BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] SOPlanning 1.52.01 (Simple Online Planning Tool) - Remote Code Execution (RCE) (Authenticated)
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
Cybercriminals Steal One-Time Passcodes for SIM Swap Attacks and Raiding Bank Accounts
/in General NewsCybercriminals are using an automated service called “Estate” to steal one-time passcodes and hijack user accounts, including bank accounts, crypto wallets, and other sensitive services, by tricking them into revealing the codes over the phone.
Cyware News – Latest Cyber News – Read More
Red Teaming: The Key Ingredient for Responsible AI
/in General NewsRed teaming involves employing ethical hackers to rigorously test AI systems for security and safety issues. It is crucial for developing responsible AI that balances innovation and compliance with ethical standards and regulatory requirements.
Cyware News – Latest Cyber News – Read More
Zscaler Confirms Only Isolated Test Server Was Hacked
/in General NewsZscaler has completed its investigation into the recent hacking claims and found that only an isolated test environment was compromised.
The post Zscaler Confirms Only Isolated Test Server Was Hacked appeared first on SecurityWeek.
SecurityWeek – Read More
In The Shadow Of Venus: Trinity Ransomware’s Covert Ties
/in General NewsResearchers at Cyble discovered a new ransomware variant called Trinity that employs a double extortion technique and shares similarities with the Venus ransomware, suggesting a potential link or common actor behind these two variants.
Cyware News – Latest Cyber News – Read More
Apple and Google Launch Cross-Platform Feature to Detect Unwanted Bluetooth Tracking Devices
/in General NewsApple and Google on Monday officially announced the rollout of a new feature that notifies users across both iOS and Android if a Bluetooth tracking device is being used to stealthily keep tabs on them without their knowledge or consent.
“This will help mitigate the misuse of devices designed to help keep track of belongings,” the companies said in a joint statement, adding it aims to address ”
The Hacker News – Read More
500 Victims In, Black Basta Reinvents With Novel Vishing Strategy
/in General NewsRansomware groups have always created problems for their victims that only they could solve. Black Basta is taking that core idea in a creative, new direction.
darkreading – Read More
Report: Organisations Have Endpoint Security Tools But Are Still Falling Short on the Basics
/in General NewsAI PCs could soon see organisations invest in whole fleets of new managed devices, but Absolute Security data shows they are failing to maintain endpoint protection and patching the devices they have.
Security | TechRepublic – Read More
Ukrainian, Latvian TV Hijacked to Broadcast Russian Celebrations
/in General NewsAt least 15 television channels were interrupted in Ukraine alone, which, reportedly, is not out of the norm in this “information war.”
darkreading – Read More
Apple Patch Day: Code Execution Flaws in iPhones, iPads, macOS
/in General NewsApple documents another zero-day flaw being exploited on older iPhones and documents security problems in macOS, iOS and iPadOS.
The post Apple Patch Day: Code Execution Flaws in iPhones, iPads, macOS appeared first on SecurityWeek.
SecurityWeek – Read More
Future of eCommerce: Emerging Technologies Shaping Online Retail in 2024
/in General NewsBy Uzair Amir
Top-notch stores are moving online as eCommerce continues to lead with breakthrough innovations that are transforming global business…
This is a post from HackRead.com Read the original post: Future of eCommerce: Emerging Technologies Shaping Online Retail in 2024
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More