BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
- [webapps] Elber Wayber Analog/Digital Audio STL 4.00 - Authentication Bypass
How to Design and Deliver an Effective Cybersecurity Exercise
/in General NewsArmed forces have always utilized war-gaming exercises for battlefield training to prepare for times of conflict. With today’s digital transformation, the same concept is being applied in the form of cybersecurity exercises.
Cyware News – Latest Cyber News – Read More
FCC to Probe ‘Grave’ Weaknesses in Phone Network Infrastructure
/in General NewsThe Federal Communications Commission (FCC) says it is taking action to address significant weaknesses in telecommunications networks that can enable cybercrime and spying.
Cyware News – Latest Cyber News – Read More
Clearpool Expands to Avalanche with Listed Fintech Firm Launching First Credit Vault
/in General NewsBy Uzair Amir
Clearpool launches Credit Vaults on Avalanche, offering an on-chain credit solution with real-world asset backing, marking a significant step in bridging traditional finance and DeFi through partnerships with firms like Banxa.
This is a post from HackRead.com Read the original post: Clearpool Expands to Avalanche with Listed Fintech Firm Launching First Credit Vault
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Malicious Code in XZ Utils for Linux Systems Enables Remote Code Execution
/in General NewsThe malicious code inserted into the open-source library XZ Utils, a widely used package present in major Linux distributions, is also capable of facilitating remote code execution, a new analysis has revealed.
The audacious supply chain compromise, tracked as CVE-2024-3094 (CVSS score: 10.0), came to light last week when Microsoft engineer and PostgreSQL developer Andres Freund
The Hacker News – Read More
Losses Linked to Impersonation Scams Top $1 Billion Yearly, FTC Says
/in General NewsA classic type of fraud — when a crook impersonates a business or a government agency — appears to be bigger than ever, according to federal statistics, and it’s now most likely to begin via text message or email instead of a phone call.
Cyware News – Latest Cyber News – Read More
Instilling the Hacker Mindset Organizationwide
/in General NewsIt’s critical for security teams to stay vigilant not only when it comes to major security issues, but also with minor lags in security best practice.
darkreading – Read More
Hotel Self Check-In Kiosks Exposed Room Access Codes
/in General NewsSelf check-in kiosks at Ibis Budget hotels were affected by a vulnerability that exposed keypad codes that could be used to enter rooms.
The post Hotel Self Check-In Kiosks Exposed Room Access Codes appeared first on SecurityWeek.
SecurityWeek – Read More
Vulnerability Database Backlog Due to Increased Volume, Changes in ‘Support,’ NIST Says
/in General NewsThe National Institute of Standards and Technology (NIST) blamed increases in the volume of software and “a change in interagency support” for the recent backlog of vulnerabilities analyzed in the organization’s National Vulnerability Database (NVD).
Cyware News – Latest Cyber News – Read More
Hundreds of Indians Rescued from Cambodian Cybercrime Gangs
/in General NewsBy Waqas
Indian authorities rescue hundreds trafficked for cybercrime in Cambodia. Victims lured by false jobs, forced to work in…
This is a post from HackRead.com Read the original post: Hundreds of Indians Rescued from Cambodian Cybercrime Gangs
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Escalating Malware Tactics Drive Global Cybercrime Epidemic
/in General NewsEvasive, basic, and encrypted malware all increased in Q4 2023, fueling a rise in total malware, according to WatchGuard. The average number of malware detections rose 80% from the previous quarter.
Cyware News – Latest Cyber News – Read More