The AI Attack Surface Map v1.0
This resource is a first thrust at a framework for thinking about how to attack AI systems. At the time...
Read more →Category: Mix
FanDuel’s Liam Somerville on Prioritising Researchers as an Extension of the Security Team
The next time your friend of colleague goes on about their fantasy league, remember it’s more than just a game....
Read more →
How to identify a phishing email
A phishing email that supposedly comes from Telia, a mobile network operator, has recently been doing the rounds in Sweden....
Read more →
Meet the team: Johan Norrman – From building code to building teams to building companies
Johan Norrman is a proper IT veteran. He has always found companies in the early stages of development exciting, so...
Read more →
HackerOne Hosts Rails Girls in Groningen
“Give a (wo)man a fish and you feed them for a day;teach a (wo)man how to fish and you feed...
Read more →
3 quick questions with Security Awards nominee Jonatan Haltorp
Security Awards is a yearly event arranged by the Swedish publication Skydd och Säkerhet, where the aim is to highlight...
Read more →
Five years of the GitHub Bug Bounty program
This blog was written by GitHub’s Engineering Team and originally published here. GitHub launched our Security Bug Bounty program in 2014,...
Read more →
The danger of disabling automatic updates on WordPress
As soon as WordPress launch a new version they publish a changelog on their website where you can find what...
Read more →
Design the next HackerOne T-Shirt
What’s your favorite T-shirt? Maybe one from that conference you went to 5 years ago, a sleek threadless tee, or...
Read more →
CDNs – Minimize damages if the CDN is hacked
Many are most likely already familiar with CDNs, Content Delivery Networks, but in short, a CDN is a service where...
Read more →
Introducing Hacker Task Manager and Statistics
Continuous improvement is at our heart, and the Hacker Dashboard is an excellent example of how we’ve been iterating based...
Read more →![[Alert] Critical authentication bypass + privilege escalation exploit in Joomla](https://cybernoz.com/wp-content/uploads/2023/05/Alert-Critical-authentication-bypass-privilege-escalation-exploit-in-Joomla.png "[Alert] Critical authentication bypass + privilege escalation exploit in Joomla 15")
[Alert] Critical authentication bypass + privilege escalation exploit in Joomla
A critical authentication bypass and privilege escalation exploit has been discovered by Melvin Lammerts. The exploit affects all Joomla versions from 3.4.4...
Read more →