BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [local] TP-Link VN020 F3v(T) TT_V6.2.1021) - DHCP Stack Buffer Overflow
- [webapps] WordPress Frontend Login and Registration Blocks Plugin 1.0.7 - Privilege Escalation
- [webapps] Kentico Xperience 13.0.178 - Cross Site Scripting (XSS)
- [local] RDPGuard 9.9.9 - Privilege Escalation
- [webapps] WordPress Depicter Plugin 3.6.1 - SQL Injection
- [webapps] SureTriggers OttoKit Plugin 1.0.82 - Privilege Escalation
- [local] Microsoft Windows 11 Pro 23H2 - Ancillary Function Driver for WinSock Privilege Escalation
- [local] VirtualBox 7.0.16 - Privilege Escalation
- [remote] Apache ActiveMQ 6.1.6 - Denial of Service (DOS)
- [webapps] ERPNext 14.82.1 - Account Takeover via Cross-Site Request Forgery (CSRF)
APT42 Hackers Pose as Journalists to Harvest Credentials and Access Cloud Data
/in General NewsThe Iranian state-backed hacking outfit called APT42 is making use of enhanced social engineering schemes to infiltrate target networks and cloud environments.
Targets of the attack include Western and Middle Eastern NGOs, media organizations, academia, legal services and activists, Google Cloud subsidiary Mandiant said in a report published last week.
“APT42 was
The Hacker News – Read More
Synopsys to Sell its Software Integrity Business to Clearlake Capital and Francisco Partners
/in General NewsAfter the transaction, the business will operate independently as an application security testing software provider, with the current management team expected to lead the new entity.
Cyware News – Latest Cyber News – Read More
Blinken: Digital Solidarity Is ‘North Star’ for US Policy
/in General NewsThe four goals of the US International Cyberspace and Digital Policy Strategy are to advance economic prosperity; enhance security and combat cybercrime; promote human rights, democracy, and the rule of law; and address other transnational challenges.
darkreading – Read More
The Australian Government’s Manufacturing Objectives Rely on IT Capabilities
/in General NewsThe intent of the Future Made in Australia Act is to build manufacturing capabilities across all sectors, which will likely lead to more demand for IT skills and services.
Security | TechRepublic – Read More
Akamai to Acquire API Protection Startup Noname Security for $450 Million
/in General NewsAkamai has announced plans to acquire Noname Security to enhance its API protection offering.
The post Akamai to Acquire API Protection Startup Noname Security for $450 Million appeared first on SecurityWeek.
SecurityWeek – Read More
Global Fraud Prevention Leader BioCatch Valued at $1.3bn in Permira Takeover
/in General NewsThe acquisition will involve Permira buying out shares primarily from Bain Capital Tech Opportunities and Maverick Ventures, while existing shareholders Sapphire Ventures and Macquarie Capital will also increase their stakes in BioCatch.
Cyware News – Latest Cyber News – Read More
Can VPNs Be Tracked by the Police?
/in General NewsVPNs are popular due to the fact they add security and privacy to what are otherwise daily open Wi-Fi and public internet channels. But can VPNs be tracked by the police?
Security | TechRepublic – Read More
AT&T Launches New Managed Cybersecurity Services Business LevelBlue
/in General NewsLevelBlue, a new WillJam Ventures and AT&T joint venture, provides various managed cybersecurity services.
The post AT&T Launches New Managed Cybersecurity Services Business LevelBlue appeared first on SecurityWeek.
SecurityWeek – Read More
Hackers Leak COVID-19 Data of 820K Dominicans, Including Vaccination Info
/in General NewsBy Deeba Ahmed
A massive data leak of 820,000 Dominicans’ personal information (including COVID vaccination status) has been leaked online puting individuals at risk of identity theft, scams, and social engineering attacks.
This is a post from HackRead.com Read the original post: Hackers Leak COVID-19 Data of 820K Dominicans, Including Vaccination Info
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Krebs, Luber Added to Cyber Safety Review Board
/in General NewsThe Cyber Safety Review Board (CSRB) has added four new members, including Chris Krebs, former Director of the CISA, and David Luber, head of the NSA’s Cybersecurity Directorate.
Cyware News – Latest Cyber News – Read More