BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
- [webapps] Elber Wayber Analog/Digital Audio STL 4.00 - Authentication Bypass
Apple Patches WebKit Flaws Exploited on Older iPhones
/in General NewsCupertino’s security response team said it was aware of a report the flaws were already exploited against versions of iOS before iOS 16.7.1.
The post Apple Patches WebKit Flaws Exploited on Older iPhones appeared first on SecurityWeek.
SecurityWeek – Read More
68% of US Websites Exposed to Bot Attacks
/in General NewsBy Deeba Ahmed
The conclusion was reached after researchers evaluated over 9,500 of the largest transactional websites in terms of traffic,…
This is a post from HackRead.com Read the original post: 68% of US Websites Exposed to Bot Attacks
Hackread – Latest Cybersecurity News, Press Releases & Technology Today – Read More
Feds Seize ‘Sinbad’ Crypto Mixer Used by North Korea’s Lazarus
/in General NewsThe prolific threat actor has laundered hundreds of millions of dollars in stolen virtual currency through the service.
darkreading – Read More
Google Fixes a Seventh Zero-Day Flaw in Chrome—Update Now
/in General NewsPlus: Major security patches from Microsoft, Mozilla, Atlassian, Cisco, and more.
Security Latest – Read More
Deluge of Nearly 300 Fake Apps Floods Iranian Banking Sector
/in General NewsNo Iranian bank customers are safe from financially motivated cybercriminals wielding convincing but fake mobile apps.
darkreading – Read More
Google issues an emergency update to fix yet another zero-day exploit for Chrome. Here’s what to know
/in General News2023 has been a banner year for zero-day exploits in Chrome and Google has patched its 6th and this one is considered an “emergency.”
Latest stories for ZDNET in Security – Read More
Claiming Zoom Rooms Service Accounts to Gain Access to Tenants
/in General NewsThe finding highlights the potential misuse of service accounts to gain unauthorized access to SaaS systems. Abusing the bug enabled attackers to predict service account email addresses, hijack the accounts, and collect sensitive information.
Cyware News – Latest Cyber News – Read More
Rhysida Ransomware Group Hacked King Edward VII’s Hospital
/in General NewsThe ransomware group claims to have stolen a substantial trove of ‘sensitive data’ and is auctioning it for 10 BTC. As usual, the Rhysida ransomware operators plan to sell the stolen data to a single buyer.
Cyware News – Latest Cyber News – Read More
Queensland Passes Mandatory Data Breach Notice Laws
/in General NewsThe bill also aligns state privacy law more closely with national privacy principles and reforms the Right to Information framework to reduce barriers to citizens accessing government-held information.
Cyware News – Latest Cyber News – Read More
1Kosmos Unifies Identity Verification User Journeys Across Web and Mobile Platforms
/in General NewsPost Content
darkreading – Read More