BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
- [webapps] Elber Wayber Analog/Digital Audio STL 4.00 - Authentication Bypass
Ransomware Attackers Leak Sensitive Swiss Government Documents, Login
/in General NewsThe leaked data included 65,000 documents, with 5% related to the federal government. Most of the leaked federal government files contained personal data, technical information, classified data, and passwords.
Cyware News – Latest Cyber News – Read More
Duvel Says It Has “More Than Enough” Beer After Ransomware Attack
/in General NewsThe Duvel Moortgat Brewery in Belgium was hit by a ransomware attack, causing the halt of beer production in their bottling facilities. The company’s IT systems detected the attack, leading to an immediate stop in production.
Cyware News – Latest Cyber News – Read More
Feds Get Second Guilty Plea in Prosecution of Nigerian-Led BEC Case
/in General NewsNigerian national Henry Onyedikachi Echefu pleaded guilty to wire fraud and money laundering in connection with a $6 million business email compromise scheme dating back to 2017.
Cyware News – Latest Cyber News – Read More
RiskInDroid Performs Open-Source Risk Analysis of Android Apps
/in General NewsRiskInDroid is an open-source tool for analyzing the risk level of Android applications using machine learning. Unlike other tools, RiskInDroid conducts reverse engineering on apps to extract permissions and assess their usage in the bytecode.
Cyware News – Latest Cyber News – Read More
Cayosoft Raises $22.5 Million for Microsoft AD Recovery Tech
/in General NewsOhio security vendor Cayosoft banks new capital to fuel growth of its flagship Active Directory forest recovery product suite.
The post Cayosoft Raises $22.5 Million for Microsoft AD Recovery Tech appeared first on SecurityWeek.
SecurityWeek – Read More
Capita Says Cyberattack Contributed to Annual Loss of More Than $135 Million
/in General NewsThe incident led to a drop in Capita’s share price and a decline in its customer experience score. Data breaches and potential regulatory penalties could further impact the company, which is also facing criticism for its handling of personal data.
Cyware News – Latest Cyber News – Read More
Learn how to Protect Your Business With this $28 Cybersecurity Training
/in General NewsThis extensive bundle includes eight courses from leading instructors covering certification exams from CompTIA and Cisco to set you up for success. Use code ENJOY20 at checkout.
Security | TechRepublic – Read More
NSA Shares Zero-Trust Guidance to Limit Adversaries on the Network
/in General NewsOrganizations need to gradually advance through specific maturity levels in various components of the zero-trust architecture to effectively build a resilient security environment.
Cyware News – Latest Cyber News – Read More
Update: CMS Rolls Out Provider Flexibilities Amid Fallout From Change Healthcare Cyberattack
/in General NewsProvider groups, such as the American Hospital Association and the American Medical Association, are urging the government to provide further financial assistance, particularly for smaller practices, in response to the cyberattack’s impact.
Cyware News – Latest Cyber News – Read More
TA4903 Threat Actor Spoofs U.S. Government, Small Businesses in Phishing, BEC Bids
/in General NewsThe actor uses tactics such as spoofing government agencies, incorporating QR codes in phishing campaigns, and adopting new themes to lure victims into credential phishing and BEC activities.
Cyware News – Latest Cyber News – Read More