BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
- [webapps] Elber Wayber Analog/Digital Audio STL 4.00 - Authentication Bypass
CISA Explains How to Apply Secure-By-Design Principles
/in General NewsThe CISA is pushing for manufacturers and vendors to take responsibility for the security of their products. CISA wants detailed data and logs from technology companies to prove they are incorporating security measures.
Cyware News – Latest Cyber News – Read More
Unusual “ZPAQ” Archive Format Delivers Malware
/in General NewsThe use of the ZPAQ compression format by threat actors in this malware campaign highlights the need for improved security measures and awareness regarding lesser-known archive tools.
Cyware News – Latest Cyber News – Read More
Popular Dragon Touch Tablet for Kids Infected with Corejava Malware
/in General NewsResearchers from the Electronic Frontier Foundation have discovered that the Dragon Touch KidzPad Y88X 10 tablet, sold on Amazon, contains malware and preinstalled riskware. The tablet also comes with an outdated parental control app called KIDOZ.
Cyware News – Latest Cyber News – Read More
Sumo Logic Completes Investigation Into Recent Security Breach
/in General NewsSumo Logic has completed its investigation into the recent security breach and found no evidence of impact to customer data.
The post Sumo Logic Completes Investigation Into Recent Security Breach appeared first on SecurityWeek.
SecurityWeek – Read More
Wireshark 4.2.0 released, open-source packet analysis gets even better
/in General NewsWireshark 4.2.0 introduces notable improvements, such as enhanced packet list sorting and smarter display filter autocomplete. It supports a wide range of new protocols, including HTTP/3, SAP protocols, Zigbee TLV, and VMware HeartBeat.
Cyware News – Latest Cyber News – Read More
Leveraging Sandbox and Threat Intelligence Feeds to Combat Cyber Threats
/in General NewsCombining a malware sandbox with threat intelligence feeds improves security detection, analysis, and response capabilities.
Dark Reading – Read More
A Detection and Response Benchmark Designed for the Cloud
/in General NewsDoes your security operation center’s performance meet the 5/5/5 benchmark for cloud threat detection and incident response?
Dark Reading – Read More
Crypto Scammers Exploit Gaza Crisis, Deceiving Users in Donation Scam
/in General NewsBy Deeba Ahmed
Scammers taking advantage of a humanitarian crisis? Well, who saw that coming…
This is a post from HackRead.com Read the original post: Crypto Scammers Exploit Gaza Crisis, Deceiving Users in Donation Scam
Hackread – Latest Cybersecurity News, Press Releases & Technology Today – Read More
8Base Group Deploying New Phobos Ransomware Variant via SmokeLoader
/in General NewsThe threat actors behind the 8Base ransomware are leveraging a variant of the Phobos ransomware to conduct their financially motivated attacks.
The findings come from Cisco Talos, which has recorded an increase in activity carried out by cybercriminals.
“Most of the group’s Phobos variants are distributed by SmokeLoader, a backdoor trojan,” security researcher Guilherme Venere said in an
The Hacker News – Read More
ChatGPT-Maker OpenAI Fires CEO Sam Altman, the Face of the AI Boom, for Lack of Candor With Company
/in General NewsOpen AI pushed out its co-founder and CEO Sam Altman after a review found he was “not consistently candid in his communications” with the board of directors.
The post ChatGPT-Maker OpenAI Fires CEO Sam Altman, the Face of the AI Boom, for Lack of Candor With Company appeared first on SecurityWeek.
SecurityWeek – Read More