BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
- [webapps] Elber Wayber Analog/Digital Audio STL 4.00 - Authentication Bypass
Bitwarden vs. 1Password: Which password manager is best?
/in General NewsBitwarden offers secure, budget-friendly password management, while 1Password puts a premium on user experience. Here’s how to decide between the two.
Latest stories for ZDNET in Security – Read More
Amazon Employee Data Leaked by Hacker
/in General NewsAmazon has confirmed that some employee data was compromised as a result of a MOVEit hack last year.
The post Amazon Employee Data Leaked by Hacker appeared first on SecurityWeek.
SecurityWeek – Read More
The WIRED Guide to Protecting Yourself From Government Surveillance
/in General NewsDonald Trump has vowed to deport millions and jail his enemies. To carry out that agenda, his administration will exploit America’s digital surveillance machine. Here are some steps you can take to evade it.
Security Latest – Read More
The Real Problem With Banning Masks at Protests
/in General NewsPrivacy advocates worry banning masks at protests will encourage harassment, while cops’ high-tech tools render the rules unnecessary.
Security Latest – Read More
IP Spoofing Attack Tried to Disrupt Tor Network
/in General NewsA coordinated IP spoofing attack that involved port scans tried to disrupt the Tor network by getting relays on blocklists.
The post IP Spoofing Attack Tried to Disrupt Tor Network appeared first on SecurityWeek.
SecurityWeek – Read More
New iOS Security Feature Reboots Devices to Protect User Data: Reports
/in General NewsA new feature in the latest iOS release reportedly reboots locked devices that have not been unlocked for longer periods of time.
The post New iOS Security Feature Reboots Devices to Protect User Data: Reports appeared first on SecurityWeek.
SecurityWeek – Read More
New Ymir Ransomware Exploits Memory for Stealthy Attacks; Targets Corporate Networks
/in General NewsCybersecurity researchers have flagged a new ransomware family called Ymir that was deployed in an attack two days after systems were compromised by a stealer malware called RustyStealer.
“Ymir ransomware introduces a unique combination of technical features and tactics that enhance its effectiveness,” Russian cybersecurity vendor Kaspersky said.
“Threat actors leveraged an unconventional blend
The Hacker News – Read More
Halliburton Remains Optimistic Amid $35M Data Breach Losses
/in General NewsThough its third-quarter earnings report confirms that the company remains on track, it’s unclear how that will be affected if the threat actors commit further damage.
darkreading – Read More
Revamped Remcos RAT Deployed Against Microsoft Windows Users
/in General NewsWindows users are at risk for full device takeover by an emerging malicious version of the Remcos remote admin tool, which is being used in an ongoing campaign exploiting a known remote code execution (RCE) vulnerability in Microsoft Office and WordPad.
darkreading – Read More
Google DeepMind open-sources AlphaFold 3, ushering in a new era for drug discovery and molecular biology
/in General NewsGoogle DeepMind releases AlphaFold 3’s source code to academics, marking a significant advance in AI-powered molecular biology and drug discovery, while balancing open science with commercial interests in the wake of its creators’ Nobel Prize win.Read More
Security News | VentureBeat – Read More