BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [local] TP-Link VN020 F3v(T) TT_V6.2.1021) - DHCP Stack Buffer Overflow
- [webapps] WordPress Frontend Login and Registration Blocks Plugin 1.0.7 - Privilege Escalation
- [webapps] Kentico Xperience 13.0.178 - Cross Site Scripting (XSS)
- [local] RDPGuard 9.9.9 - Privilege Escalation
- [webapps] WordPress Depicter Plugin 3.6.1 - SQL Injection
- [webapps] SureTriggers OttoKit Plugin 1.0.82 - Privilege Escalation
- [local] Microsoft Windows 11 Pro 23H2 - Ancillary Function Driver for WinSock Privilege Escalation
- [local] VirtualBox 7.0.16 - Privilege Escalation
- [remote] Apache ActiveMQ 6.1.6 - Denial of Service (DOS)
- [webapps] ERPNext 14.82.1 - Account Takeover via Cross-Site Request Forgery (CSRF)
US, Allies Warn of Memory Unsafety Risks in Open Source Software
/in General NewsMost critical open source software contains code written in a memory unsafe language, US, Australian, and Canadian government agencies warn.
The post US, Allies Warn of Memory Unsafety Risks in Open Source Software appeared first on SecurityWeek.
SecurityWeek – Read More
Inside the Mind of a CISO: Survey and Analysis
/in General NewsInside the Mind of a CISO 2024 is a survey of 209 security leaders to understand the thinking and operational methods and motivations of CISOs.
The post Inside the Mind of a CISO: Survey and Analysis appeared first on SecurityWeek.
SecurityWeek – Read More
Exclusive: Zip’s AI procurement platform drives $4.4 billion in savings, reshaping enterprise spending
/in General NewsZip’s AI-powered procurement platform achieves $4.4 billion in customer savings, revolutionizing enterprise spend management and reshaping the $9.2 billion procurement software market.Read More
Security News | VentureBeat – Read More
Is Dr. Phil a Bigger Political Stage for Candidates Than CNN?
/in General NewsAlternative media may have officially gone mainstream for the US presidential election.
Wired – Read More
CISA Warns of Exploited GeoServer, Linux Kernel, and Roundcube Vulnerabilities
/in General NewsCISA on Wednesday warned that three older flaws in GeoServer, Linux kernel, and Roundcube webmail are exploited in the wild.
The post CISA Warns of Exploited GeoServer, Linux Kernel, and Roundcube Vulnerabilities appeared first on SecurityWeek.
SecurityWeek – Read More
Trump–Biden Debate Conspiracies Have Already Flooded the Internet
/in General NewsRepublican lawmakers, right-wing media outlets and influencers, and Trump himself are pushing conspiracies about Biden’s health and the debate in general.
Wired – Read More
Infinidat Revolutionizes Enterprise Cyber Storage Protection to Reduce Ransomware and Malware Threat Windows
/in General NewsWaltham, Massachusetts, 27th June 2024, CyberNewsWire
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Korean Telco Allegedly Infected Around 600,000 P2P Users with Malware
/in General NewsSouth Korean telco KT has been accused of purposely infecting customers with malware as a result of excessive use of peer-to-peer (P2P) downloading tools. Around 600,000 users of online storage services have reportedly been affected.
Cyware News – Latest Cyber News – Read More
The Secrets of Hidden AI Training on Your Data
/in General NewsWhile some SaaS threats are clear and visible, others are hidden in plain sight, both posing significant risks to your organization. Wing’s research indicates that an astounding 99.7% of organizations utilize applications embedded with AI functionalities. These AI-driven tools are indispensable, providing seamless experiences from collaboration and communication to work management and
The Hacker News – Read More
How to Use Python to Build Secure Blockchain Applications
/in General NewsDid you know it’s now possible to build blockchain applications, known also as decentralized applications (or “dApps” for short) in native Python? Blockchain development has traditionally required learning specialized languages, creating a barrier for many developers… until now. AlgoKit, an all-in-one development toolkit for Algorand, enables developers to build blockchain applications in pure
The Hacker News – Read More