BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [webapps] Discourse 3.2.x - Anonymous Cache Poisoning
- [remote] Microsoft PowerPoint 2019 - Remote Code Execution (RCE)
- [remote] ScriptCase 9.12.006 (23) - Remote Command Execution (RCE)
- [local] Sudo chroot 1.9.17 - Local Privilege Escalation
- [local] Sudo 1.9.17 Host Option - Elevation of Privilege
- [remote] Microsoft Outlook - Remote Code Execution (RCE)
- [webapps] Stacks Mobile App Builder 5.2.3 - Authentication Bypass via Account Takeover
- [local] Microsoft Defender for Endpoint (MDE) - Elevation of Privilege
- [remote] gogs 0.13.0 - Remote Code Execution (RCE)
- [remote] Wing FTP Server 7.4.3 - Unauthenticated Remote Code Execution (RCE)
WikiLeaks Founder Julian Assange Returns to Australia a Free Man After US Legal Battle Ends
/in General NewsWikiLeaks founder Julian Assange returned to Australia, hours after pleading guilty to obtaining and publishing U.S. military secrets.
The post WikiLeaks Founder Julian Assange Returns to Australia a Free Man After US Legal Battle Ends appeared first on SecurityWeek.
SecurityWeek – Read More
War Crime Prosecutions Enter a New Digital Age
/in General NewsA custom platform developed by SITU Research aided the International Criminal Court’s prosecution in a war crimes trial for the first time. It could change how justice is enacted on an international scale.
Security Latest – Read More
Neiman Marcus Customers Impacted by Snowflake Data Breach
/in General NewsThe high-end retailer is the latest company to confirm it was impacted by the wide-ranging Snowflake data breach, which impacted more than 165 organizations.
darkreading – Read More
Hugging Face’s updated leaderboard shakes up the AI evaluation game
/in General NewsHugging Face revamps its Open LLM Leaderboard as AI model performance plateaus, introducing more challenging benchmarks and sparking a new era in AI evaluation alongside complementary efforts like the LMSYS Chatbot Arena.Read More
Security News | VentureBeat – Read More
Google Unveils New Chrome Enterprise Core Features for IT, Security Teams
/in General NewsGoogle has announced new Chrome Enterprise Core features that should be very useful to IT and security teams.
The post Google Unveils New Chrome Enterprise Core Features for IT, Security Teams appeared first on SecurityWeek.
SecurityWeek – Read More
New MOVEit Transfer Vulnerability Under Active Exploitation – Patch ASAP!
/in General NewsA newly disclosed critical security flaw impacting Progress Software MOVEit Transfer is already seeing exploitation attempts in the wild shortly after details of the bug were publicly disclosed.
The vulnerability, tracked as CVE-2024-5806 (CVSS score: 9.1), concerns an authentication bypass that impacts the following versions –
From 2023.0.0 before 2023.0.11
From 2023.1.0 before 2023.1.6, and&
The Hacker News – Read More
The 6 Best LastPass Alternatives for 2024
/in General NewsLooking for LastPass alternatives? Check out our list of the top password managers that offer secure and convenient options for managing your passwords.
Security | TechRepublic – Read More
Fortinet vs Palo Alto (2024): Which NGFW Is Best for Your Team?
/in General NewsAs two top NGFWs, Fortinet FortiGate seems to best fit small businesses, while Palo Alto works best for larger organizations. Find out in our comparison below.
Security | TechRepublic – Read More
Google Disrupts More China-Linked Dragonbridge Influence Operations
/in General NewsGoogle has disrupted over 175,000 YouTube and Blogger instances related to the Chinese influence operation Dragonbridge.
The post Google Disrupts More China-Linked Dragonbridge Influence Operations appeared first on SecurityWeek.
SecurityWeek – Read More
Diverse Cybersecurity Workforce Act Offers More Than Diversity Benefits
/in General NewsOur adversaries certainly have diversity — so cybersecurity teams need it, too.
darkreading – Read More