Connect with us
An CRSF-to-stored-XSS security bug plagues 50,000 ‘Contact Form 7’ Style users. A security bug in Contact Form 7 Style, a WordPress plugin installed on over 50,000...
The US Defense Advanced Research Projects Agency (DARPA) has reported back on its first ever security bug bounty program, saying the scheme has highlighted strengths as well as...
A researcher detailed how he chained a series of vulnerabilities to achieve remote code execution (RCE) on an Amazon Kindle e-reader. Researcher Yogev Bar-On, of Readlmode Labs, who...
INTERVIEW Ranking among the top 10 hackers on bug bounty platform YesWeHack’s all-time leaderboard, Raphaël Arrouas’ methodologies will be of interest to security researchers of all abilities. Arrouas,...
Opening a website with an embedded YouTube video potentially allowed miscreants to access a user’s viewing history, favorites, and playlists. The security bug – which earned...
A vulnerability in music-recognition app Shazam could allow an attacker to steal a user’s precise location data using a single malicious URL. UK security researcher Ash...
Security researchers have earned a $50,000 bug bounty after uncovering a critical flaw in Apple’s travel portal. Rahul Maini and Harsh Jaiswal were able to achieve remote code execution (RCE)...
Bug bounty platform Intigriti has partnered with the European Commission to launch a new vulnerability rewards program for Matrix, the open source secure communication tool. Belgium-based...
A security researcher has netted $30,000 in bug bounties after demonstrating how to create hidden posts on any Facebook page without authorization – before promptly bypassing...
A researcher who noted that using the “People Nearby” feature of popular messaging app Telegram exposed the exact location of the user has been told that...
Recent Comments