BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
- [webapps] Elber Wayber Analog/Digital Audio STL 4.00 - Authentication Bypass
Hacker Charged With Seeking to Kill Using Cyberattacks on Hospitals
/in General NewsThe US has accused two brothers of being part of the hacker group Anonymous Sudan, which allegedly went on a wild cyberattack spree that hit hundreds of targets—and, for one of the two men, even put lives at risk.
Security Latest – Read More
Android 15 Rolling Out With New Theft, Application Protection Features
/in General NewsGoogle has released Android 15 with new security features to keep devices and sensitive applications better protected.
The post Android 15 Rolling Out With New Theft, Application Protection Features appeared first on SecurityWeek.
SecurityWeek – Read More
Engaging Executives: How to Present Cybersecurity in a Way That Resonates
/in General NewsGetting buy-in can be difficult. Safe-U founder and CEO Jorge Litvin explains how to create a common language between the CISO and the rest of the C-suite.
Security | TechRepublic – Read More
Urban VPN Review (2024): Is it a Safe & Reliable VPN to Use?
/in General NewsWith its questionable privacy policy, slow VPN performance, and lack of independent audits, Urban VPN fails to offer a secure and quality VPN experience.
Security | TechRepublic – Read More
How to Use Call Detail Records to Detect Fraud
/in General NewsLearn how data from call detail records can help you find fraud calls made by your phone system — and prevent them from happening again.
Security | TechRepublic – Read More
What Cybersecurity Leaders Can Learn From the Game of Golf
/in General NewsAs in golf, security requires collaboration across the entire organization, from individual contributors in each department to the executive level and the board.
darkreading – Read More
Hackers target Ukraine’s potential conscripts with MeduzaStealer malware
/in General NewsHackers have targeted the devices of Ukraine’s draft-aged men with MeduzaStealer malware spread through Telegram, researchers have found.
The Record from Recorded Future News – Read More
OT Risk Management Firm DeNexus Raises $17.5 Million
/in General NewsDeNexus offers an AI and ML-driven data analytics platform that focuses on managing the cyber risk to the underserved operational technology of critical industries.
The post OT Risk Management Firm DeNexus Raises $17.5 Million appeared first on SecurityWeek.
SecurityWeek – Read More
What open-source AI models should your enterprise use? Endor Labs analyzes them all
/in General NewsThe new tool tells developers how popular and secure open-source, pre-built models are and how recently they were created and updated. Read More
Security News | VentureBeat – Read More
Dane Stuckey Joins OpenAI as CISO
/in General NewsFormer Palantir CISO joins ChatGPT maker OpenAI to lead cybersecurity efforts.
The post Dane Stuckey Joins OpenAI as CISO appeared first on SecurityWeek.
SecurityWeek – Read More