How an MFA Bypass Led to Account Takeover [Plus 11 Authentication Tips]
Many Facets, One Goal A common trope in cybersecurity is “don’t roll your own auth.” There’s a reason for this: implementing...
Read more →News Archive
View All →
PayPal to pay $2 million settlement over 2022 data breach
New York State has announced a $2,000,000 settlement with PayPal over charges it failed to comply with the state’s cybersecurity regulations,...
Read more →
5 Insights Attendees Gained from the Security@ World Tour
If you weren’t lucky enough to catch us at a roadshow event, you’ll be delighted to know you can catch...
Read more →
Subaru Starlink flaw allowed experts to remotely hack cars
Subaru Starlink flaw allowed experts to remotely hack cars Pierluigi Paganini January 25, 2025 Subaru Starlink flaw exposed vehicles and...
Read more →
Network and Information Systems Directive (NIS2) Compliance: What You Need to Know
This blog will break down the NIS2 Directive drawing information from the original directive briefing published by the European Parliament...
Read more →
Why Retail and E-commerce Organizations Trust Security Researchers During the Holiday Shopping Season
Retail and e-commerce organizations are major targets this time of year, which is why proactive security testing is essential to...
Read more →
UnitedHealth Group’s Massive Data Breach Impacts 190 Million Americans
UnitedHealth Group has confirmed that a ransomware attack targeted its subsidiary, Change Healthcare, in February 2024, impacting 190 million Americans....
Read more →
Participants in the Pwn2Own Automotive 2025 earned $886,250
Participants in the Pwn2Own Automotive 2025 earned $886,250 Pierluigi Paganini January 25, 2025 The Pwn2Own Automotive 2025 hacking contest has...
Read more →
Is Your Security Ready For Bug Bounty? [5 Questions]
1. Are You Prepared to Manage Incoming Vulnerability Reports? Naturally, the purpose of running a bug bounty program is to...
Read more →
Hai’s Latest Evolution: Intelligence, Context, and More Intuitive UX
Transforming Security Program Management: A Day with Hai Picture this: It’s Monday morning, and your dashboard shows fifteen new vulnerability...
Read more →
The Frontier of Security: Safeguarding Non-Human Identities
Dropbox, Microsoft, Okta – not only are these all major software companies, but each of them has fallen victim to...
Read more →
Harnessing the Working Genius for Team Success
Employees at HackerOne utilize the Working Genius model, which provides individuals and teams with a straightforward, practical, and effective framework...
Read more →