BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] SOPlanning 1.52.01 (Simple Online Planning Tool) - Remote Code Execution (RCE) (Authenticated)
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
Why CVEs Are an Incentives Problem
/in General NewsIt’s time to rethink the pivotal role incentives play in shaping behavior to find and disclose software vulnerabilities. More accurate guidance to reflect real-world risks and a tiered verification process to establish potential impact could slow misleading submissions.
darkreading – Read More
U.S. Sentences 31-Year-Old to 10 Years for Laundering $4.5M in Email Scams
/in General NewsThe U.S. Department of Justice (DoJ) has sentenced a 31-year-old to 10 years in prison for laundering more than $4.5 million through business email compromise (BEC) schemes and romance scams.
Malachi Mullings, 31, of Sandy Springs, Georgia pleaded guilty to the money laundering offenses in January 2023.
According to court documents, Mullings is said to have opened 20 bank accounts in the name of
The Hacker News – Read More
New Research Warns About Weak Offboarding Management and Insider Risks
/in General NewsA recent study by Wing Security found that 63% of businesses may have former employees with access to organizational data, and that automating SaaS Security can help mitigate offboarding risks.
Employee offboarding is typically seen as a routine administrative task, but it can pose substantial security risks, if not handled correctly. Failing to quickly and thoroughly remove access for
The Hacker News – Read More
The Idea of Web3 and 7 Global Web3 Agencies
/in General NewsBy Waqas
This comprehensive Web3 guide explores its core principles, and real-world applications, and addresses the challenges and opportunities that…
This is a post from HackRead.com Read the original post: The Idea of Web3 and 7 Global Web3 Agencies
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
New North Korean Threat Actor Engaging in Espionage, Revenue Generation Attacks
/in General NewsMicrosoft dives into the tactics, techniques, and procedures of North Korean threat actor Moonstone Sleet.
The post New North Korean Threat Actor Engaging in Espionage, Revenue Generation Attacks appeared first on SecurityWeek.
SecurityWeek – Read More
10 Best SIEM Tools for 2024
/in General NewsLooking for the best SIEM tool? Check out our list and find the security information and event management solution that fits your business needs.
Security | TechRepublic – Read More
Zendata Emerges From Stealth With Data Security, AI Governance Solutions
/in General NewsData security and AI governance company Zendata has emerged from stealth mode with $2 million in seed funding.
The post Zendata Emerges From Stealth With Data Security, AI Governance Solutions appeared first on SecurityWeek.
SecurityWeek – Read More
Blocksquare Hits $100M Tokenized RWA Triggering Launchpad Release
/in General NewsBy Uzair Amir
Blocksquare, a leading real estate tokenization platform, announces a major milestone: $100 million worth of real estate tokenized…
This is a post from HackRead.com Read the original post: Blocksquare Hits $100M Tokenized RWA Triggering Launchpad Release
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Microsoft Uncovers ‘Moonstone Sleet’ — New North Korean Hacker Group
/in General NewsA never-before-seen North Korean threat actor codenamed Moonstone Sleet has been attributed as behind cyber attacks targeting individuals and organizations in the software and information technology, education, and defense industrial base sectors with ransomware and bespoke malware previously associated with the infamous Lazarus Group.
“Moonstone Sleet is observed to set up fake companies and
The Hacker News – Read More
Europe’s Cybersecurity Chief Says Disruptive Attacks Have Doubled in 2024, Sees Russia Behind Many
/in General NewsDisruptive digital attacks – many traced to Russia-backed groups – have doubled in the European Union in 2024 and are also targeting election-related services, according to the EU’s top cybersecurity official.
The post Europe’s Cybersecurity Chief Says Disruptive Attacks Have Doubled in 2024, Sees Russia Behind Many appeared first on SecurityWeek.
SecurityWeek – Read More