Misconfigured email servers open the door to spoofed emails from top domains
TL;DR, Missing SPF records are a common and long-standing security issue that puts sensitive information at risk. To get a...
Read more →Category: Mix
Security@ 2018: Sumo Logic’s CSO On Transparency and Using Hacker-Powered Pen Tests for Better Security and Complete Compliance
George Gerchow isn’t afraid to tell it like it is. As the CSO of Sumo Logic, he’s responsible for securing...
Read more →
IT Security FAQ: what should you do to protect yourself online? What is the number one everyday mistake people make?
There is a lot think about when it comes to security, but what is the one most important piece of advice...
Read more →
Security@ 2018: Oath, DoD Highlight Value in Bringing Bug Bounties to Life
Most hacker-powered security happens remotely, with digital messaging being the typical communication channel. There’s no brainstorming together with a whiteboard,...
Read more →
[Release] New dashboard, navigation and better support for unlimited scan profiles
Our next update is here! Two weeks ago we released the new scan profile overview to make it easier for...
Read more →
Integrate HackerOne directly into your website with Embedded Submissions
Receiving vulnerabilities has never been easier with the release of our newest integration: Embedded Submissions. What started with Email forwarding...
Read more →
OWASP TOP 10: Sensitive Data Exposure
Update: The new OWASP Top 10 for 2021 proposed has grouped Sensitive Data Exposure with failures related to cryptography into...
Read more →
Shopify Awards $116,000 to Hackers in Canada: h1-514 Recap
Forty top hackers met in Montréal in mid-October to hack Canada-based Shopify. The commerce platform helps more than a half-million...
Read more →
Security-focused Work Routine in 7 Steps
Security is not only a competitive edge, it’s a must. Companies will soon be compelled to implement a holistic security...
Read more →![[tl;dr sec] #181 - Awesome CloudSec Labs, Red Team Infra in 2023, Privilege Escalation in EKS](https://cybernoz.com/wp-content/uploads/2023/05/tldr-sec-181-Awesome-CloudSec-Labs-Red-Team-Infra-scaled.jpg "[tl;dr sec] #182 - Cloud Native Security Talks, AI Attack Surface Map, Attacking and securing cloud identities in managed Kubernetes 16")
[tl;dr sec] #182 – Cloud Native Security Talks, AI Attack Surface Map, Attacking and securing cloud identities in managed Kubernetes
Hey there, I hope you’ve been doing well! 📢 ICYMI AppOmni recently released a free tool that can evaluate your...
Read more →
Hacker101 CTF++: Find flags, get private bug bounty program invitations
Hacker101 CTF++ Three months ago, we introduced the Hacker101 CTF: A fresh new way to apply your hacking skills to...
Read more →
OWASP TOP 10: Missing Function Level Access Control
Missing Function Level Access Control is one of the vulnerabilities on OWASP’s Top 10 list and occurs when authentication checks in...
Read more →