BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
- Uro - Declutters Url Lists For Crawling/Pentesting
- Wshlient - A Simple Tool To Interact With Web Shells And Command Injection Vulnerabilities
- Pulsegram - Integrated Keylogger With Telegram
- Scrapling - An Undetectable, Powerful, Flexible, High-Performance Python Library That Makes Web Scraping Simple And Easy Again!
Exploit DB
- [webapps] ERPNext 14.82.1 - Account Takeover via Cross-Site Request Forgery (CSRF)
- [webapps] Grokability Snipe-IT 8.0.4 - Insecure Direct Object Reference (IDOR)
- [webapps] Casdoor 1.901.0 - Cross-Site Request Forgery (CSRF)
- [local] Daikin Security Gateway 14 - Remote Password Reset
- [local] Microsoft Windows - XRM-MS File NTLM Information Disclosure Spoofing
- [local] Microsoft - NTLM Hash Disclosure Spoofing (library-ms)
- [local] ZTE ZXV10 H201L - RCE via authentication bypass
- [local] unzip-stream 0.3.1 - Arbitrary File Write
- [remote] OpenSSH server (sshd) 9.8p1 - Race Condition
- [local] tar-fs 3.0.0 - Arbitrary File Write/Overwrite
Cyberhaven Banks $100 Million in Series D, Valuation Hits $1 Billion
/in General NewsCyberhaven bags $100 million in funding at a billion-dollar valuation, a sign that investors remain bullish on data security startups.
The post Cyberhaven Banks $100 Million in Series D, Valuation Hits $1 Billion appeared first on SecurityWeek.
SecurityWeek – Read More
Anthropic flips the script on AI in education: Claude’s Learning Mode makes students do the thinking
/in General NewsAnthropic launches Claude for Education with Learning Mode that teaches critical thinking rather than providing answers, partnering with top universities to transform AI’s role in education.Read More
Security News | VentureBeat – Read More
Apple Rolls Out iOS 18.4 With New Languages, Emojis & Apple Intelligence in the EU
/in General NewsApple’s iOS 18.4 lets EU users choose default navigation apps like Google Maps or Waze, complying with the Digital Markets Act for more competition and user control.
Security | TechRepublic – Read More
China’s FamousSparrow APT Hits Americas with SparrowDoor Malware
/in General NewsChina-linked APT group FamousSparrow hits targets in the Americas using upgraded SparrowDoor malware in new cyberespionage campaign, ESET reports.
Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – Read More
Google DeepMind Unveils Framework to Exploit AI’s Cyber Weaknesses
/in General NewsDeepMind found that current AI frameworks are ad hoc, not systematic, and fail to provide defenders with useful insights.
The post Google DeepMind Unveils Framework to Exploit AI’s Cyber Weaknesses appeared first on SecurityWeek.
SecurityWeek – Read More
How an Interdiction Mindset Can Help Win War on Cyberattacks
/in General NewsThe US military and law enforcement learned to outthink insurgents. It’s time for cybersecurity to learn to outsmart and outmaneuver threat actors with the same framework.
darkreading – Read More
North Korean IT worker scam spreading to Europe after US law enforcement crackdown
/in General NewsNorth Korea’s IT worker scam has expanded widely into Europe after years of focusing on U.S. companies, according to new research.
The Record from Recorded Future News – Read More
KeePass Review (2025): Features, Pricing, and Security
/in General NewsWhile its downloadable plugins make it highly customizable, KeePass’ unintuitive interface holds it back from one of our top password manager picks.
Security | TechRepublic – Read More
Augment Code debuts AI agent with 70% win rate over GitHub Copilot and record-breaking SWE-bench score
/in General NewsAugment Code launches AI technology that outperforms GitHub Copilot by 70% through real-time context understanding of massive codebases, securing $270M funding and achieving the highest score on SWE-bench verified.Read More
Security News | VentureBeat – Read More
KeePass Review (2025): Features, Pricing, and Security
/in General NewsWhile its downloadable plugins make it highly customizable, KeePass’ unintuitive interface holds it back from one of our top password manager picks.
Security | TechRepublic – Read More