BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
- [webapps] Elber Wayber Analog/Digital Audio STL 4.00 - Authentication Bypass
Microsoft Beefs Up Defenses in Azure AI
/in General NewsMicrosoft adds tools to protect Azure AI from threats such as prompt injection, as well as give developers the capabilities to ensure generative AI apps are more resilient to model and content manipulation attacks.
darkreading – Read More
The Incognito Mode Myth Has Fully Unraveled
/in General NewsTo settle a years-long lawsuit, Google has agreed to delete “billions of data records” collected from users of “Incognito mode,” illuminating the pitfalls of relying on Chrome to protect your privacy.
Security Latest – Read More
XZ Utils Backdoor Implanted in Carefully Executed, Multiyear Supply Chain Attack
/in General NewsHad a Microsoft developer not spotted the malware when he did, the outcome could have been much worse.
darkreading – Read More
AT&T Confirms 73M Customers Affected in Data Leak
/in General NewsAT&T denies any evidence of unauthorized access but admits that a data set released on the Dark Web including Social Security numbers and other sensitive information on tens of millions of customers is genuine.
darkreading – Read More
Banks in Singapore begin sharing data to combat financial crime
/in General NewsSix banks will share customer data deemed suspicious in a bid to fight money laundering and terrorism financing activities.
Latest stories for ZDNET in Security – Read More
Sprawling Sellafield Nuclear Waste Site Prosecuted for Cybersecurity Failings
/in General NewsUK regulator said that one of the world’s most toxic sites accumulated cybersecurity “offenses” from 2019 to 2023.
darkreading – Read More
Veracode Buys Longbow Security for Automated Root Cause Analysis Tech
/in General NewsVeracode announces a deal to acquire Longbow Security, a Texas seed-stage startup working on automated root cause analysis technology.
The post Veracode Buys Longbow Security for Automated Root Cause Analysis Tech appeared first on SecurityWeek.
SecurityWeek – Read More
Cybercriminals Weigh Options for Using LLMs: Buy, Build, or Break?
/in General NewsWhile some cybercriminals have bypassed guardrails to force legitimate AI models to turn bad, building their own malicious chatbot platforms and making use of open source models are a greater threat.
darkreading – Read More
Data Security Fears: Congress Bans Staff Use of Microsoft’s AI Copilot
/in General NewsBy Waqas
Microsoft has acknowledged the concerns!
This is a post from HackRead.com Read the original post: Data Security Fears: Congress Bans Staff Use of Microsoft’s AI Copilot
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
After Denial, AT&T Confirms Data Breach Affecting 73 Million Users
/in General NewsBy Waqas
Corrected text: Another day, another massive data breach affecting critical infrastructure in the United States!
This is a post from HackRead.com Read the original post: After Denial, AT&T Confirms Data Breach Affecting 73 Million Users
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More