BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
- [webapps] Elber Wayber Analog/Digital Audio STL 4.00 - Authentication Bypass
Iran-linked hackers increasingly spy on governments in Gulf region, researchers say
/in General NewsAn Iran-linked cyberespionage group has stepped up its attacks in recent months against government agencies in the United Arab Emirates (UAE) and the broader Gulf region, according to a new report.
The Record from Recorded Future News – Read More
The biggest data breaches in 2024: 1 billion stolen records and rising
/in General NewsSome of the largest, most damaging breaches of 2024 already account for over a billion stolen records. Plus, some special shout-outs.
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
ConfusedPilot Attack Can Manipulate RAG-Based AI Systems
/in General NewsAttackers can introduce a malicious document in systems such as Microsoft 365 Copilot to confuse the system, potentially leading to widespread misinformation and compromised decision-making processes.
darkreading – Read More
Internet Archive’s Wayback Machine is back up after data breach – with a catch
/in General NewsThe site is accessible but with a few limitations. Here’s why.
Latest stories for ZDNET in Security – Read More
Fighting Crime With Technology: Safety First
/in General NewsBy combining human and nonhuman identity management in one solution, Flock Safety is helping law enforcement solve an impressive number of criminal cases every day.
darkreading – Read More
National Public Data, the hacked data broker that lost millions of Social Security numbers and more, files for bankruptcy
/in General NewsThe data broker who lost one of the biggest databases of Social Security numbers in a data breach earlier this year, files for bankruptcy protection.
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
Recently-patched Firefox bug exploited against Tor browser users
/in General NewsThe Tor anonymity network issued an emergency patch last week to address a recently-discovered security flaw that was being exploited against its users.
The Record from Recorded Future News – Read More
Casio confirms customer data compromised in ransomware attack
/in General NewsA ransomware and extortion racket called Underground has claimed responsibility for the breach on its dark web leak site, which TechCrunch has seen.
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
The War on Passwords Is One Step Closer to Being Over
/in General News“Passkeys,” the secure authentication mechanism built to replace passwords, are getting more portable and easier for organizations to implement thanks to new initiatives the FIDO Alliance announced on Monday.
Security Latest – Read More
Why Your Identity Is the Key to Modernizing Cybersecurity
/in General NewsUltimately, the goal of creating a trusted environment around all digital assets and devices is about modernizing the way you do business.
darkreading – Read More