What are the different types of XSS?
Cross-site scripting (XSS) is a common vulnerability that is carried out when an attacker injects malicious JavaScript into a website, which then targets the website’s…
Month: May 2023
2020 Hacker Community Year in Review
Hackers are no stranger to finding creative ways to overcome obstacles, and 2020 presented numerous challenges for them to conquer. At HackerOne, we strive to…
How to protect your small business from social engineering
Small businesses are frequent targets of social engineering. Here’s what it is and how to protect against it. When Alvin Staffin received an email from…
Detectify opens US office in Boston to accelerate growth
Stockholm, Sweden & Boston, MA – Detectify, a Swedish domain and web application security company, is launching its US operations in Boston, Massachussets. The company…
You’re already using the last version of Windows 10
The current version of Windows 10, version 22H2, will be the last edition of the operating system (OS). Microsoft issued a client roadmap update on Thursday…
Oracle Opera Pre-Auth RCE (CVE-2023-21932) – Assetnote
Summary An attacker can obtain the JNDI connection name through servlets that leak this information. Due to the weak hardcoded cryptography used by Oracle Opera,…
How Hacker stole $300K in bitcoins from Russian government wallet & donate them to Ukraine
In the mostly uncontrolled realm of cryptocurrencies, hacking must not be a relatively rare occurrence, right? Hackers have been successful in stealing millions of dollars worth…
Enhancing Productivity with ChatGPT-Powered Wondershare PDFelement
AI technology, particularly ChatGPT, has rapidly gained traction in various industries due to its ability to provide efficient and personalized solutions. With advancements in natural…
The Rise of Misconfiguration and Supply Chain Vulnerabilities
Singapore-based telecom firm, Singtel, revealed last week it had suffered a security breach as a result of relying on an unpatched legacy file sharing product.…
Detectify security updates for 21 March
For continuous coverage, we push out major Detectify security updates every two weeks, keeping our tool up-to-date with new findings, features and improvements sourced from…
Twitter outage logs you out and won’t let you back in
A Twitter outage has logged many users out of the website and prevents them from logging back into the site. At approximately 3:45 PM ET,…
Apple’s first Rapid Security Response patch fails to install on iPhones
Apple has launched the first Rapid Security Response (RSR) patches for iOS 16.4.1 and macOS 13.3.1 devices, with some users having issues installing them on their…