BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [remote] CrushFTP 11.3.1 - Authentication Bypass
- [remote] Invision Community 5.0.6 - Remote Code Execution (RCE)
- [local] Zyxel USG FLEX H series uOS 1.31 - Privilege Escalation
- [local] RDPGuard 9.9.9 - Privilege Escalation
- [webapps] Kentico Xperience 13.0.178 - Cross Site Scripting (XSS)
- [local] TP-Link VN020 F3v(T) TT_V6.2.1021) - DHCP Stack Buffer Overflow
- [webapps] WordPress Frontend Login and Registration Blocks Plugin 1.0.7 - Privilege Escalation
- [webapps] SureTriggers OttoKit Plugin 1.0.82 - Privilege Escalation
- [local] Microsoft Windows 11 Pro 23H2 - Ancillary Function Driver for WinSock Privilege Escalation
- [local] VirtualBox 7.0.16 - Privilege Escalation
Russian-Linked Cybercampaigns put a Bull’s-Eye on France. Their Focus? The Olympics and Elections
/in General NewsBaptiste Robert, a French cybersecurity expert, called on his government – and especially lawmakers – to prepare for the digital threats to come.
The post Russian-Linked Cybercampaigns put a Bull’s-Eye on France. Their Focus? The Olympics and Elections appeared first on SecurityWeek.
SecurityWeek – Read More
Researchers Track Identities and Locations of CSAM Users via Malware Logs
/in General NewsAlarming new research exposes thousands of CSAM (child sexual abuse material) consumers through infostealer malware logs. Recorded Future…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Three critical steps to close the cybersecurity talent gap, once and for all
/in General NewsCybersecurity is a differentiator, and organizations that prioritize developing and nurturing talent will emerge as leaders.Read More
Security News | VentureBeat – Read More
New Mallox Ransomware Variant Targets Linux Systems
/in General NewsNew variant of Mallox ransomware targets Linux systems using custom encryption and a builder web panel. Cybersecurity researchers…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Latest Ghostscript Vulnerability Haunts Experts as the Next Big Breach Enabler
/in General NewsThe vulnerability could be exploited to compromise systems without requiring user interaction, contrary to some severity assessments initially made by Tenable and Red Hat.
Cyware News – Latest Cyber News – Read More
Traeger Security Bugs Threatening Grillers’ Hard Work
/in General NewsTraeger grills face security bugs that could spell trouble for BBQ enthusiasts. High-severity vulnerabilities in the Traeger Grill D2 Wi-Fi Controller could allow remote attackers to control the grill’s temperature or shut it down.
Cyware News – Latest Cyber News – Read More
New Eldorado Ransomware Targets Windows, VMware ESXi VMs
/in General NewsEldorado also encrypts network shares using the SMB protocol, deletes shadow volume copies, and skips certain file types to prevent system damage. Affiliates can customize attacks on Windows, while Linux customization is limited.
Cyware News – Latest Cyber News – Read More
10 Security Tips for Business Travellers This Summer
/in General NewsTravelling for work can open employees up to a new host of security threats, including insecure Wi-Fi networks, infected public charging ports and Bluetooth attacks.
Security | TechRepublic – Read More
Euro Vishing Fraudsters Add Physical Intimidation to Arsenal
/in General NewsThe persistent threat of social engineering tactics sees cybercriminals blending technology with human manipulation to exploit individuals.
darkreading – Read More
OpenAI Kept Mum About Hack of Sensitive AI Research
/in General NewsSecurity breach potentially exposed internal secrets at AI research firm OpenAI after hackers accessed discussions on sensitive AI…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More