Artwork by https://www.instagram.com/laracallejaillustrations/ Greetings! In this post I plan to outline some changes I’ve made to bugbountyhunter since launch and…
Automattic, the company behind the WordPress content management system, is force installing a security update on hundreds of thousands of…
In one sense, today’s US congressional hearing on TikTok was a big success: It revealed, over five hours, how desperately…
Researchers have discovered a new possible post-exploitation attack mechanism in Okta that allows attackers to access users’ passwords and credentials…
Brivo expands its mobile credential options by introducing support for employee badges in Apple Wallet. Brivo corporate customers can enable…
After the arrest of the administrator of the Dark Web site BreachForums there was talk about keeping it alive, but…
Proof of concept BackgroundPreviously we discussed XSS, open redirect bugs and unrestricted file uploads. Today we will focus on email…
During the second day of Pwn2Own Vancouver 2023, competitors were awarded $475,000 after successfully exploiting 10 zero-days in multiple products….
GraphQL is a modern query language for Application Programming Interfaces (APIs). Supported by Facebook and the GraphQL Foundation, GraphQL grew…
A new variant of the BlackGuard stealer has been spotted in the wild, featuring new capabilities like USB propagation, persistence…
Ahead of TikTok CEO Shou Zi Chew’s much-anticipated testimony in the United States House of Representatives today, the embattled tech…
I love watching educational Youtube channels. It’s a great way to constantly keep myself exposed to science and technology. And…