BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [local] ABB Cylon Aspect Studio 3.08.03 - Binary Planting
- [remote] Windows 2024.15 - Unauthenticated Desktop Screenshot Capture
- [local] Microsoft Windows Server 2016 - Win32k Elevation of Privilege
- [webapps] WordPress User Registration & Membership Plugin 4.1.2 - Authentication Bypass
- [webapps] Java-springboot-codebase 1.1 - Arbitrary File Read
- [remote] Grandstream GSD3710 1.0.11.13 - Stack Buffer Overflow
- [remote] ABB Cylon Aspect 3.08.03 - Guest2Root Privilege Escalation
- [remote] Remote Keyboard Desktop 1.0.1 - Remote Code Execution (RCE)
- [remote] CrushFTP 11.3.1 - Authentication Bypass
- [local] Zyxel USG FLEX H series uOS 1.31 - Privilege Escalation
Summary of “AI Leaders Spill Their Secrets” Webinar
/in General NewsEvent Overview
The “AI Leaders Spill Their Secrets” webinar, hosted by Sigma Computing, featured prominent AI experts sharing their experiences and strategies for success in the AI industry. The panel included Michael Ward from Sardine, Damon Bryan from Hyperfinity, and Stephen Hillian from Astronomer, moderated by Zalak Trivedi, Sigma Computing’s Product Manager.
Key Speakers and Their
The Hacker News – Read More
Instagram unveiled a new feature. Here’s how you can use it (and why you’ll want to)
/in General NewsNotes on Instagram is about to take on a new meaning.
Latest news – Read More
Qilin Ransomware’s Sophisticated Tactics Unveiled By Experts
/in General NewsWith over 150 organizations in 25 countries affected, Qilin’s sophisticated tactics include exploiting vulnerabilities, using tools like Mimikatz for privilege escalation, and evading defenses by deleting logs and using PowerShell commands.
Cyware News – Latest Cyber News – Read More
Hacked YouTube Channels Use Trump Assassination News to Push Crypto Scam
/in General NewsThe scam involves deepfake videos of Elon Musk promising insights into the attack and encouraging viewers to participate in a cryptocurrency giveaway by scanning a QR code in the video.
Cyware News – Latest Cyber News – Read More
WazirX Cryptocurrency Exchange Loses $230 Million in Major Security Breach
/in General NewsIndian cryptocurrency exchange WazirX has confirmed that it was the target of a security breach that led to the theft of $230 million in cryptocurrency assets.
“A cyber attack occurred in one of our [multi-signature] wallets involving a loss of funds exceeding $230 million,” the company said in a statement. “This wallet was operated utilizing the services of Liminal’s digital asset custody and
The Hacker News – Read More
The mindset, technology and tools that are stopping ecommerce in its tracks
/in General NewsCatch up with this VB Spotlight to learn how to protect your company and customers against the newest ecommerce threats fueled by AI.Read More
Security News | VentureBeat – Read More
US Data Breach Victim Numbers Increase by 1,000%, Literally
/in General NewsThough the number of victims has risen, the actual number of breaches has gone down, as fewer, bigger breaches affect more individuals.
darkreading – Read More
SolarWinds Charges Tossed Out of Court in Legal Victory Against SEC
/in General NewsJudge dismisses claims against SolarWinds for actions taken after its systems had been breached, but allows the case to proceed for alleged misstatements prior to the incident.
darkreading – Read More
Nvidia finally open sources some of its GPU drivers. How to tell what’s under your hood
/in General NewsA welcome step toward a more open ecosystem for Linux users and developers, the upcoming R560 driver release also puts Nvidia in a better position to compete with AMD. It’s about time.
Latest news – Read More
Using Threat Intelligence to Predict Potential Ransomware Attacks
/in General NewsThe risk of suffering a ransomware attack is high and organizations must take proactive steps to protect themselves and minimize the impact of a potential breach.
The post Using Threat Intelligence to Predict Potential Ransomware Attacks appeared first on SecurityWeek.
SecurityWeek – Read More