BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
- [webapps] Elber Wayber Analog/Digital Audio STL 4.00 - Authentication Bypass
IoT Cameras Exposed by Chainable Exploits, Millions Affected
/in General NewsBy Deeba Ahmed
A recent discovery of 4 security flaws in ThroughTek’s Kalay platform leaves millions of IoT devices exposed. This article explores the security risks to your connected home and the broader threat to IoT devices. Act now – secure your smart devices!
This is a post from HackRead.com Read the original post: IoT Cameras Exposed by Chainable Exploits, Millions Affected
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Google Patches Third Exploited Chrome Zero-Day in a Week
/in General NewsGoogle has released an emergency security update for Chrome to address the third zero-day vulnerability exploited in attacks within a week, highlighting the ongoing challenges in securing the popular web browser against sophisticated cyber threats.
Cyware News – Latest Cyber News – Read More
Does a VPN Slow Down Your Internet Speed?
/in General NewsCan a VPN slow down your internet? Find out how VPNs can impact your internet speed with our article.
Security | TechRepublic – Read More
Russia-Linked Threats to Operational Technology
/in General NewsRussia-linked APT groups pose a significant threat to OT environments, as demonstrated by their recent attacks targeting critical infrastructure in Ukraine and its allies, with the potential for further disruption and long-term espionage operations.
Cyware News – Latest Cyber News – Read More
Palo Alto Networks Teams Up With IBM, Acquires QRadar SaaS Assets
/in General NewsPalo Alto Networks and IBM have announced a significant partnership to jointly provide cybersecurity solutions.
The post Palo Alto Networks Teams Up With IBM, Acquires QRadar SaaS Assets appeared first on SecurityWeek.
SecurityWeek – Read More
Unmasking a Cyberattack that Targets Meta Business Accounts
/in General NewsThe phishing campaign uses a multi-step process to steal account information, including the user’s Meta business email, page name, owner details, financial information, and ultimately the account password.
Cyware News – Latest Cyber News – Read More
Researchers Uncover 11 Security Flaws in GE HealthCare Ultrasound Machines
/in General NewsSecurity researchers have disclosed almost a dozen security flaws impacting the GE HealthCare Vivid Ultrasound product family that could be exploited by malicious actors to tamper with patient data and even install ransomware under certain circumstances.
“The impacts enabled by these flaws are manifold: from the implant of ransomware on the ultrasound machine to the access and manipulation of
The Hacker News – Read More
Adobe Fixed Multiple Critical Flaws in Acrobat and Reader
/in General NewsAdobe patched 35 security vulnerabilities across a range of its products, including Acrobat, Reader, Illustrator, Substance 3D Painter, Aero, Animate, FrameMaker, and Dreamweaver.
Cyware News – Latest Cyber News – Read More
Personal Information Stolen in City of Wichita Ransomware Attack
/in General NewsThe City of Wichita says files containing personal information were exfiltrated in a recent ransomware attack.
The post Personal Information Stolen in City of Wichita Ransomware Attack appeared first on SecurityWeek.
SecurityWeek – Read More
Cyber Pros Weigh an Intel-Sharing Quandary: What To Share When Attacks Hit Close to Home
/in General NewsCybersecurity professionals face a dilemma: sharing information after an attack can prevent future incidents, but businesses often hesitate due to fears of litigation, customer inquiries, and reputational harm.
Cyware News – Latest Cyber News – Read More