BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] SOPlanning 1.52.01 (Simple Online Planning Tool) - Remote Code Execution (RCE) (Authenticated)
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
Sophos to Acquire SecureWorks in $859 Million All-Cash Deal
/in General NewsSophos plans to integrate Secureworks Taegis XDR platform into its MDR services across small, mid-sized, and enterprise segments.
The post Sophos to Acquire SecureWorks in $859 Million All-Cash Deal appeared first on SecurityWeek.
SecurityWeek – Read More
More of Internet Archive is back online, despite hackers infiltrating its helpdesk
/in General NewsFollowing last month’s devastating cyberattacks, there’s good news and bad news about Internet Archive and its popular Wayback Machine.
Latest stories for ZDNET in Security – Read More
Australia’s New Scam Prevention Laws: What You Need to Know
/in General NewsAustralia’s Scam Prevention Framework aims to protect consumers by holding tech, banking, and telecom sectors accountable, with fines up to $50 million.
Security | TechRepublic – Read More
ESET Distributor’s Systems Abused to Deliver Wiper Malware
/in General NewsESET has launched an investigation after a product distributor in Israel sent out emails delivering wiper malware.
The post ESET Distributor’s Systems Abused to Deliver Wiper Malware appeared first on SecurityWeek.
SecurityWeek – Read More
Why I’m Excited About the Future of Application Security
/in General NewsThe future of application security is no longer about reacting to the inevitable — it’s about anticipating and preventing attacks before they can cause damage.
darkreading – Read More
Big Rewards Offered in Dedicated Google Cloud Bug Bounty Program
/in General NewsMore than 460 products and services are covered under Google Cloud’s new VRP, with 140 eligible for top tier bug bounty rewards.
The post Big Rewards Offered in Dedicated Google Cloud Bug Bounty Program appeared first on SecurityWeek.
SecurityWeek – Read More
Cisco Confirms Security Incident After Hacker Offers to Sell Data
/in General NewsCisco has confirmed that some files have been stolen from its DevHub environment after a hacker offered to sell information.
The post Cisco Confirms Security Incident After Hacker Offers to Sell Data appeared first on SecurityWeek.
SecurityWeek – Read More
Spate of ransomware attacks on German-speaking schools hits another in Switzerland
/in General NewsThe Vocational Training Center, or Berufsbildungszentrum (BBZ), in the canton of Schaffhausen reported a ransomware attack, making it the latest in a wave against German-speaking schools and universities.
The Record from Recorded Future News – Read More
Atlassian Patches Vulnerabilities in Bitbucket, Confluence, Jira
/in General NewsAtlassian has released patches for high-severity vulnerabilities in Bitbucket, Confluence, and Jira Service Management.
The post Atlassian Patches Vulnerabilities in Bitbucket, Confluence, Jira appeared first on SecurityWeek.
SecurityWeek – Read More
Electric Motor Giant Nidec Confirms Data Stolen in Ransomware Attack
/in General NewsElectric motor manufacturer Nidec confirms business and internal documents were stolen in a ransomware attack.
The post Electric Motor Giant Nidec Confirms Data Stolen in Ransomware Attack appeared first on SecurityWeek.
SecurityWeek – Read More