Do you trust your cache? – Web Cache Poisoning explained
As we are all currently confined to a life at home during the pandemic, it has become more important than ever that our favorite web…
Category: Mix
Vulnerability Remediation | A Step-by-Step Guide
What Is Vulnerability Remediation? Vulnerability remediation is the process of addressing system security weaknesses. The steps include the following: Discover: Identify vulnerabilities through testing…
Navigating a Safe, Successful Return to Office: 5 Tips for Security Leaders
Fortunately, for security leaders and their colleagues in IT charged with executing digital transformations, their relationships with executive management are stronger than ever. As a…
How to reduce your attack surface
In a fast-paced tech environment, the potential attack surface increases with each release. Tech companies can no longer only safeguard themselves with a firewall alone…
Bug Bounty Benefits | Why You Need a Bug Bounty Program
What Are the Benefits of Bug Bounties? A bug bounty program is a cost-effective way for an organization to pinpoint security risks and vulnerabilities. The…
How secure is the PDF file?
Portable Document Format (PDF), is this secure or is it something to be suspicious about upon receiving? Jens Müller gave a convincing talk at Black…
How Trustpilot Manages Risk by Working with Ethical Hackers
Trustpilot, a cloud-first company with little physical infrastructure, relies on external security testing to ensure its products are resilient to cyberattacks. During a Fireside Chat,…
Detectify security updates for 4 September
Our Crowdsource ethical hacker community has been busy sending us security updates, including 0-day research. For continuous coverage, we push out major Detectify security updates…
What’s a Vulnerability Disclosure Program & Do You Need One?
What Is a Vulnerability Disclosure Program? A VDP is a structured method for anyone to report vulnerabilities. VDPs should include a process for receiving a…
DevSecOps: Bridging the Gap Between Security and Development
At HackerOne’s recent 2021 Security@ conference, we spoke to Mike Hanley, CSO at GitHub. As a company that prizes security while serving tens of millions…
Detectify releases new and improved integrations
Integrations are intended to make work and the flow of information smoother. In our case, the integrations expedite critical vulnerability information found by Detectify to…
[tl;dr sec] #179 – BSidesSF Summaries, Attacking Kubernetes, OpenAI + Burp Suite
Hey there, I hope you’ve been doing well! Conference Montage I have some amusing anecdotes from BSidesSF and RSA that I want to share, but…