GitLab’s Brian Neel on Secure Software Development and Bug Bounties
Did you miss our webinar with GitLab, Innovating Faster Without Sacrificing Security or Quality? It is jam packed with insights into how they partner with…
Author: Cybernoz
ChatGPT CEO May Leave Europe
In response to the future artificial intelligence (AI) restrictions by the European Union, OpenAI CEO Sam Altman stated that the maker of ChatGPT may think…
The Pan-African Event For Innovation And Networking
On August 1-2, 2023, Cybertech is coming to the Kigali Convention Center in Kigali, Rwanda, in partnership with Rwanda’s National Cyber Security Authority, Rwanda Convention…
The $30,000 Gem: Part 1
Opening your database to the world is a scary thought! But that’s exactly what we wanted to do by implementing a GraphQL endpoint. Feeling stuck…
It’s Phab-tastic! HackerOne integrates with Phabricator
Like many companies in Silicon Valley, we at HackerOne believe in using what we build. (This is sometimes referred to as eating your own dog…
Server-Side Request Forgery – SSRF Security Testing
Server-Side Request Forgery, SSRF for short, is a vulnerability class that describes the behavior of a server making a request that’s under the attacker’s control.…
ChatGPT & Bing – Indirect Prompt-Injection Attacks
SYDNEY makes a return, but this time in a different way. Following Microsoft’s decision to discontinue its turbulent Bing chatbot’s alter ego, devoted followers of…
GitHub Embraces Hacker-Powered Security To Protect 55 Million Projects
We recently published The GitHub Bug Bounty Story and couldn’t be more excited to share it with you! TL;DR: Their lead security engineer summarizes the…
Getting to know the HackerOne triage team with Zach Dando
If triaging vulnerability reports was a martial art, Zach Dando would be sensei master. Zach runs the triage team at HackerOne and we recently sat…
Zyxel patches two critical vulnerabilities
Zyxel has released a security advisory about two critical vulnerabilities that could allow an unauthorized, remote attacker to take control of its firewall devices. Zyxell…
The Hacker-Powered Security Report: Insights from Over 800 Programs
Did you know 94% of the Forbes Global 2000 do not have known vulnerability disclosure policies? It’s true, and the average amount paid out for…
Hack infosec guys infected packet capture file exploiting flaws in the software Wireshark
Wireshark is a network packet analyzer that is both open-source and free, and it is used by people all over the globe. When it comes…