BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [local] ABB Cylon Aspect Studio 3.08.03 - Binary Planting
- [remote] Windows 2024.15 - Unauthenticated Desktop Screenshot Capture
- [local] Microsoft Windows Server 2016 - Win32k Elevation of Privilege
- [webapps] WordPress User Registration & Membership Plugin 4.1.2 - Authentication Bypass
- [webapps] Java-springboot-codebase 1.1 - Arbitrary File Read
- [remote] Grandstream GSD3710 1.0.11.13 - Stack Buffer Overflow
- [remote] ABB Cylon Aspect 3.08.03 - Guest2Root Privilege Escalation
- [remote] Remote Keyboard Desktop 1.0.1 - Remote Code Execution (RCE)
- [remote] CrushFTP 11.3.1 - Authentication Bypass
- [local] Zyxel USG FLEX H series uOS 1.31 - Privilege Escalation
Private Equity Firm Hg Acquires AuditBoard for $3 Billion
/in General NewsPrivate equity company Hg has acquired audit, compliance and risk management firm AuditBoard for over $3 billion.
The post Private Equity Firm Hg Acquires AuditBoard for $3 Billion appeared first on SecurityWeek.
SecurityWeek – Read More
Ransomhub’s Latest Attack Raises Alarms for Industrial Control Systems (ICS) Security
/in General NewsThe Ransomhub ransomware group’s modus operandi involves encrypting data and leveraging access to SCADA systems to disrupt essential functions, as evidenced in their recent breach.
Cyware News – Latest Cyber News – Read More
Fake Antivirus Sites Spread Malware Disguised as Avast, Malwarebytes, Bitdefender
/in General NewsBy Deeba Ahmed
Trellix research exposes the dangers of fake antivirus websites disguised as legitimate security software but harbouring malware. Learn…
This is a post from HackRead.com Read the original post: Fake Antivirus Sites Spread Malware Disguised as Avast, Malwarebytes, Bitdefender
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
CERT-UA Warns of Malware Campaign Conducted by Threat Actor UAC-0006
/in General NewsSmokeLoader acts as a loader for other malware, once it is executed it will inject malicious code into the currently running explorer process (explorer.exe) and download another payload to the system.
Cyware News – Latest Cyber News – Read More
Researchers Warn of CatDDoS Botnet and DNSBomb DDoS Attack Technique
/in General NewsThe threat actors behind the CatDDoS malware botnet have exploited over 80 known security flaws in various software over the past three months to infiltrate vulnerable devices and co-opt them into a botnet for conducting distributed denial-of-service (DDoS) attacks.
“CatDDoS-related gangs’ samples have used a large number of known vulnerabilities to deliver samples,” the QiAnXin XLab team
The Hacker News – Read More
What is an Infosec Audit and Why Does Your Company Need One?
/in General NewsBy Uzair Amir
Uncover IT security weaknesses and ensure compliance with infosec audits. Regular audits protect your data from breaches &…
This is a post from HackRead.com Read the original post: What is an Infosec Audit and Why Does Your Company Need One?
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Data Stolen From MediSecure for Sale on Dark Web
/in General NewsA threat actor is asking $50,000 for data allegedly stolen from Australian digital prescription services provider MediSecure.
The post Data Stolen From MediSecure for Sale on Dark Web appeared first on SecurityWeek.
SecurityWeek – Read More
2.8 Million Impacted by Data Breach at Prescription Services Firm Sav-Rx
/in General NewsPharmacy prescription services provider Sav-Rx says the personal information of 2.8 million was stolen in a cyberattack.
The post 2.8 Million Impacted by Data Breach at Prescription Services Firm Sav-Rx appeared first on SecurityWeek.
SecurityWeek – Read More
Cops Are Just Trolling Cybercriminals Now
/in General NewsPolice are using subtle psychological operations against ransomware gangs to sow distrust in their ranks—and trick them into emerging from the shadows.
Security Latest – Read More
Digital ID Adoption: Implementation and Security Concerns
/in General NewsAs digital transformation accelerates, understanding how businesses are preparing for and implementing digital ID technologies is crucial for staying ahead in security and efficiency, according to Regula.
Cyware News – Latest Cyber News – Read More