BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
- [webapps] Elber Wayber Analog/Digital Audio STL 4.00 - Authentication Bypass
Apple Security Update Fixes Zero-Day Webkit Exploits
/in General NewsApple recommends users update to iOS 17.1.2, iPadOS 17.1.2 and macOS 14.1.2. Google’s Threat Analysis Group discovered these security bugs.
Security | TechRepublic – Read More
US Government Sanctions North Korea’s Kimsuky Hacking Group
/in General NewsKimsuky is known for its aggressive social engineering tactics and targets governments, nuclear organizations, and foreign relations entities to gather intelligence for North Korea’s interests.
Cyware News – Latest Cyber News – Read More
Simple Hacking Technique can Extract ChatGPT Training Data
/in General NewsResearchers from Google DeepMind, Cornell University, and other institutions have discovered that the popular AI chatbot ChatGPT is susceptible to leaking data when prompted to repeat certain words.
Cyware News – Latest Cyber News – Read More
Google to Delete Inactive Gmail Accounts From Today: What You Need to Know
/in General NewsBy Deeba Ahmed
Google will delete free Google accounts that have not been signed into for two years and do not have any active subscriptions.
This is a post from HackRead.com Read the original post: Google to Delete Inactive Gmail Accounts From Today: What You Need to Know
Hackread – Latest Cybersecurity News, Press Releases & Technology Today – Read More
Russian and Chinese Interference Networks are ‘Building Audiences’ Ahead of 2024, Warns Meta
/in General NewsMeta has disrupted influence operations from China and Russia, highlighting the challenges posed by generative artificial intelligence and the use of perception hacking to sow doubt in democratic processes.
Cyware News – Latest Cyber News – Read More
In Other News: Utilities Targeted by Hackers, Aerospace Attacks, Killnet Leader Unmasked
/in General NewsNoteworthy stories that might have slipped under the radar: Utilities in US and Europe targeted in attacks, aerospace hacks, and Killnet leader unmasked.
The post In Other News: Utilities Targeted by Hackers, Aerospace Attacks, Killnet Leader Unmasked appeared first on SecurityWeek.
SecurityWeek – Read More
Five Resolutions to Prepare for SEC’s New Cyber Disclosure Rules
/in General NewsThe new SEC rules on cybersecurity risk management and incident disclosure will require publicly traded companies to reevaluate their security strategies and provide investors with a greater understanding of the cyber threats they face.
Cyware News – Latest Cyber News – Read More
Black Basta Ransomware Made Over $100 Million From Extortion
/in General NewsBlack Basta has collected over $100 million in ransom payments from over 90 victims since April 2022. High-profile victims targeted by Black Basta include the American Dental Association, Sobeys, Knauf, Yellow Pages Canada, and Rheinmetall.
Cyware News – Latest Cyber News – Read More
North Texas Water Utility Serving Two Million Hit With Cyberattack
/in General NewsNorth Texas Municipal Water District (NTMWD) has experienced a cyberattack on its business computer network, but its core water, wastewater, and solid waste services remain unaffected.
Cyware News – Latest Cyber News – Read More
Zero-Day Alert: Apple Rolls Out iOS, macOS, and Safari Patches for 2 Actively Exploited Flaws
/in General NewsApple has released software updates for iOS, iPadOS, macOS, and Safari web browser to address two security flaws that it said have come under active exploitation in the wild on older versions of its software.
The vulnerabilities, both of which reside in the WebKit web browser engine, are described below –
CVE-2023-42916 – An out-of-bounds read issue that could be exploited to
The Hacker News – Read More