BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] SOPlanning 1.52.01 (Simple Online Planning Tool) - Remote Code Execution (RCE) (Authenticated)
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
Samsung Zero-Day Vuln Under Active Exploit, Google Warns
/in General NewsIf exploited, bad actors can execute arbitrary code while evading detection thanks to a renamed process.
darkreading – Read More
Honeywell and Google Cloud to Accelerate Auto Operations With AI Agents for the Industrial Sector
/in General NewsPost Content
darkreading – Read More
Zendesk helped Internet Archive secure account after hacker breached email system
/in General NewsCustomer service platform Zendesk said it worked with the Internet Archive to help resolve a breach that allowed a hacker to respond to emails on behalf of the platform.
The Record from Recorded Future News – Read More
Retail & Hospitality ISAC Launches Program Aimed at Securing Supply Chains
/in General NewsPost Content
darkreading – Read More
Fake CAPTCHA Pages Used by Lumma Stealer to Spread Fileless Malware
/in General NewsLumma Stealer malware uses fake CAPTCHA to deceive victims. This information-stealing malware targets sensitive data like passwords and…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
SEC Charges Four Companies Over Misleading Disclosures on SolarWinds Hack
/in General NewsThe SEC announces penalties against Unisys, Avaya, Check Point and Mimecast for downplaying the impact of the SolarWinds Orion hack.
The post SEC Charges Four Companies Over Misleading Disclosures on SolarWinds Hack appeared first on SecurityWeek.
SecurityWeek – Read More
Exposed United Nations Database Left Sensitive Information Accessible Online
/in General NewsMore than 115,000 files related to UN Women included detailed financial disclosures from organizations around the world—and personal details and testimonials from vulnerable individuals.
Security Latest – Read More
Swarms of Fake WordPress Plug-ins Infect Sites With Infostealers
/in General NewsGoDaddy flagged a ClickFix campaign that infected 6,000 sites in a one-day period, with attackers using stolen admin credentials to distribute malware.
darkreading – Read More
SEC fines four companies $7 million for ‘misleading cyber disclosures’ regarding SolarWinds hack
/in General NewsThe SEC concluded that four tech companies misled investors and minimized the damage they suffered from the SolarWinds supply chain hack.
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
Dark Web Anti-Bot Services Let Phishers Bypass Google’s Red Page
/in General NewsAnti-bot services on the dark web allow phishers to bypass Google’s Red Page warnings, evading detection and making…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More