IT Security FAQ 5: What is White Hat vs Black Hat hacking? And what is a bug bounty hunter/program?
Comparing White Hat to Black Hat hacking is kind of like comparing the good guys to the bad guys. White Hat hackers look for vulnerabilities…
Category: Mix
The Hacker-Powered Security Report 2018
“Crowdsourced security testing is rapidly approaching critical mass, and ongoing adoption and uptake by buyers is expected to be rapid…” – Gartner Emerging Technology Analysis:…
How to Improve Your WordPress Security: Plugins and Themes
A clean WordPress installation is not much fun, but plugins and themes can have security issues that should not be ignored. In this blog post,…
Zomato’s First Anniversary with Bug Bounties: Q&A with Security Lead, Prateek Tiwari
Headquartered in India – restaurant discovery, online ordering and table reservations platform Zomato currently operates in 24 countries; including the United States, Australia, United Kingdom,…
WordPress Security – Detectify Blog
WordPress is amazing, we can’t argue with that. It’s efficient, powerful, and functional. However, given that it is the most popular Content Management System (CMS)…
Sumo Logic Penetration Testing Case Study
Secrecy has been a trademark of security culture for decades. Companies like cloud-based log management and analytics company Sumo Logic are choosing transparency. Subject to…
OWASP TOP 10: Injection – Detectify Blog
Update: Based on the OWASP Top 10 2021 proposed, injection now welcomes Cross-site Scripting (XSS) into the group. It’s no longer top of the OWASP…
Software Vulnerability Disclosure in Europe: Summary and Key Highlights of the European Parliament CEPS Task Force Report
In the autumn of 2017, the Centre for European Policy Studies (CEPS), a European Union think tank, initiated a task force to define guidelines around software…
Convince Your Client To Use Detectify
Want to offer your clients security and help them make their services safer with Detectify? That’s fantastic! Security is becoming increasingly important for businesses…
Improve Credential Sharing with Hacker Email Aliases
Starting today, all existing and new hackers get a personalized email alias tied to their account, in the form of username[at]wearehackerone[dot]com. Any emails sent to…
IT Security FAQ 6: What CMS is the most vulnerable?
A CMS is a Content Management System used to create, manage and organize content on a web sites or web services. One of the most…
Oath Bug Bounty Program Update: $1M in payouts and expansion of the program
This blog was written by Oath CISO and Paranoid in Chief Chris Nims and originally published on Oath.com. A little more than three months ago, we…