BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [local] TP-Link VN020 F3v(T) TT_V6.2.1021) - DHCP Stack Buffer Overflow
- [webapps] WordPress Frontend Login and Registration Blocks Plugin 1.0.7 - Privilege Escalation
- [webapps] Kentico Xperience 13.0.178 - Cross Site Scripting (XSS)
- [local] RDPGuard 9.9.9 - Privilege Escalation
- [webapps] WordPress Depicter Plugin 3.6.1 - SQL Injection
- [webapps] SureTriggers OttoKit Plugin 1.0.82 - Privilege Escalation
- [local] Microsoft Windows 11 Pro 23H2 - Ancillary Function Driver for WinSock Privilege Escalation
- [local] VirtualBox 7.0.16 - Privilege Escalation
- [remote] Apache ActiveMQ 6.1.6 - Denial of Service (DOS)
- [webapps] ERPNext 14.82.1 - Account Takeover via Cross-Site Request Forgery (CSRF)
Threat Actors Exploit Fresh ServiceNow Vulnerabilities in Attacks
/in General NewsThreat actors have started exploiting critical-severity vulnerabilities in ServiceNow shortly after public disclosure.
The post Threat Actors Exploit Fresh ServiceNow Vulnerabilities in Attacks appeared first on SecurityWeek.
SecurityWeek – Read More
Senator: Top Banks Only Reimburse 38% of Unauthorized Claims
/in General NewsUS Senator Richard Blumenthal revealed that Bank of America, JPMorgan Chase, and Wells Fargo only reimbursed 38% of customers for unauthorized payments, resulting in $100 million in fraud losses.
Cyware News – Latest Cyber News – Read More
A North Korean Hacker Tricked a US Security Vendor Into Hiring Him—and Immediately Tried to Hack Them
/in General NewsKnowBe4 detailed the incident in a recent blog post as a warning for other potential targets.
Security Latest – Read More
The best iPads for college students in 2024: Expert tested and reviewed
/in General NewsFrom taking notes and Zoom calls to completing a graphic design project, we went hands-on with the top iPads for college students heading back to campus this fall.
Latest news – Read More
The best humidifiers of 2024: Expert tested and reviewed
/in General NewsWe’ve gone hands-on with some of the best humidifiers on the market from brands like Levoit, Pure Enrichment, Dreo, and more to combat dryness.
Latest news – Read More
North Korean Hackers Targeted KnowBe4 with Fake IT Worker
/in General NewsKnowBe4, a cybersecurity training company, was tricked into hiring a fake IT worker from North Korea, highlighting the threat of insider activities. Despite this, no data breach occurred.
Cyware News – Latest Cyber News – Read More
US Offers $10 Million Reward for Information on North Korean Hacker
/in General NewsThe US is offering a reward of up to $10 million for information on Rim Jong Hyok, a member of the North Korean hacking group APT45.
The post US Offers $10 Million Reward for Information on North Korean Hacker appeared first on SecurityWeek.
SecurityWeek – Read More
Offensive AI: The Sine Qua Non of Cybersecurity
/in General News“Peace is the virtue of civilization. War is its crime. Yet it is often in the furnace of war that the sharpest tools of peace are forged.” – Victor Hugo.
In 1971, an unsettling message started appearing on several computers that comprised ARPANET, the precursor to what we now know as the Internet. The message, which read “I’m the Creeper: catch me if you can.” was the output of a program named
The Hacker News – Read More
US Charges North Korean Hacker for Ransomware Attacks on Hospitals
/in General NewsThe North Korean hacker, Rim Jong Hyok, is accused of being part of the government-backed cyberespionage group Andariel,…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Europe Is Pumping Billions Into New Military Tech
/in General NewsThe European Commission is allocating €7.3 billion for defense research over the next seven years. From drones and tanks of the future to battleships and space intelligence, here’s what it funds.
Security Latest – Read More