Bugcrowd Security Flash – Spring4Shell: What It Is and How To Address It
Bugcrowd Security Flash – Spring4Shell: What It Is and How To Address It Source link
Month: March 2023
CISA now warns critical infrastructure of ransomware-vulnerable devices
Today, the U.S. Cybersecurity & Infrastructure Security Agency (CISA) announced a new pilot program to help critical infrastructure entities protect their information systems from ransomware…
This Plex vulnerability could cause the same damage to your company as it did to LastPass
The first problem is a high-severity vulnerability in Plex Media Server that has been tracked as CVE-2020-5741 and is defined as a deserialization issue. This…
“Brad Pitt,” a still body, ketchup, and a knife, or the best trick ever played on a romance scammer, with Becky Holmes: Lock and Code S04E06: Lock and Code S04E06
This week on Lock and Code, we speak with author and Twitter pro Becky Holmes about how she teases, fights, and shuts down online romance…
How to start bug bounty today?
How to start bug bounty today? Source link
NordVPN makes its Meshnet private tunnel free for everyone
NordVPN’s Meshnet private tunnel feature for Windows, macOS, and Linux is now free for everyone, even users who do not have a subscription to NordVPN.…
XSS With Hoisting – Brute XSS
When dealing with JavaScript injection scenarios sometimes we might get into a difficult situation: the target page is not meant to be accessed directly and…
New FortiOS bug used as zero-day to attack govt networks
Unknown attackers used zero-day exploits to abuse a new FortiOS bug patched this month in attacks targeting government and large organizations that have led to…
h@cktivitycon – Pizza Time (Web 750)
HackerOne just ran the online h@cktivity con and with it was a CTF. I spent 15 hours solving the big web challenge with the team…
CISA to warn critical infrastructure of ransomware-vulnerable devices
Today, the U.S. Cybersecurity & Infrastructure Security Agency (CISA) announced a new pilot program to help critical infrastructure entities protect their information systems from ransomware…
Introducing The Tech Leader Docs
A new resource for software development leaders by Victoria Drake. I’m launching a brand new paid newsletter on Substack focused on building, growing, and leading…
LA housing authority discloses data breach after ransomware attack
The Housing Authority of the City of Los Angeles (HACLA) is warning of a “data security event” after the LockBit ransomware gang targeted the organization…