Detectify security updates for 7 March
For continuous coverage, we push out major Detectify security updates every two weeks, keeping our tool up-to-date with new findings, features and improvements sourced from…
Category: Mix
LINE on Securing the Application Development Lifecycle with Bug Bounties
Based in Japan, LINE Corporation is dedicated to the mission of “Closing the Distance,” bringing together information, services and people. The LINE messaging app launched…
Serverless vs Cloud vs On-prem
Server architecture can differ in a lot of ways, but the three main categories would be on-prem, cloud and serverless. Some believe that cloud and…
5 Learnings From A Conversation With OP Financial Group’s CISO And @mrtuxracer
On 20 January, HackerOne’s CEO, Marten Mickos, sat down for a chat with European hacker, Julien Ahrens a.k.a @mrtuxracer, and Teemu Ylhäisi, CISO at OP…
Meet the Hacker: EdOverflow, motivated by community and knowledge sharing
EdOverflow is known for contributing a bunch of stuff: active in the community, one of the people behind security.txt – a standard for structuring responsible…
Announcing The Hacker of The Hill
We are excited to announce that we have partnered with TryHackMe to bring you Hacker Of The Hill (HoTH) on Saturday, February 20, 2021! This…
What are the different types of XSS?
Cross-site scripting (XSS) is a common vulnerability that is carried out when an attacker injects malicious JavaScript into a website, which then targets the website’s…
2020 Hacker Community Year in Review
Hackers are no stranger to finding creative ways to overcome obstacles, and 2020 presented numerous challenges for them to conquer. At HackerOne, we strive to…
Detectify opens US office in Boston to accelerate growth
Stockholm, Sweden & Boston, MA – Detectify, a Swedish domain and web application security company, is launching its US operations in Boston, Massachussets. The company…
Oracle Opera Pre-Auth RCE (CVE-2023-21932) – Assetnote
Summary An attacker can obtain the JNDI connection name through servlets that leak this information. Due to the weak hardcoded cryptography used by Oracle Opera,…
The Rise of Misconfiguration and Supply Chain Vulnerabilities
Singapore-based telecom firm, Singtel, revealed last week it had suffered a security breach as a result of relying on an unpatched legacy file sharing product.…
Detectify security updates for 21 March
For continuous coverage, we push out major Detectify security updates every two weeks, keeping our tool up-to-date with new findings, features and improvements sourced from…