BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
- [webapps] Elber Wayber Analog/Digital Audio STL 4.00 - Authentication Bypass
Hong Kong police bust fraud ring that used face-swapping tech for romance scams
/in General NewsHong Kong authorities said they arrested more than two dozen people associated with a scam involving “artificially generated photos using AI technology to create attractive individuals.”
The Record from Recorded Future News – Read More
Election Day is Close, the Threat of Cyber Disruption is Real
/in General NewsNew threat report shows that the potential for disruption to November’s Election Day is severe, and the threat is real.
The post Election Day is Close, the Threat of Cyber Disruption is Real appeared first on SecurityWeek.
SecurityWeek – Read More
Generative AI in Security: Risks and Mitigation Strategies
/in General NewsMicrosoft’s Siva Sundaramoorthy provides a blueprint for how common cyber precautions apply to generative AI deployed in and around security systems.
Security | TechRepublic – Read More
Authorities Seize Dark Web Marketplaces Sipulitie and Tsätti
/in General NewsFinnish Customs and Swedish Police, with Bitdefender’s support, shut down dark web marketplaces Sipulitie and Tsätti. These platforms…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
GitHub Patches Critical Vulnerability in Enterprise Server
/in General NewsA critical-severity flaw in GitHub Enterprise Server could lead to unauthorized access to the vulnerable instances.
The post GitHub Patches Critical Vulnerability in Enterprise Server appeared first on SecurityWeek.
SecurityWeek – Read More
Sweden, Finland partner to take down Sipulitie criminal marketplace
/in General NewsLaunched in February 2023 on the Tor network, the Sipulitie marketplace originally focused on Finland before expanding to cover other Scandinavian countries. A predecessor was created in April 2019 but was shut down by Finnish Customs and Polish authorities in December 2020.
The Record from Recorded Future News – Read More
Some Americans are still using Kaspersky’s antivirus despite U.S. government ban
/in General NewsNot everyone in the U.S. has given up on the Russian-made antivirus. Some Americans have found ways to get around the ban and are still using Kaspersky’s antivirus.
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
Volkswagen Says IT Infrastructure Not Affected After Ransomware Gang Claims Data Theft
/in General NewsVolkswagen has issued a statement after the 8Base ransomware group claimed to have stolen valuable data from the company’s systems.
The post Volkswagen Says IT Infrastructure Not Affected After Ransomware Gang Claims Data Theft appeared first on SecurityWeek.
SecurityWeek – Read More
New Telekopye Scam Toolkit Targeting Booking.com and Airbnb Users
/in General NewsESET Research found the Telekopye scam network targeting Booking.com and Airbnb. Scammers use phishing pages via compromised accounts…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
New Malware Campaign Uses PureCrypter Loader to Deliver DarkVision RAT
/in General NewsCybersecurity researchers have disclosed a new malware campaign that leverages a malware loader named PureCrypter to deliver a commodity remote access trojan (RAT) called DarkVision RAT.
The activity, observed by Zscaler ThreatLabz in July 2024, involves a multi-stage process to deliver the RAT payload.
“DarkVision RAT communicates with its command-and-control (C2) server using a custom network
The Hacker News – Read More