Top Ten Bug Bounty Payouts of 2018
http://bit.ly/2LUJ23T
Submitted January 03, 2019 at 05:32PM by KeyDutch
via reddit http://bit.ly/2BXSlLv
http://bit.ly/2LUJ23T
Submitted January 03, 2019 at 05:32PM by KeyDutch
via reddit http://bit.ly/2BXSlLv
Htbridge
Top Ten Bug Bounty Payouts of 2018
Which companies were paying the most generous bounties via crowd security testing platforms in 2018?...
Super Cheap Unlimited Lifetime VPN Subnoscription Might Be a Terrible Idea
http://bit.ly/2BWnXBu
Submitted January 03, 2019 at 05:51PM by Slow_Brief
via reddit http://bit.ly/2R5sv2I
http://bit.ly/2BWnXBu
Submitted January 03, 2019 at 05:51PM by Slow_Brief
via reddit http://bit.ly/2R5sv2I
Surfshark
Super Cheap Unlimited Lifetime VPN Subnoscription Might Be a Terrible Idea (updated) - Surfshark
'Unlimited' and 'lifetime' VPN deals are tempting. Marketers are well-aware of the value proposition presented by such contracts, thus it’s difficult to argue against.
Security of Ethereum smart contracts, focusing on solidity
http://bit.ly/2F5i7AI
Submitted January 03, 2019 at 06:22PM by judit_k
via reddit http://bit.ly/2Qm4Y8z
http://bit.ly/2F5i7AI
Submitted January 03, 2019 at 06:22PM by judit_k
via reddit http://bit.ly/2Qm4Y8z
Avatao
Smart Contract Security
Blockchain-based platforms are becoming increasingly popular due to their ability to maintain a public distributed ledger, providing reliability, integrity, and...
Exploiting the Math.expm1 typing bug in V8
http://bit.ly/2AnQjEA
Submitted January 03, 2019 at 07:33PM by toastedstrawberry
via reddit http://bit.ly/2R8HB7G
http://bit.ly/2AnQjEA
Submitted January 03, 2019 at 07:33PM by toastedstrawberry
via reddit http://bit.ly/2R8HB7G
0x41414141 in ?? ()
Exploiting the Math.expm1 typing bug in V8
Minus zero behaves like zero, right?
RCE on the Marvell Avanstar Wifi chip SoC used in Playstations, Xbox, Surfaces, Chromebooks, Samsung phones and more
http://bit.ly/2BToWlM
Submitted January 03, 2019 at 09:04PM by eagle2120
via reddit http://bit.ly/2Fahp5x
http://bit.ly/2BToWlM
Submitted January 03, 2019 at 09:04PM by eagle2120
via reddit http://bit.ly/2Fahp5x
Yet Another S3 Leak: 3,000 PAN cards and National ID (Aadhaar) cards from India
http://bit.ly/2Vtju1N
Submitted January 03, 2019 at 09:54PM by xxdesmus
via reddit http://bit.ly/2s61SMf
http://bit.ly/2Vtju1N
Submitted January 03, 2019 at 09:54PM by xxdesmus
via reddit http://bit.ly/2s61SMf
Rainbowtabl.es
S3 Leak: 3,000 PAN cards and National ID (Aadhaar) cards from India
In the normal course of scanning for open/exposed/vulnerable Amazon S3 buckets, I discovered a bucket containing 3,000 Permanent Account Number (PAN) cards and National ID (Aadhaar) cards from India.
hackxor - web application hacking challenges
https://hackxor.net/
Submitted January 03, 2019 at 09:51PM by albinowax
via reddit http://bit.ly/2TsuP0y
https://hackxor.net/
Submitted January 03, 2019 at 09:51PM by albinowax
via reddit http://bit.ly/2TsuP0y
reddit
r/netsec - hackxor - web application hacking challenges
3 votes and 1 comment so far on Reddit
I'm also interested in hearing your horror stories
http://bit.ly/2TojRcc
Submitted January 03, 2019 at 09:51PM by DFNIckS
via reddit http://bit.ly/2CM1kB8
http://bit.ly/2TojRcc
Submitted January 03, 2019 at 09:51PM by DFNIckS
via reddit http://bit.ly/2CM1kB8
reddit
r/cybersecurity - I Am Looking For Your Cybersecurity Horror Stories
12 votes and 4 comments so far on Reddit
Exploiting JNDI Injections in Java
https://vera.cd/2VzClZo
Submitted January 03, 2019 at 11:18PM by artsploit
via reddit http://bit.ly/2QibFsh
https://vera.cd/2VzClZo
Submitted January 03, 2019 at 11:18PM by artsploit
via reddit http://bit.ly/2QibFsh
Veracode
Exploiting JNDI Injections in Java
Java Naming and Directory Interface (JNDI) is a Java API that allows clients to discover and look up data and objects via a name. These objects can be stored in different naming or directory services, such as Remote Method Invocation (RMI), Common Object…
Best CISSP Certification Training Courses & Bootcamps (Updated 2019)
http://bit.ly/2C2hRQ6
Submitted January 04, 2019 at 12:04AM by eyyamgudeer
via reddit http://bit.ly/2RpuBtJ
http://bit.ly/2C2hRQ6
Submitted January 04, 2019 at 12:04AM by eyyamgudeer
via reddit http://bit.ly/2RpuBtJ
Courses Buddy
Best CISSP Certification Training Courses & Bootcamps (Updated 2019) – Courses Buddy
CISSP candidates? Well, hello! We have compiled the best CISSP certification training courses. Free and best paid courses and reviews here.
Spyware Disguises as Android Applications on Google Play
http://bit.ly/2LPWzcC
Submitted January 04, 2019 at 12:00AM by EvanConover
via reddit http://bit.ly/2AsOwhA
http://bit.ly/2LPWzcC
Submitted January 04, 2019 at 12:00AM by EvanConover
via reddit http://bit.ly/2AsOwhA
Trendmicro
Spyware Disguises as Android Applications on Google Play - TrendLabs Security Intelligence Blog
Recently discovered spyware disguises itself as legitimate Android applications to gather information from Google Play users.
Hackers Threaten to Release 9/11 Insurance Documents
http://bit.ly/2C33QkS
Submitted January 04, 2019 at 12:50AM by Fantastic_Fix
via reddit http://bit.ly/2BWomDY
http://bit.ly/2C33QkS
Submitted January 04, 2019 at 12:50AM by Fantastic_Fix
via reddit http://bit.ly/2BWomDY
InfoSec-IT
Hackers Threaten to Release 9/11 Insurance Documents | InfoSec-IT
Hackers are threatening to release documents in relation to the 9/11 attacks, which relate to insurance claims and other secret documentation.
Inter-application vulnerabilities and HTTP header issues - my summary of 2018 in Bug Bounty programs
http://bit.ly/2R4kMBS
Submitted January 04, 2019 at 03:01AM by Keeseeel
via reddit http://bit.ly/2F5Ag27
http://bit.ly/2R4kMBS
Submitted January 04, 2019 at 03:01AM by Keeseeel
via reddit http://bit.ly/2F5Ag27
Medium
Inter-application vulnerabilities and HTTP header issues. My summary of 2018 in Bug Bounty programs.
In 2018 I managed to report 27 unique vulnerabilities in web apps of well-known companies. I’m sharing my thoughts on the reported…
It Appears China is Building a Massive Espionage Database on America
http://bit.ly/2CMdRVn
Submitted January 04, 2019 at 02:58AM by danielrm26
via reddit http://bit.ly/2GRoV7u
http://bit.ly/2CMdRVn
Submitted January 04, 2019 at 02:58AM by danielrm26
via reddit http://bit.ly/2GRoV7u
Daniel Miessler
It Appears China is Building a Massive Espionage Database on America | Daniel Miessler
I've mentioned this in numerous places for the last few years, so I decided it was time to finally put it into a formal piece. It seems obvious at this
Adobe patches two critical vulnerabilities [CVE-2018-16011/CVE-2018-19725]
https://adobe.ly/2GViWyT
Submitted January 04, 2019 at 11:26AM by Dormidera
via reddit http://bit.ly/2QjJbOF
https://adobe.ly/2GViWyT
Submitted January 04, 2019 at 11:26AM by Dormidera
via reddit http://bit.ly/2QjJbOF
Adobe
Adobe Security Bulletin
Security Bulletin for Adobe Acrobat and Reader | APSB19-02
Open redirects - the vulnerability class no one but attackers cares about
http://bit.ly/2At9IUw
Submitted January 04, 2019 at 09:06AM by steven-tabernacle
via reddit http://bit.ly/2LP8PKy
http://bit.ly/2At9IUw
Submitted January 04, 2019 at 09:06AM by steven-tabernacle
via reddit http://bit.ly/2LP8PKy
stevetabernacle.github.io
Open redirects - the vulnerability class no one but attackers cares about - Steve Tabernacle
NIST CSRC is down due to shutdown
https://csrc.nist.gov/
Submitted January 04, 2019 at 06:55AM by ejmart1n
via reddit http://bit.ly/2BX15BQ
https://csrc.nist.gov/
Submitted January 04, 2019 at 06:55AM by ejmart1n
via reddit http://bit.ly/2BX15BQ
csrc.nist.gov
NIST Computer Security Resource Center | CSRC
CSRC provides access to NIST's cybersecurity- and information security-related projects, publications, news and events.
A Summary of Planned Improvements to the Security of the PHP Ecosystem (and Beyond) for 2019
http://bit.ly/2F6iRpm
Submitted January 04, 2019 at 01:27PM by sarciszewski
via reddit http://bit.ly/2s9Ieif
http://bit.ly/2F6iRpm
Submitted January 04, 2019 at 01:27PM by sarciszewski
via reddit http://bit.ly/2s9Ieif
Paragonie
Our PHP Security Roadmap for the Year 2019 - Paragon Initiative Enterprises Blog
We have a lot of work ahead of us in 2019, and we hope it benefits the entire PHP community
Discovering and Hacking IoT Devices Using Web-Based Attacks
http://bit.ly/2VnvoKR
Submitted January 04, 2019 at 01:26PM by ziyahanalbeniz
via reddit http://bit.ly/2LNNscJ
http://bit.ly/2VnvoKR
Submitted January 04, 2019 at 01:26PM by ziyahanalbeniz
via reddit http://bit.ly/2LNNscJ
Netsparker
Discovering and Hacking IoT Devices Using Web-Based Attacks
This article discusses recent university level research on web-based attacks involving the discovery, hacking and remote control of Internet of Things (IoT) devices. We examine the duration and phases of these attacks, and conclude by suggesting some web…
Major hack of German politicians’ private data
http://bit.ly/2AvFaSp
Submitted January 04, 2019 at 04:16PM by yesnoornext
via reddit http://bit.ly/2Qopgyf
http://bit.ly/2AvFaSp
Submitted January 04, 2019 at 04:16PM by yesnoornext
via reddit http://bit.ly/2Qopgyf
threader.app
A thread written by @JulianRoepcke
#BREAKINGGermany faces the biggest hacker attack in its history.Private data of almost 1000 German #Bundestag, #Regional Parliament & #EU delegates was leaked.I worked through the leaked data all night. It's shocking!Not affected so far: #AfD.https://t.c…
Easily convert your APK into an Android Studio Project with APC, version 1.1 release notes!
http://bit.ly/2TnW2Be
Submitted January 04, 2019 at 10:32PM by ThisIsLibra
via reddit http://bit.ly/2COzGU1
http://bit.ly/2TnW2Be
Submitted January 04, 2019 at 10:32PM by ThisIsLibra
via reddit http://bit.ly/2COzGU1
reddit
r/netsec - Easily convert your APK into an Android Studio Project with APC, version 1.1 release notes!
2 votes and 0 comments so far on Reddit