BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] SOPlanning 1.52.01 (Simple Online Planning Tool) - Remote Code Execution (RCE) (Authenticated)
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
Feds Issue Guide for Change Health Breach Reporting Duties
/in General NewsHHS’ Office for Civil Rights in new “frequently asked questions” guidance issued Friday night said it has not yet received breach reports from Change Healthcare, UHG, or any other affected covered entities pertaining to the incident.
Cyware News – Latest Cyber News – Read More
This Website is Selling Billions of Private Messages of Discord Users
/in General NewsBy Deeba Ahmed
Millions of Discord messages sold online! Protect yourself from leaked usernames, photos & financial details. Learn how to secure your Discord account.
This is a post from HackRead.com Read the original post: This Website is Selling Billions of Private Messages of Discord Users
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Siemens Industrial Product Impacted by Exploited Palo Alto Firewall Vulnerability
/in General NewsPalo Alto Networks firewall vulnerability CVE-2024-3400, exploited as a zero-day, impacts a Siemens industrial product.
The post Siemens Industrial Product Impacted by Exploited Palo Alto Firewall Vulnerability appeared first on SecurityWeek.
SecurityWeek – Read More
Unmasking the True Cost of Cyberattacks: Beyond Ransom and Recovery
/in General NewsCybersecurity breaches can be devastating for both individuals and businesses alike. While many people tend to focus on understanding how and why they were targeted by such breaches, there’s a larger, more pressing question: What is the true financial impact of a cyberattack? According to research by Cybersecurity Ventures, the global cost of cybercrime is projected to reach
The Hacker News – Read More
Police Chiefs Call for Solutions to Access Encrypted Data in Serious Crime Cases
/in General NewsEuropean Police Chiefs said that the complementary partnership between law enforcement agencies and the technology industry is at risk due to end-to-end encryption (E2EE).
They called on the industry and governments to take urgent action to ensure public safety across social media platforms.
“Privacy measures currently being rolled out, such as end-to-end encryption, will stop tech companies
The Hacker News – Read More
Russian Sandworm Hackers Targeted 20 Critical Organizations in Ukraine
/in General NewsCERT-UA reports that in March 2024, APT44 conducted operations to disrupt information and communication systems at energy, water, and heating suppliers in 10 regions of Ukraine.
Cyware News – Latest Cyber News – Read More
HHS Beefs Up Privacy Protection for Reproductive Health Info
/in General NewsDoctors, clinics and other providers are prohibited from disclosing protected health information related to lawful reproductive healthcare, according to a final rule released Monday by federal regulators to “strengthen” HIPAA privacy.
Cyware News – Latest Cyber News – Read More
Cloud Console Cartographer: Open-Source Tool Helps Security Teams Transcribe Log Activity
/in General NewsCloud Console Cartographer is an open-source tool that maps noisy log activity into highly consolidated, succinct events to help security practitioners cut through the noise and understand console behavior in their environment.
Cyware News – Latest Cyber News – Read More
GitLab Affected by GitHub-Style CDN Flaw Allowing Malware Hosting
/in General NewsSimilar to a recently reported issue in GitHub, users can abuse the “comments” feature in GitLab to upload malware to any repository without the repository owner’s knowledge.
Cyware News – Latest Cyber News – Read More
Microsoft DRM Hack Could Allow Movie Downloads From Popular Streaming Services
/in General NewsMicrosoft PlayReady vulnerabilities that could allow rogue subscribers to illegally download movies from popular streaming services.
The post Microsoft DRM Hack Could Allow Movie Downloads From Popular Streaming Services appeared first on SecurityWeek.
SecurityWeek – Read More