The Journey in Data: HackerOne Hits 100 Million Dollars in Bounties
Yesterday, hackers on HackerOne hit a major milestone: they have earned a total of $100 million in bounties over the past 8 years, with nearly half…
Month: May 2023
OWASP TOP 10: Insecure Deserialization
Update: Insecure Deserialization is proposed to move into a new category in the OWASP Top 10 2021 called Software and Data Integrity Failures. Insecure Deserialization…
There is no room for racism or inequality here.
The merciless killing by police of George Floyd laid bare, once again, the institutionalized racism that plagues the USA. It is worse than racism. What…
Inside the mind of a black-hat hacker
What does a black-hat hacker look like? The word probably conjures up a picture of a hoodie-wearing computer genius hacking away in a dark room.…
Google and Apple cooperate to address unwanted tracking
Google and Apple want to create a specification for tech that alerts users when they’re being tracked by AirTags and similar devices. Google and Apple…
Microsoft vs Google spat sees users rolling back security updates to fix browser issues
We take a look at trouble brewing in browser land after a controversial Windows update leaves Chrome fans without a useful feature. We like to…
Crowdsourcing Racial Justice and Equality
Black Lives Matter. During this time, I find myself with a mix of emotions that makes it difficult to focus. Over the past week, we…
Strengths and Vulnerabilities of AI Applications to Health Care
By Edward Maule, Chief Information Officer and Chief Information Security Officer at Advocare, LLC Artificial intelligence (AI) has made significant advancements in the healthcare sector,…
Risto Siilasmaa: “We have to assume that the bad guys will get in”
Risto Siilasmaa is a pioneer in IT security and one of Detectify’s early investors. He is well-known for founding the Finnish IT security company F-Secure…
h1-2006 CTF | HackerOne
Hello hackers! Thanks to all of you who participated in our #h1-2006 CTF! We had a lot of fun building it, and it looks like many…
OWASP TOP 10: Insufficient Logging and Monitoring
Insufficient Logging and Monitoring is one of the categories on OWASP‘s Top 10 list and covers the lack of best practices that should be in…
How does Pentesting fit into your overall security strategy?
Digital transformation has proven that every business is now a software business. In fact, using digital technology to create new business methods, ideas, and experiences…