BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
- [webapps] Elber Wayber Analog/Digital Audio STL 4.00 - Authentication Bypass
Beware of HTML Masquerading as PDF Viewer Login Pages
/in General NewsForcepoint X-Labs has recently observed a significant number of phishing email instances in their telemetry targeting various government departments in APAC that masquerade as PDF viewer login pages.
Cyware News – Latest Cyber News – Read More
Sharp Dragon Expands Towards Africa and The Caribbean
/in General NewsThe threat actors demonstrate increased caution in selecting their targets, broadening their reconnaissance efforts, and adopting Cobalt Strike Beacon over custom backdoors.
Cyware News – Latest Cyber News – Read More
How to Recover Deleted Emails from Exchange Server?
/in General NewsBy Waqas
Accidentally deleted emails? Don’t panic! This guide explains how to recover them from Exchange Server within the retention…
This is a post from HackRead.com Read the original post: How to Recover Deleted Emails from Exchange Server?
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Top Cloud Services Used for Malicious Website Redirects in SMS Scams
/in General NewsBy Deeba Ahmed
Fake Cloud, Real Theft!
This is a post from HackRead.com Read the original post: Top Cloud Services Used for Malicious Website Redirects in SMS Scams
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Microsoft’s ‘Recall’ Feature Draws Criticism From Privacy Advocates
/in General NewsDespite Microsoft’s reassurances, multiple security researchers describe the technology as problematic for users and their organizations.
darkreading – Read More
Research From Claroty’s Team82 Highlights Remote Access Risks Facing Mission-Critical OT Assets
/in General NewsPost Content
darkreading – Read More
Apple explains why iOS 17.5 restored your deleted photos – and what you can do now
/in General NewsHere’s how iPhone and iPad users can make sure that deleted images are absolutely, positively gone forever.
Latest stories for ZDNET in Security – Read More
AI Voice Generator App Used to Drop Gipy Malware
/in General NewsUsers get duped into downloading malicious files disguised to look like an application that uses artificial intelligence to alter voices.
darkreading – Read More
Hackers Created Rogue VMs to Evade Detection in Recent MITRE Cyber Attack
/in General NewsThe MITRE Corporation has revealed that the cyber attack targeting the not-for-profit company towards late December 2023 by exploiting zero-day flaws in Ivanti Connect Secure (ICS) involved the actor creating rogue virtual machines (VMs) within its VMware environment.
“The adversary created their own rogue VMs within the VMware environment, leveraging compromised vCenter Server access,” MITRE
The Hacker News – Read More
Attempts to Regulate AI’s Hidden Hand in Americans’ Lives Flounder in US Statehouses
/in General NewsOnly one of seven bills aimed at preventing AI’s penchant to discriminate when making consequential decisions — including who gets hired, money for a home or medical care — has passed.
The post Attempts to Regulate AI’s Hidden Hand in Americans’ Lives Flounder in US Statehouses appeared first on SecurityWeek.
SecurityWeek – Read More