HackDig : Dig high-quality web security articles for hacker

Security week-in-review: Bugs be gone, Apple announces bounty program

It’s hard to keep up with the hundreds of security-specific headlines published every week. So, we’re rounding up the top news that affect you, your business, and the security and technology industry overall. This week we explore bug bounty programs, bug fixes, and healthcare breaches. Check back every Friday to learn about the latest in security news. Ap
Publish At:2016-08-06 06:55 | Read:3263 | Comments:0 | Tags:Security Apple bug bounty bugs data breach google security w

Security week-in-review: Major industrial vuln shows why patches are so important

It’s hard to keep up with the hundreds of security-specific headlines published every week. So, we’re rounding up the top news that affect you, your business, and the security and technology industry overall. This week we explore vulnerabilities in industrial switches, the Myspace breach, and a WordPress plugin gone wrong. Check back every Friday to learn
Publish At:2016-06-04 01:20 | Read:3972 | Comments:0 | Tags:Security bugs patching vulnerabilities

Security Week-in-Review: Bug hunter wins $10K at the tender age of 10

It’s hard to keep up with the hundreds of security-specific headlines published every week. So, we’re rounding up the top news that affect you, your business, and the security and technology industry overall. This week we explore a young bug bounty hunter, the ADP breach, and the dangers of unpatched systems. Check back every Friday to learn about the late
Publish At:2016-05-06 22:05 | Read:2550 | Comments:0 | Tags:Security ADP breach bug bounty bugs Cisco data breach Instag

How Soviets used IBM Selectric keyloggers to spy on US diplomats

A National Security Agency memo that recently resurfaced a few years after it was first published contains a detailed analysis of what very possibly was the world's first keylogger—a 1970s bug that Soviet spies implanted in US diplomats' IBM Selectric typewriters to monitor classified letters and memos.The electromechanical implants were nothing short of an
Publish At:2015-10-13 18:20 | Read:3465 | Comments:0 | Tags:Law & Disorder Risk Assessment Technology Lab bugs eavesdrop

Researchers Outline Vulnerabilities in Yahoo, PayPal, Magento Apps

Researchers recently discovered a smattering of vulnerabilities in web applications and mobile applications belonging to companies like Yahoo, PayPal, Magento, and Shopify that could have led to account theft, session hijacking, and phishing, among other consequences.Hadji Samir, Ebrahim Hegazy, Ayoub Ait Elmokhtar, and Benjamin Kunz Mejri, researchers with
Publish At:2015-09-11 18:05 | Read:1752 | Comments:0 | Tags:Vulnerabilities Bugs Magento PayPal Shopify vulnerabilities

Money may grow on trees

By Fernando ArnaboldiSometimes when buying something that costs $0.99 USD (99cents) or $1.01 USD (one dollar and one cent), you may pay an even dollar. Eitheryou or the cashier may not care about the remaining penny, and so one of youtakes a small loss or profit.Rounding at the cash register is a common practice, just asit is in programming languages when d
Publish At:2015-08-25 18:25 | Read:3584 | Comments:0 | Tags:bugs fernando arnaboldi hacking java javascript numbers prob

Google extends vulnerability bounties to Android; offers up to $30,000

Google's "Vulnerability Reward Program" has been incentivizing people to report security bugs to the tech giant for its Web services, apps, extensions, Chrome, and Chrome OS for some time now. Today the company announced that it's extending the cash-for-bugs program to its biggest operating system: Android.Further ReadingAs 0days get meaner, Google defen
Publish At:2015-06-17 06:25 | Read:1914 | Comments:0 | Tags:Risk Assessment android bounty bugs google security Vulnerab

MIT Researchers Debut Debugger for Integer Overflows

Students from M.I.T. have devised a new and more efficient way to scour raw code for integer overflows, the troublesome programming bugs that serve as a popular exploit vector for attackers and often lead to the crashing of systems.Researchers from the school’s Computer Science and Artificial Intelligence Laboratory (CSAIL) last week debuted the platfo
Publish At:2015-03-26 17:25 | Read:2187 | Comments:0 | Tags:Uncategorized Vulnerabilities Web Security Bugs CSAIL Intege

2014: The Year That the Internet Fell Apart

Time flies. It is already late February in 2015 as we reflect on 2014 as the year the Internet fell apart at IBM InterConnect. It feels like it was just yesterday that Heartbleed, the information disclosure vulnerability in OpenSSL, was announced. At the time, IBM quickly sprang into action and released multiple network intrusion prevention system signatures
Publish At:2015-02-24 03:25 | Read:2355 | Comments:0 | Tags:IBM X-Force Software & App Vulnerabilities Threat Intelligen

Mozilla Patches Nine Vulnerabilities With Firefox 35

Mozilla released the latest version of its flagship browser this week, Firefox 35, fixing nine vulnerabilities, including three critical bugs that could have led to a crash or sandbox bypass, among other issues.One of those critical bugs was a sandbox escape discovered by security researcher Nils. Nils, a researcher at MWR InfoSecurity in the U.K., found a w
Publish At:2015-01-16 19:25 | Read:2618 | Comments:0 | Tags:Vulnerabilities Web Security Bugs Firefox Firefox patches Mo

Google drops more Windows 0-days. Something’s gotta give

Google's security researchers have published another pair of Windows security flaws that Microsoft hasn't got a fix for, continuing the disagreement between the companies about when and how to disclose security bugs.The first bug affects Windows 7 only and results in minor information disclosure. Microsoft says, and Google agrees, that this does not meet
Publish At:2015-01-16 15:45 | Read:2302 | Comments:0 | Tags:Risk Assessment Technology Lab bugs google microsoft securit

Announce

Share high-quality web security related articles with you:)

Tools

Tag Cloud