BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [webapps] Moodle 4.4.0 - Authenticated Remote Code Execution
- [remote] Microsoft SharePoint 2019 - NTLM Authentication
- [remote] gogs 0.13.0 - Remote Code Execution (RCE)
- [remote] Wing FTP Server 7.4.3 - Unauthenticated Remote Code Execution (RCE)
- [webapps] Sitecore 10.4 - Remote Code Execution (RCE)
- [remote] PX4 Military UAV Autopilot 1.12.3 - Denial of Service (DoS)
- [webapps] Pterodactyl Panel 1.11.11 - Remote Code Execution (RCE)
- [remote] OneTrust SDK 6.33.0 - Denial Of Service (DoS)
- [remote] freeSSHd 1.0.9 - Denial of Service (DoS)
- [remote] McAfee Agent 5.7.6 - Insecure Storage of Sensitive Information
Going Into the Deep End: Social Engineering and the AI Flood
/in General NewsAI is transforming the cybersecurity landscape—empowering attackers with powerful new tools while offering defenders a chance to fight back. But without stronger awareness and strategy, organizations risk falling behind.
The post Going Into the Deep End: Social Engineering and the AI Flood appeared first on SecurityWeek.
SecurityWeek – Read More
Acreed infostealer poised to replace Lumma after global crackdown
/in General NewsThe Acreed malware, which emerged earlier this year, is gaining ground with cybercriminals who otherwise might have used the Lumma infostealer, researchers said.
The Record from Recorded Future News – Read More
How to Protect Your Online Presence from Devastating DDoS Attacks
/in General NewsToday, your internet presence is much more than just a website or social media profile, it’s like your…
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More
Compyl Raises $12 Million for GRC Platform
/in General NewsCompyl has raised $12 million in a Series A funding round that will be invested in go-to-market initiatives, hirings, and GRC platform expansion.
The post Compyl Raises $12 Million for GRC Platform appeared first on SecurityWeek.
SecurityWeek – Read More
ThreatSpike Raises $14 Million in Series A Funding
/in General NewsEnd-to-end cybersecurity provider ThreatSpike has raised $14 million in a Series A funding round led by Expedition Growth Capital, after being bootstrapped for 14 years. Founded in 2011, the London-based firm provides real-time detection and response and penetration testing capabilities in a single, unified platform that delivers enterprise-grade cybersecurity to mid-sized businesses. According to ThreatSpike, […]
The post ThreatSpike Raises $14 Million in Series A Funding appeared first on SecurityWeek.
SecurityWeek – Read More
Webinar Today: Redefining Vulnerability Management With Exposure Validation
/in General NewsLearn why your security controls matter more than theoretical risk scores and how exposure validation helps slash massive patch lists down to the few vulnerabilities that truly demand action.
The post Webinar Today: Redefining Vulnerability Management With Exposure Validation appeared first on SecurityWeek.
SecurityWeek – Read More
Ramnit Malware Infections Spike in OT as Evidence Suggests ICS Shift
/in General NewsIndustrial giant Honeywell has published its 2025 Cybersecurity Threat Report with information on the latest trends.
The post Ramnit Malware Infections Spike in OT as Evidence Suggests ICS Shift appeared first on SecurityWeek.
SecurityWeek – Read More
Deepfake Scams Are Distorting Reality Itself
/in General NewsThe easy access that scammers have to sophisticated AI tools means everything from emails to video calls can’t be trusted.
Security Latest – Read More
A GPS Blackout Would Shut Down the World
/in General NewsGPS jamming and spoofing attacks are on the rise. If the global navigation system the US relies on were to go down entirely, it would send the world into unprecedented chaos.
Security Latest – Read More
The Texting Network for the End of the World
/in General NewsEveryone knows what it’s like to lose cell service. A burgeoning open source project called Meshtastic is filling the gap for when you’re in the middle of nowhere—or when disaster strikes.
Security Latest – Read More