BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
- [webapps] Elber Wayber Analog/Digital Audio STL 4.00 - Authentication Bypass
Microsoft, Google Widen Passkey Support for Its Users
/in General NewsPasskeys are gaining widespread adoption as an alternative to traditional passwords for digital authentication. Major tech companies like Microsoft, Google, and Bitwarden have recently expanded support for passkeys.
Cyware News – Latest Cyber News – Read More
Cybersecurity M&A Roundup: 33 Deals Announced in April 2024
/in General NewsThirty-three cybersecurity-related merger and acquisition (M&A) deals were announced in April 2024.
The post Cybersecurity M&A Roundup: 33 Deals Announced in April 2024 appeared first on SecurityWeek.
SecurityWeek – Read More
Russia-Linked APT28 and Crooks are Still Using the Moobot Botnet
/in General NewsTrend Micro researchers revealed that the botnet, primarily operating through compromised Ubiquiti EdgeRouters, is used for various malicious activities such as credential harvesting, proxying network traffic, and hosting phishing landing pages.
Cyware News – Latest Cyber News – Read More
Permira to Acquire Majority Stake in BioCatch at $1.3 Billion Valuation
/in General NewsPermira has agreed to acquire a majority of BioCatch shares, primarily from Bain Capital Tech Opportunities and Maverick Ventures.
The post Permira to Acquire Majority Stake in BioCatch at $1.3 Billion Valuation appeared first on SecurityWeek.
SecurityWeek – Read More
New ‘Cuckoo’ Persistent macOS Spyware Targeting Intel and Arm Macs
/in General NewsCybersecurity researchers have discovered a new information stealer targeting Apple macOS systems that’s designed to set up persistence on the infected hosts and act as a spyware.
Dubbed Cuckoo by Kandji, the malware is a universal Mach-O binary that’s capable of running on both Intel- and Arm-based Macs.
The exact distribution vector is currently unclear, although there are
The Hacker News – Read More
City of Wichita Shuts Down Network Following Ransomware Attack
/in General NewsThe City of Wichita, Kansas, has shut down its network after falling victim to a file-encrypting ransomware attack.
The post City of Wichita Shuts Down Network Following Ransomware Attack appeared first on SecurityWeek.
SecurityWeek – Read More
European Raids Shut Down Call Centers Used to ‘Shock and Cheat’ Victims
/in General NewsThe criminal network was responsible for defrauding thousands of victims through fake police calls, investment fraud, or romance scams, Europol said. Scam callers posed as victims’ close relatives, bank employees, customer service, or police.
Cyware News – Latest Cyber News – Read More
Crypto Recovery Scams – And How They Add Insult to Injury
/in General NewsCrypto recovery scams involve fraudsters who offer to help victims recover stolen cryptocurrency in exchange for an upfront fee, but instead, they disappear after payment.
Cyware News – Latest Cyber News – Read More
Amnesty International Cites Indonesia as a Spyware Hub
/in General NewsThe growing amount of surveillance technology being deployed in the country is concerning due to Indonesia’s increasing blows to citizens’ civil rights.
darkreading – Read More
Top 9 Compliance Automation Software in 2024
/in General NewsBy Uzair Amir
Simplify compliance with these leading software solutions. Discover features like automated evidence collection, risk assessment, and real-time reporting. Find the perfect fit for your startup or large enterprise.
This is a post from HackRead.com Read the original post: Top 9 Compliance Automation Software in 2024
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More