Explore

How to bypass Cloudflare bot protection

medium.com

Several months ago I submitted what appeared to be a security flaw to CloudFalre’s bugbounty program....

1

Zero click vulnerability in Apple’s macOS Mail

medium.com

9 hours ago·4 min readI found a zero click vulnerability in Apple Mail, which allowed me...

2

Critical netmask networking bug impacts thousands of applications

bleepingcomputer.com

Popular npm library netmask has a critical networking vulnerability. netmask is frequently used by hundreds of...

1

Regexploit: DoS-able Regular Expressions · Doyensec's Blog

doyensec.com

11 Mar 2021 - Posted by Ben Caller When thinking of Denial of Service (DoS), we...

2

“You Can’t Protect What You Can’t See.” Cyber Hygiene and Zero-Day Vulnerability

hackernoon.com

Interested in Infosec & Biohacking. Security Architect by profession. Love reading and running.“Facing fear is better...

1

Another Chrome zero-day exploit – so get that update done

sophos.com

1

Malicious NPM packages target Amazon, Slack with new dependency attacks

bleepingcomputer.com

Threat actors are targeting Amazon, Zillow, Lyft, and Slack NodeJS apps using a new 'Dependency Confusion'...

1

Chrome 88 update patches a zero-day that is being actively exploited

engadget.com

Google Chrome’s autoupdate feature means we don’t usually need to think about being on the latest...

1

Important Software Security Terms You Should Know

hackernoon.com

Smart Vulnerability ScannerEveryone in the IT industry should be aware of software security basics. It doesn’t...

1

Undocumented user account in Zyxel products (CVE-2020-29583)

eyecontrol.nl

TL;DR: If you have a Zyxel USG, ATP, VPN, ZyWALL or USG FLEX you should update...

2

Bouncy Castle crypto authentication bypass vulnerability revealed

bleepingcomputer.com

A severe authentication bypass vulnerability has been reported in Bouncy Castle, a popular open-source cryptography library....

1

Bouncy Castle cryptography bug enables easy password brute-force and auth bypass

bleepingcomputer.com

A severe authentication bypass vulnerability has been reported in Bouncy Castle, a popular open-source cryptography library....

1

4M Docker Images Shows Half Have Critical Vulnerabilities

securityweek.com

Container security company Prevasio has analyzed 4 million public Docker container images hosted on Docker Hub...

1

How to steal photos off someone’s iPhone from across the street

sophos.com

Well-known Google Project Zero researcher Ian Beer has just published a blog post that is attracting...

1

CyberAlarm: An independent security review... and why you should avoid it

paul.reviews

1

Windows 10 Intel microcode released to fix new CPU security bugs

bleepingcomputer.com

1

Grindr's Reset Token Vulnerability: A Technical Deep Dive

hackernoon.com

Comp sci and cyber securityDating apps hold a treasure trove of information about their users which...

1

What is Abusability Testing and Why is it Necessary?

hackernoon.com

1

Bug bounty reporter cashes out on someone else's vulnerability exploit

bleepingcomputer.com

1

Update Windows 10 Now to Block 'SMBGhost'

lifehacker.com

When even the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency is starting to get...

1

GitHub uncovers malicious ‘Octopus Scanner’ targeting developers

sophos.com

1

Two zero day flaws in iOS Mail threaten billions of iPhone and iPad

cybsploit.com

1

How did I hack Sizmek?(an Amazon company)

medium.com

1

NXNSAttack: Severe DNS Vulnerability Can Cause DDoS Attacks

sensorstechforum.com

1

CVE-2020-10135: Bias Vulnerability in Bluetooth Classic Protocol

sensorstechforum.com

1

Here's Another Reason Using a Free Android VPN Is a Terrible Idea

lifehacker.com

There’s no such thing as a great free VPN. Or, rather, there’s only one free VPN...

1

Weirdest Bug Bounty – Getting PII from Office365

medium.com

1

Unpatched iOS bug blocks VPNs from encrypting all traffic

bleepingcomputer.com

2