New Threat Note From Royal
Days after the City of Dallas ransomware attack, the Royal ransomware group has threatened to release the personal information of thousands of city administration employees,…
Month: May 2023
OWASP TOP 10: Injection – Detectify Blog
Update: Based on the OWASP Top 10 2021 proposed, injection now welcomes Cross-site Scripting (XSS) into the group. It’s no longer top of the OWASP…
Global Concerns Rise As ChatGPT Security Incidents Increase
With the unprecedented growth and user base of ChatGPT comes the security concern associated with the chatbot. Hackers have been attacking and leaking account credentials…
Software Vulnerability Disclosure in Europe: Summary and Key Highlights of the European Parliament CEPS Task Force Report
In the autumn of 2017, the Centre for European Policy Studies (CEPS), a European Union think tank, initiated a task force to define guidelines around software…
Convince Your Client To Use Detectify
Want to offer your clients security and help them make their services safer with Detectify? That’s fantastic! Security is becoming increasingly important for businesses…
Samsung Devices Under Active Exploitation! CISA Warns of Critical Flaw
May 20, 2023Ravie LakshmananMobile Security / Cyber Attack The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned of active exploitation of a medium-severity flaw affecting…
Improve Credential Sharing with Hacker Email Aliases
Starting today, all existing and new hackers get a personalized email alias tied to their account, in the form of username[at]wearehackerone[dot]com. Any emails sent to…
IT Security FAQ 6: What CMS is the most vulnerable?
A CMS is a Content Management System used to create, manage and organize content on a web sites or web services. One of the most…
KeePass Password Vulnerability Let Hackers Gain Master Password
KeePass, a widely used password manager application, is vulnerable to a security flaw that gives the threat actors ability to extract the master password from…
Oath Bug Bounty Program Update: $1M in payouts and expansion of the program
This blog was written by Oath CISO and Paranoid in Chief Chris Nims and originally published on Oath.com. A little more than three months ago, we…
OWASP Top 10 Vulnerabilities Explained
OWASP is a non-profit organization with the goal of improving the security of software and internet. They have put together a list of the ten…
Hacker-Powered Security Report 2018, 188 Facts
Another year, another Hacker-Powered Security Report! We pulled out 100 of the report’s top facts—and then added 18 more, since it’s 2018. See below for…