BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- Shodan-Dorks - Dorks for Shodan; a powerful tool used to search for Internet-connected devices
- Pegasus-Pentest-Arsenal - A Comprehensive Web Application Security Testing Toolkit That Combines 10 Powerful Penetration Testing Features Into One Tool
- Witcher - Managing GitHub Advanced Security (GHAS) Controls At Scale
- ByeDPIAndroid - App To Bypass Censorship On Android
- API-s-for-OSINT - List Of API's For Gathering Information About Phone Numbers, Addresses, Domains Etc
- Firecrawl-Mcp-Server - Official Firecrawl MCP Server - Adds Powerful Web Scraping To Cursor, Claude And Any Other LLM Clients
- Deep-Live-Cam - Real Time Face Swap And One-Click Video Deepfake With Only A Single Image
- CAMEL - The First And The Best Multi-Agent Framework. Finding The Scaling Law Of Agents
- Liam - Automatically Generates Beautiful And Easy-To-Read ER Diagrams From Your Database
- SubGPT - Find Subdomains With GPT, For Free
Exploit DB
- [webapps] Moodle 4.4.0 - Authenticated Remote Code Execution
- [remote] Microsoft SharePoint 2019 - NTLM Authentication
- [remote] gogs 0.13.0 - Remote Code Execution (RCE)
- [remote] Wing FTP Server 7.4.3 - Unauthenticated Remote Code Execution (RCE)
- [webapps] Sitecore 10.4 - Remote Code Execution (RCE)
- [remote] PX4 Military UAV Autopilot 1.12.3 - Denial of Service (DoS)
- [webapps] Pterodactyl Panel 1.11.11 - Remote Code Execution (RCE)
- [remote] OneTrust SDK 6.33.0 - Denial Of Service (DoS)
- [remote] freeSSHd 1.0.9 - Denial of Service (DoS)
- [remote] McAfee Agent 5.7.6 - Insecure Storage of Sensitive Information
Information of Hundreds of European Politicians Found on Dark Web
/in General NewsThe email addresses and other information of hundreds of British, French and EU politicians have been found on the dark web.
The post Information of Hundreds of European Politicians Found on Dark Web appeared first on SecurityWeek.
SecurityWeek – Read More
Mysterious Threat Actor Used Chalubo Malware to Brick 600,000 Routers
/in General NewsOver 600,000 SOHO routers belonging to a single ISP and infected with the Chalubo trojan were rendered inoperable.
The post Mysterious Threat Actor Used Chalubo Malware to Brick 600,000 Routers appeared first on SecurityWeek.
SecurityWeek – Read More
CISA Warns of Exploited Linux Kernel Vulnerability
/in General NewsCISA instructs federal agencies to mitigate CVE-2024-1086, a Linux kernel flaw leading to privilege escalation.
The post CISA Warns of Exploited Linux Kernel Vulnerability appeared first on SecurityWeek.
SecurityWeek – Read More
OpenAI, Meta, TikTok Disrupt Multiple AI-Powered Disinformation Campaigns
/in General NewsOpenAI on Thursday disclosed that it took steps to cut off five covert influence operations (IO) originating from China, Iran, Israel, and Russia that sought to abuse its artificial intelligence (AI) tools to manipulate public discourse or political outcomes online while obscuring their true identity.
These activities, which were detected over the past three months, used its AI models to
The Hacker News – Read More
Hackers Boast Ticketmaster Breach on Relaunched BreachForums
/in General NewsThe ShinyHunters hacking group has claimed the theft of 560 million Ticketmaster users’ data on a fresh BreachForums portal.
The post Hackers Boast Ticketmaster Breach on Relaunched BreachForums appeared first on SecurityWeek.
SecurityWeek – Read More
BBC Data Breach Impacts 25,000 Employees
/in General NewsThe BBC has disclosed a data breach impacting over 25,000 current and former employees, but the incident did not involve ransomware.
The post BBC Data Breach Impacts 25,000 Employees appeared first on SecurityWeek.
SecurityWeek – Read More
In the jungle of AWS S3 Enumeration
/in General NewsBy Daily Contributors
Amazon Web Services (AWS) Simple Storage Service (S3) is a foundational pillar of cloud storage, offering scalable object…
This is a post from HackRead.com Read the original post: In the jungle of AWS S3 Enumeration
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
One Phish, Two Phish, Red Phish, Blue Phish
/in General NewsBy Daily Contributors
One of the interesting things about working for a cybersecurity company is that you get to talk to…
This is a post from HackRead.com Read the original post: One Phish, Two Phish, Red Phish, Blue Phish
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Proofpoint’s CISO 2024 Report: Top Challenges Include Human Error & Risk
/in General NewsThis new report also indicates an increasing attack surface as putting pressure on CISOs. One positive note is CISOs’ improving relationships with board members.
Security | TechRepublic – Read More
Cops Swarm Global Cybercrime Botnet Infrastructure in 2 Massive Ops
/in General NewsEuropol undertook dropper malware botnet takedown while US law enforcement dismantled a sprawling cybercrime botnet for hire.
darkreading – Read More