BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
- [webapps] Elber Wayber Analog/Digital Audio STL 4.00 - Authentication Bypass
Defending against IoT ransomware attacks in a zero-trust world
/in General NewsAttacks on IoT and ICS networks are becoming so pervasive that it’s common for the Cybersecurity and Infrastructure Security Agency (CISA) to issue cybersecurity advisories.Read More
Security News | VentureBeat – Read More
Attackers Abuse Google Ad Feature to Target Slack, Notion Users
/in General NewsCampaign distributes malware disguised as legitimate installers for popular workplace collaboration apps by abusing a traffic-tracking feature.
darkreading – Read More
HHS Plans for Cyber ‘One-Stop Shop’ After United Healthcare Attack
/in General NewsThe initiative is meant to provide more resources and better strategies for healthcare entities that face an increasing amount of cybersecurity challenges.
darkreading – Read More
Microsoft expands Priva suite to tackle evolving privacy landscape
/in General NewsMicrosoft unveils major expansion of Priva privacy suite with 5 new AI-powered products for automated data privacy compliance, tackling challenges like consent management and risk assessment in the AI era.Read More
Security News | VentureBeat – Read More
Powerloom Announces Expansion to Base as It Surpasses 5200 Snapshotter Lite Nodes
/in General NewsBy Uzair Amir
In the last 30 days, Powerloom generated over 250 million snapshots (unique data points), with a daily increase to approximately 10 million snapshots
This is a post from HackRead.com Read the original post: Powerloom Announces Expansion to Base as It Surpasses 5200 Snapshotter Lite Nodes
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
US, UK join forces on AI safety and testing AI models
/in General NewsThe two countries will build ‘suites of evaluations’ on public and private models to improve their respective governments’ understanding of AI and reduce potential risks.
Latest stories for ZDNET in Security – Read More
Authentic8 launches Silo Shield program to protect high-risk communities in partnership with CISA
/in General NewsBy Cyber Newswire
Washington, DC, United States, April 2nd, 2024, CyberNewsWire Authentic8, provider of the leading OSINT research platform Silo for…
This is a post from HackRead.com Read the original post: Authentic8 launches Silo Shield program to protect high-risk communities in partnership with CISA
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Google’s latest project could help protect you against cookie theft
/in General NewsDevice Bound Session Credentials (DBSC) will make stealing your cookies more difficult.
Latest stories for ZDNET in Security – Read More
Chrome to Fight Cookie Theft With Device Bound Session Credentials
/in General NewsGoogle is bringing to Chrome new features to bind browser sessions to the device and protect users against cookie theft.
The post Chrome to Fight Cookie Theft With Device Bound Session Credentials appeared first on SecurityWeek.
SecurityWeek – Read More
Security Flaw in WP-Members Plugin Leads to Script Injection
/in General NewsA cross-site scripting vulnerability in the WP-Members Membership plugin could allow attackers to inject scripts into user profile pages.
The post Security Flaw in WP-Members Plugin Leads to Script Injection appeared first on SecurityWeek.
SecurityWeek – Read More