Announcing the HackerOne API | HackerOne
We’re excited to announce the first version of our API is now available! The API augments the HackerOne interface to empower you to build the…
Month: May 2023
Discord Admins Hacked by Malicious Bookmarks – Krebs on Security
A number of Discord communities focused on cryptocurrency have been hacked this past month after their administrators were tricked into running malicious Javascript code disguised…
478,000 RaidForums members data leaked to a new hacker forum
A database that formerly belonged to the cybercrime platform known as RaidForums but has since been shut down has been exposed on a new hacker…
Barracuda Networks patches zero-day vulnerability in Email Security Gateway
Barracuda Networks issued a patch for a zero-day vulnerability in its Email Security Gateway that was actively being exploited On May 20, Barracuda Networks issued…
Badges of Honor | HackerOne
Now Hackers can earn even more on HackerOne! Introducing badges, now available on Hacker profiles in the badges sidebar. What are Badges? Badges are earned…
ASUS Vulnerability Disclosure Déjà vu
Two years after a settlement with the FTC, has ASUS still not learned how to receive vulnerability reports from hackers? Last February, the Taiwanese hardware…
Ransomware Takes No Prisoners – Cyber Defense Magazine
By Monica Oravcova, COO and Co-Founder of Naoris Protocol The recent Killnet cyberattack that disrupted contact between NATO and military aircraft providing aid to victims…
Reduce Healthcare Insider Threats with Identity and Access Management
By Zac Amos, Features Editor of ReHack Identity and access management (IAM) refers to the policies, procedures and technologies used to manage and control access…
Web3 Needs A Truly Decentralized Infrastructure That IPFS Alone Cannot Deliver
While IPFS provides a distributed file system, it falls short in addressing other critical aspects of Web3, such as decentralized governance and consensus mechanisms. Web3…
WordPress force installs critical Jetpack patch on 5 million sites
Automattic, the company behind the open-source WordPress content management system, has started force installing a security patch on millions of websites today to address a…
New Ways to Use HackerOne
We are on a mission to empower the world’s hackers and security teams to fix software vulnerabilities together. Since HackerOne was founded in 2012, our…
WordPress plugin ‘Gravity Forms’ vulnerable to PHP object injection
The premium WordPress plugin ‘Gravity Forms,’ currently used by over 930,000 websites, is vulnerable to unauthenticated PHP Object Injection. Gravity Forms is a custom form…