Bug Bytes #198 – Hackers go to RSA/BSides and CPanel gets pwned
Bug Bytes is a weekly newsletter curated by members of the bug bounty community. The second series is curated by...
Read more →Category: Mix
HackerOne Expands Integrations Ecosystem to Connect and Defend Customers
Revealed at Security@, HackerOne adds PagerDuty, ServiceNow, Splunk, SumoLogic to advance workflows HackerOne, the world’s most trusted hacker-powered security platform,...
Read more →
9 biggest web security news of 2018
The year started off with a bang as the research of Meltdown and Spectre rendered almost all computing devices to...
Read more →
Organizations Paid Hackers $23.5 Million for These 10 Vulnerabilities in One Year
In times of uncertainty, security becomes an ever more pressing priority. The stakes are high: organizations are more reliant on...
Read more →
Detectify Year in Review 2018
It’s been a great year for Detectify and there’s a lot that’s happened for us as we continue to grow...
Read more →
Snap’s Security Team on Nearly 6 Years of Collaborating with Hackers
As a popular camera and messaging platform, Snapchat is responsible for properly handling data for 249 million users daily. The...
Read more →
Meet the Hacker: europa: “I always trust my gut when I get the feeling that something is there”
Meet the hacker europa, a white hat hacker on the Detectify Crowdsource platform. He is based in Italy with a...
Read more →
NIST Overhauls “Security and Privacy Controls” and Emphasizes VDP as a Best Practice
Back in 2005, the Computer Security Resource Center (CRSC) published NIST 800-53: the “Security and Privacy Controls for Information Systems...
Read more →
Detectify security updates for 10 January
For continuous coverage, we push out major Detectify security updates every two weeks, keeping our tool up-to-date with new findings,...
Read more →
HackerOne is Excited to Launch Triage Ratings for Customers and Hackers
For customers and hackers, the triage experience is central to hacker-powered security. Our triagers consist of a globally distributed team...
Read more →
What is server side request forgery (SSRF)?
Update: SSRF has been nominated in the new OWASP Top 10 of 2021. The list is currently pending peer reviews,...
Read more →
US Government Mandates Vulnerability Disclosure for IoT
This year has seen a rapid acceleration in the American government’s efforts to secure federal and state cyber infrastructure. This...
Read more →