Integrate HackerOne directly into your website with Embedded Submissions
Receiving vulnerabilities has never been easier with the release of our newest integration: Embedded Submissions. What started with Email forwarding in 2017, is now being…
Month: May 2023
OWASP TOP 10: Sensitive Data Exposure
Update: The new OWASP Top 10 for 2021 proposed has grouped Sensitive Data Exposure with failures related to cryptography into a category called Cryptographic Failures.…
New Android & Google Device Vulnerability Reward Program
Google’s Device Vulnerability Reward Program helps the company identify security flaws in its operating system and devices. To promote additional security research in areas of…
Microsoft Cloud Scanning Inside of password-protected Zip
Threat actors have been evading in-built scanners in the cloud and local systems but archiving them as password-protected ZIP files. This makes it hard for…
Apple Thwarts $2 Billion in App Store Fraud, Rejects 1.7 Million App Submissions
May 18, 2023Ravie LakshmananMobile Security / App Sec Apple has announced that it prevented over $2 billion in potentially fraudulent transactions and rejected roughly 1.7…
AndoryuBot DDoS Botnet Targets Ruckus Wireless Products
Threat actors are exploiting a critical security vulnerability in Ruckus Wireless products, putting their users at risk, researchers found. Cyble Global Sensor Network (CGSI) has…
Shopify Awards $116,000 to Hackers in Canada: h1-514 Recap
Forty top hackers met in Montréal in mid-October to hack Canada-based Shopify. The commerce platform helps more than a half-million merchants spread across 90% of…
Sold Financial Info of Tens of Thousands
May 18, 2023Ravie LakshmananCyber Crime / Payment Security A U.S. national has pleaded guilty in a Missouri court to operating a darknet carding site and…
Ducktail Malware Used On HR And Marketing Managers: CRIL
Researchers have found instances of Ducktail malware used on HR and marketing managers, specifically those in managerial positions. Cybercriminals behind this operation have been attempting…
Security-focused Work Routine in 7 Steps
Security is not only a competitive edge, it’s a must. Companies will soon be compelled to implement a holistic security approach to keep up with…
OpenAI CEO concerned that ChatGPT could compromise US elections 2024
OpenAI CEO Sam Altman has expressed his concerns to the Senate that the use of AI without any limitations is a big cause for concern…
Critical Flaws in Cisco Small Business Switches Could Allow Remote Attacks
May 18, 2023Ravie LakshmananNetwork Security / Vulnerability Cisco has released updates to address a set of nine security flaws in its Small Business Series Switches…