targets Firms Worldwide
/in General NewsDragonForce ransomware is expanding its RaaS operation and becoming a global cybersecurity threat against businesses worldwide. Companies must…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Tamnoon Raises $12 Million for Cloud Security Remediation Service
/in General NewsTamnoon has raised $12 million in Series A funding for its Managed Cloud Security Remediation service.
The post Tamnoon Raises $12 Million for Cloud Security Remediation Service appeared first on SecurityWeek.
SecurityWeek – Read More
Telegram’s Shift in Privacy: CEO Arrest Sparks Data Access Controversy
/in General NewsThe spotlight messaging app Telegram has made a significant shift in its privacy policy, now allowing government authorities to access data from users suspected of criminal activity. Telegram CEO Pavel Durov, who was arrested in France last month for refusing to hand over user data to authorities, confirmed the changes. Durov stated in a message on his Telegram channel. Previously…
Source
TechSplicer Blog – Read More
Top LMS Training Tips for Effective Learning
/in General NewsLMS training is vital for modern education and corporate learning, enabling efficient course delivery and progress tracking. To…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
US May Be Losing the Race for Global AI Leadership
/in General NewsTo maintain AI leadership, Congress and regulatory agencies must recognize that our foreign competitors are working to surpass us.
darkreading – Read More
Keep Tier-One Applications Out of Virtual Environments
/in General NewsCrafty bad actors can infect all of an organization’s virtual machines at once, rendering tier-one applications useless.
darkreading – Read More