Atomic macOS Malware Steals Auto-fills, Passwords & Cookies
Recently, the cybersecurity researchers at Cyble discovered a new macOS malware, ‘Atomic’ (aka ‘AMOS’), sold for $1,000/month on private Telegram channels. Buyers pay a high…
Month: April 2023
What is Vulnerability Scanning? [And How to Do It Right]
Wondering what vulnerability scanning is? We will explain how it works, why you need to do it, and how to do it right. What is…
Karim Rahal: Security Features of Firefox
Karim Rahal, Detectify Crowdsource hacker, is a 17-year-old web-hacker who has been hacking for the greater part of his teenager years. At age 13, he…
HackerOne in DevSecOps | HackerOne
I’m not going to define DevSecOps in yet another blog post. There are plenty of great resources for that. I do want to set the…
vBulletin RCE CVE-2019-16759 exploited in the wild, to Detectify
Detectify now has a built-in detection for vBulletin RCE CVE-2019-16759, thanks to a report from our Crowdsource community. Last week, a proof-of-concept exploit for a…
Bug Bounty vs. Penetration Testing: Differences Explained
What is the Difference Between Bug Bounties and Penetration Testing? Organizations offer ongoing bug bounties to freelance ethical hackers to discover security vulnerabilities. Alternatively, penetration testing…
Meet the team: Johanna Ydergård – Scaling the impact of ethical hackers
Head of Crowdsource, Johanna Ydergård, joined Detectify to work on solving the information gap in cybersecurity by scaling the knowledge of ethical hackers and helping…
Heads Up Hackers: An Update from Our Mediation Team
Evolving the HackerOne Support Experience We are excited to announce that, after many years of using ZenDesk as a Support ticketing tool, HackerOne is moving…
Cybersecurity Awareness Month – 5 tips for safe browsing
October is Cyber Security Awareness month, and a good time for organizations and anyone who uses the Internet (yes that means everyone) to review security…
Heads Up Hackers: An Update from Our Mediation Team
Evolving the HackerOne Support Experience We are excited to announce that, after many years of using ZenDesk as a Support ticketing tool, HackerOne is moving…
New security test: CVE-2019-11043 PHP-FPM & NGINX RCE
tl;dr – CVE-2019-11043 PHP-FPM & NGINX RCE was publicly disclosed and a Proof-of-Concept exploit code was made available on GitHub. We received the report from…
Bug Bounty vs. CTF [Understanding Differences & Benefits]
What Are the Differences Between a Bug Bounty and CTF? A bug bounty is a financial reward a company offers to ethical hackers for discovering…