3 Bug Bounty Lessons From Retail & eCommerce Customers
How do security vulnerabilities uniquely impact the retail and eCommerce space, and how can retail and eCommerce organizations use ethical hackers to mitigate risk? We…
Category: Mix
Top 10 AI Embarrassments to Avoid
Unlike traditional security flaws, which typically result in data breaches or service disruptions, AI systems can also cause embarrassment through errors in judgment, biased decision-making,…
CVE-2024-24919: Check Point’s Quantum Gateway comes under Attack as Hackers exploit Zero-Day Vulnerability
Active Exploits target Check Point Security Gateway Zero-Day Information Disclosure flaw Check Point Cybersecurity has issued hotfixes to address a zero-day vulnerability in its VPNs…
The Left’s Brexit
I think Trump’s conviction might be the American Left’s version of Brexit. First off, I think Trump is the worst president we’ve ever had by…
Five easy ways to hack GraphQL targets
GraphQL is a widely used query language that provides developers with the ability to query data easily. Unlike via a REST API, developers can send…
GDPR and Pentesting: What You Need to Know
Personal data, also referred to as PII (personally identifiable information) is any piece of data or information that can be used to identify a person.…
Placeholder Trick for Security Testing
최근에 저는 Burpsuite, Caido, ZAP을 모두 사용하고 있습니다. 기존 환경에서 Caido가 추가되었고, 여러가지를 실험중에 있습니다. 이 실험을 진행하면서 예상대로 돌아가지 않았던 것들이 많았지만 반대로 몇가지…
Embracing Resilience: HackerOne’s Approach to Disaster Recovery
So, What Is Disaster Recovery? In the dynamic world of tech, things can break – sometimes due to our actions, but it can also be…
5 Bug Bounty Insights From SIX Group
1. Why VDP and Bug Bounty? At SIX Group, Alex Hagenah emphasized the year-round success of going beyond the regulatory requirements of the financial services…
Don’t Security Engineer Asymmetric Workloads
This core idea can unfortunately be applied to the relationship between Security Engineers and their organizational partners! The primary result of sort of asymmetric workload…
HackerOne Spot Checks for On-Demand, Targeted Security Testing
Should teams prioritize conducting thorough security checks or accelerating product timelines? Striking a balance between these competing priorities is essential, as overlooking security measures can…
The critical role of VDPs in cybersecurity
Cybercrime is projected to cost global enterprises a staggering $10.5 trillion annually by 2025, meaning the importance of robust cybersecurity measures cannot be overstated. To…