Getting to know the HackerOne triage team with Zach Dando
If triaging vulnerability reports was a martial art, Zach Dando would be sensei master. Zach runs the triage team at HackerOne and we recently sat…
Month: May 2023
Zyxel patches two critical vulnerabilities
Zyxel has released a security advisory about two critical vulnerabilities that could allow an unauthorized, remote attacker to take control of its firewall devices. Zyxell…
The Hacker-Powered Security Report: Insights from Over 800 Programs
Did you know 94% of the Forbes Global 2000 do not have known vulnerability disclosure policies? It’s true, and the average amount paid out for…
Hack infosec guys infected packet capture file exploiting flaws in the software Wireshark
Wireshark is a network packet analyzer that is both open-source and free, and it is used by people all over the globe. When it comes…
New Cyber Threats Calls for New Approaches
By Mark Sincevich, Federal Director of Illumio Data compromises hit record numbers in 2021 with 1,826 occurrences reported, up 23 percent from 2017. In the…
HackerOne-sie – More than just epic swag
Swag means a lot to HackerOne (and to you, our hackers). It’s not just apparel and stickers. It’s a badge of honor. An invitation and…
The Week in Ransomware – May 26th 2023
Ransomware gangs continue to hammer local governments in attacks, taking down IT systems and disrupting city’s online services. Earlier this month, we saw that with…
Key Findings From The Hacker-Powered Security Report: It’s Not Just For Tech (1 of 6)
This is the first in a six-part series expanding on the “key findings” of the Hacker-Powered Security Report 2017. Based on data gathered from over…
Microsoft Defender Antivirus gets ‘performance mode’ for Dev Drives
Microsoft has introduced a new Microsoft Defender capability named “performance mode” for developers on Windows 11, tuned to reduce the impact of antivirus scans when…
Gaming Firms and Community Members Hit by Dark Frost Botnet
Researchers believe Dark Frost was created using stolen/leaked source code from Qbot, Gafgyt, and Mirai malware to carry out DDoS attacks. Web infrastructure company Akamai’s…
Your Grab public bug bounty program is arriving now
Any hackers out there ever hunt for bugs on your mobile phone while riding in a car? Well, now our thousands of hackers in Southeast…
Mirai Malware Hits Zyxel Devices After Command Injection Bug
Zyxel informed its customers about the security flaw on 25 April 2023 and announced patches for impacted firewalls, which included USG Flex, ATP, ZyWALL/USG, and…