BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] SOPlanning 1.52.01 (Simple Online Planning Tool) - Remote Code Execution (RCE) (Authenticated)
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
In Other News: Apple WPS Surveillance, Canadian Gov Wants Backdoors, NIST AI Program
/in General NewsNoteworthy stories that might have slipped under the radar: Apple WPS can be abused for surveillance, Canadian government wants backdoors, NIST launches AI program.
The post In Other News: Apple WPS Surveillance, Canadian Gov Wants Backdoors, NIST AI Program appeared first on SecurityWeek.
SecurityWeek – Read More
Data Leak Exposes Business Leaders and Top Celebrity Data
/in General NewsBy Waqas
A data leak incident involving Clarity.fm left the personal data of business leaders and celebrities exposed to public…
This is a post from HackRead.com Read the original post: Data Leak Exposes Business Leaders and Top Celebrity Data
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Beyond Threat Detection – A Race to Digital Security
/in General NewsDigital content is a double-edged sword, providing vast benefits while simultaneously posing significant threats to organizations across the globe. The sharing of digital content has increased significantly in recent years, mainly via email, digital documents, and chat. In turn, this has created an expansive attack surface and has made ‘digital content’ the preferred carrier for cybercriminals
The Hacker News – Read More
OpenAI’s Altman Sidesteps Questions About Governance, Johansson at UN AI Summit
/in General NewsAltman spent part of his virtual appearance fending off thorny questions about governance, an AI voice controversy and criticism from ousted board members.
The post OpenAI’s Altman Sidesteps Questions About Governance, Johansson at UN AI Summit appeared first on SecurityWeek.
SecurityWeek – Read More
Russian Hackers Target Europe with HeadLace Malware and Credential Harvesting
/in General NewsThe Russian GRU-backed threat actor APT28 has been attributed as behind a series of campaigns targeting networks across Europe with the HeadLace malware and credential-harvesting web pages.
APT28, also known by the names BlueDelta, Fancy Bear, Forest Blizzard, FROZENLAKE, Iron Twilight, ITG05, Pawn Storm, Sednit, Sofacy, and TA422, is an advanced persistent threat (APT) group affiliated with
The Hacker News – Read More
Information of Hundreds of European Politicians Found on Dark Web
/in General NewsThe email addresses and other information of hundreds of British, French and EU politicians have been found on the dark web.
The post Information of Hundreds of European Politicians Found on Dark Web appeared first on SecurityWeek.
SecurityWeek – Read More
Mysterious Threat Actor Used Chalubo Malware to Brick 600,000 Routers
/in General NewsOver 600,000 SOHO routers belonging to a single ISP and infected with the Chalubo trojan were rendered inoperable.
The post Mysterious Threat Actor Used Chalubo Malware to Brick 600,000 Routers appeared first on SecurityWeek.
SecurityWeek – Read More
CISA Warns of Exploited Linux Kernel Vulnerability
/in General NewsCISA instructs federal agencies to mitigate CVE-2024-1086, a Linux kernel flaw leading to privilege escalation.
The post CISA Warns of Exploited Linux Kernel Vulnerability appeared first on SecurityWeek.
SecurityWeek – Read More
OpenAI, Meta, TikTok Disrupt Multiple AI-Powered Disinformation Campaigns
/in General NewsOpenAI on Thursday disclosed that it took steps to cut off five covert influence operations (IO) originating from China, Iran, Israel, and Russia that sought to abuse its artificial intelligence (AI) tools to manipulate public discourse or political outcomes online while obscuring their true identity.
These activities, which were detected over the past three months, used its AI models to
The Hacker News – Read More
Hackers Boast Ticketmaster Breach on Relaunched BreachForums
/in General NewsThe ShinyHunters hacking group has claimed the theft of 560 million Ticketmaster users’ data on a fresh BreachForums portal.
The post Hackers Boast Ticketmaster Breach on Relaunched BreachForums appeared first on SecurityWeek.
SecurityWeek – Read More