Webinar: Bug Bounty Q&A
Webinar: Bug Bounty Q&A Source link
Month: March 2023
Adobe Acrobat Sign abused to push Redline info-stealing malware
Cybercriminals are abusing Adobe Acrobat Sign, an online document signing service, to distribute info-stealing malware to unsuspecting users. The service is being abused to send…
Penetration Testing with Kali Linux 2023 released: New modules, exercises, challenges (PEN-200)
OffSec released the 2023 edition of Penetration Testing with Kali Linux (PEN-200). This new version, which incorporates the latest ethical hacking tools and techniques through…
Vallance review advocates light-touch regulation for emerging technologies
The government has accepted in full the recommendations of a report by its outgoing chief scientific adviser, Patrick Vallance, into the regulation of emerging technologies…
[CVE-2022-44268] Arbitrary Remote Leak via ImageMagick
HackerOne disclosed a bug submitted by mikkocarreon: https://hackerone.com/reports/1858574 – Bounty: $25000 Source link
Latitude cyberattack leads to data theft at two service providers
Latitude Financial Services (Latitude) has disclosed a data breach after suffering a cyberattack, causing the company to shut down internal and customer-facing systems. Latitude is…
Salt Security and Guild Education
Salt Security, the API security company, is working with Guild Education, the leader in opportunity creation for America’s workforce, to implement the Salt Security API…
Senator Warner on the Restrict Act and a US TikTok Ban
In the future, it might be a new mobile game or an algorithm helping students study at home. It could be the latest graphics card…
Crypto exchange Fiatusdt leaked trove of users KYC data
The server was exposed to the public without any password or security authentication, allowing access to tens of thousands of passport and ID card copies.…
Analysis: Where Next As Europol Hails Rare DoppelPaymer Ransomware Success
[ This article was originally published here ] By John E. Dunn Two arrests for alleged ransomware crimes and some useful intel. But will the…
Chinese and Russian Hackers Using SILKLOADER Malware to Evade Detection
Threat activity clusters affiliated with the Chinese and Russian cybercriminal ecosystems have been observed using a new piece of malware that’s designed to load Cobalt…
BEC attacks doubled in 2022, outstripping ransomware
The volume of Business Email Compromise (BEC) attacks doubled during the course of 2022 thanks to several high-profile and successful phishing campaigns, replacing ransomware as…