BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
- [webapps] Elber Wayber Analog/Digital Audio STL 4.00 - Authentication Bypass
Harnessing the Power of CTEM for Cloud Security
/in General NewsCloud solutions are more mainstream – and therefore more exposed – than ever before.
In 2023 alone, a staggering 82% of data breaches were against public, private, or hybrid cloud environments. What’s more, nearly 40% of breaches spanned multiple cloud environments. The average cost of a cloud breach was above the overall average, at $4.75 million. In a time where cloud has become the de facto
The Hacker News – Read More
Cyberattacks Wreaking Physical Disruption on the Rise
/in General NewsRansomware groups tore into manufacturing other parts of the OT sector in 2023, and a few attacks caused eight- and nine-figure damages. But worse is yet to come in 2024.
darkreading – Read More
Cybersecurity M&A Roundup: 27 Deals Announced in March 2024
/in General NewsTwenty-seven cybersecurity-related merger and acquisition (M&A) deals were announced in March 2024.
The post Cybersecurity M&A Roundup: 27 Deals Announced in March 2024 appeared first on SecurityWeek.
SecurityWeek – Read More
Top 3 Cybersecurity Tools to Protect Business Data
/in General NewsBy Uzair Amir
Discover the top three cybersecurity tools designed to safeguard your business data from online threats and breaches, ensuring secure data transfer.
This is a post from HackRead.com Read the original post: Top 3 Cybersecurity Tools to Protect Business Data
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Prudential Financial Data Breach Impacts 36,000
/in General NewsPrudential Financial says the names, addresses, and ID numbers of over 36,000 were stolen in a February data breach.
The post Prudential Financial Data Breach Impacts 36,000 appeared first on SecurityWeek.
SecurityWeek – Read More
Data Leak at Shopping Platform PandaBuy Impacts 1.3 Million Users
/in General News“The data was stolen by exploiting several critical vulnerabilities in the platform’s API and other bugs were identified allowing access to the internal service of the website,” the threat actor named ‘Sanggiero’ said.
Cyware News – Latest Cyber News – Read More
Heartbleed is 10 Years Old – Farewell Heartbleed, Hello QuantumBleed!
/in General NewsHeartbleed made most certificates vulnerable. The future problem is that quantum decryption will make all certificates and everything else using RSA encryption vulnerable to everyone.
The post Heartbleed is 10 Years Old – Farewell Heartbleed, Hello QuantumBleed! appeared first on SecurityWeek.
SecurityWeek – Read More
OWASP Data Breach Caused by Server Misconfiguration
/in General NewsThe OWASP Foundation says a wiki misconfiguration exposed resumes filed over a decade ago by aspiring members.
The post OWASP Data Breach Caused by Server Misconfiguration appeared first on SecurityWeek.
SecurityWeek – Read More
Advanced Cybersecurity Strategies Boost Shareholder Returns
/in General NewsCompanies demonstrating advanced cybersecurity performance generate a shareholder return that is 372% higher than their peers with basic cybersecurity performance, according to a new report from Diligent and Bitsight.
Cyware News – Latest Cyber News – Read More
AI Abuse and Misinformation Campaigns Threaten Financial Institutions
/in General NewsThough generative AI offers financial firms remarkable business and cybersecurity utility, cyber threats relating to GenAI in financial services are a consistent concern, according to FS-ISAC.
Cyware News – Latest Cyber News – Read More