Connect with us
The ethical hacking community saw a big boost this month, with the news that the US Supreme Court has tightened up the definition of unauthorized access. Previously,...
A universal cross-site scripting (uXSS) vulnerability in Microsoft Edge’s translation function left users open to attack, regardless of which website they visited, security researchers have claimed. Netting a...
Researchers at at Positive Technologies have published a proof-of-concept exploit for CVE-2020-3580. There are reports of researchers pursuing bug bounties using this exploit. According to Tenable, on October 21,...
An ethical hacker has landed a $30,000 bug bounty payout after finding a security vulnerability in Instagram that potentially exposed users’ private content to nefarious actors. Indian bug...
Security researcher Ian Carroll has explained how he was able to exploit outdated Apache Airflow instances to find a series of vulnerabilities and collect more $13,000...
E-commerce platform Lazada has launched its first public bug bounty program with YesWeHack. The website, which was founded in Singapore but serves countries across Southeast Asia, is offering...
The US Cybersecurity and Infrastructure Security Agency (CISA) has launched its first federal civilian vulnerability disclosure policy (VDP) program in partnership with Bugcrowd. The federal government agency launched...
Up to a third of all security flaws reported to organizations with no vulnerability disclosure policy (VDP) are not being patched due to failings in the disclosure process,...
Last month, we caught up with the three friends – Ron Chan, ‘FileDescriptor’, and ‘EdOverflow’ – behind the ethical hacking video channel Reconless. With around 8,000 subscribers, Reconless is...
The US Department of Defense (DoD) has expanded its security vulnerability disclosure program (VDP) beyond its public-facing websites and web applications to encompass all publicly accessible...
Recent Comments