BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
- [webapps] Elber Wayber Analog/Digital Audio STL 4.00 - Authentication Bypass
Update: Prudential Insurance Says Data of 36,000 Exposed During February Cyberattack
/in General News“Through the investigation, we learned that the unauthorized third party gained access to our network on February 4, 2024, and removed a small percentage of personal information from our systems,” the breach notification letters said.
Cyware News – Latest Cyber News – Read More
Boat Dealer MarineMax Confirms Data Breach
/in General NewsMarineMax confirms suffering a data breach as a result of a recent ransomware attack, with the attackers claiming to have obtained 180,000 files.
The post Boat Dealer MarineMax Confirms Data Breach appeared first on SecurityWeek.
SecurityWeek – Read More
Skyflow Raises $30M in Extended Series B
/in General NewsSkyflow, a Palo Alto, CA-based data privacy vault company, raised $30M in Extended Series B funding. The round was led by Khosla Ventures with participation from Mouro Capital, Foundation Capital, and Canvas Ventures.
Cyware News – Latest Cyber News – Read More
India Says it has Rescued 250 Citizens From Cambodian Cyber Slavery
/in General NewsOn Saturday, India’s Ministry of External Affairs responded to local media reports about Indians trapped in Cambodia, saying they are closely collaborating with Cambodian authorities to rescue them.
Cyware News – Latest Cyber News – Read More
Google to Delete Billions of Browsing Records in ‘Incognito Mode’ Privacy Lawsuit Settlement
/in General NewsGoogle has agreed to purge billions of data records reflecting users’ browsing activities to settle a class action lawsuit that claimed the search giant tracked them without their knowledge or consent in its Chrome browser.
The class action, filed in 2020, alleged the company misled users by tracking their internet browsing activity who thought that it remained private when using the ”
The Hacker News – Read More
The XZ Backdoor: Everything You Need to Know
/in General NewsDetails are starting to emerge about a stunning supply chain attack that sent the open source software community reeling.
Security Latest – Read More
Update: Yacht Retailer MarineMax Discloses Data Breach After Cyberattack
/in General NewsMarineMax filed an updated report to regulators at the Securities and Exchange Commission on Monday warning that customer and employee information was stolen during the incident. The Rhysida ransomware gang took credit for the attack on March 21.
Cyware News – Latest Cyber News – Read More
StealthMole raises $7M Series A for its AI-Powered Dark Web Intelligence Platform
/in General NewsStealthMole, an AI-powered dark web intelligence startup that specializes in monitoring cyber threats and detecting cybercrime, announced Thursday that it has raised a $7 million Series A funding round.
Cyware News – Latest Cyber News – Read More
Massive Phishing Campaign Strikes Latin America: Venom RAT Targeting Multiple Sectors
/in General NewsThe threat actor known as TA558 has been attributed to a new massive phishing campaign that targets a wide range of sectors in Latin America with the goal of deploying Venom RAT.
The attacks primarily singled out hotel, travel, trading, financial, manufacturing, industrial, and government verticals in Spain, Mexico, United States, Colombia, Portugal, Brazil, Dominican Republic, and
The Hacker News – Read More
Cybersecurity Threats Intensify in the Middle East During Ramadan
/in General NewsHow security teams in the region fortify their defenses amid short-staffing — and increased DDoS, phishing, and ransomware campaigns — during the Muslim holy month.
darkreading – Read More