Bug Bounty Archives - IT LinesIT Lines

Most Orgs Would Take Security Bugs Over Ethical Hacking Help

10 Mar, 2022 Bug Bounty, Security News, Vulnerabilities 0 Comments 0

A new survey suggests that security is becoming more important for enterprises, but they’re still falling back on old “security by obscurity” ways.

Public Exploit Released for Windows 10 Bug

31 Jan, 2022 Bug Bounty, Security News, Vulnerabilities 0 Comments 0

The vulnerability affects all unpatched Windows 10 versions following a messy Microsoft January update.

Apple Pays $100.5K Bug Bounty for Mac Webcam Hack

31 Jan, 2022 Bug Bounty, Cloud Security, Security News, Vulnerabilities, Web Security 0 Comments 0

The researcher found that he could gain unauthorized camera access via a shared iCloud document that could also “hack every website you’ve ever visited.”

Organizations Face a ‘Losing Battle’ Against Vulnerabilities

18 Jan, 2022 Bug Bounty, Malware, Mobile Security, Security News, Vulnerabilities, Web Security 0 Comments 0

Companies must take more ‘innovative and proactive’ approaches to security in 2022 to combat threats that emerged last year, researchers said.

U.S. Ban on Sales of Cyberattack Tools Is Anemic, Experts Warn

21 Oct, 2021 Bug Bounty, Privacy, Security News, Vulnerabilities 0 Comments 0

Meanwhile, Zerodium’s quest to buy VPN exploits is problematic, researchers said.

Pair of Google Chrome Zero-Day Bugs Actively Exploited

14 Sep, 2021 Bug Bounty, Security News, Vulnerabilities, Web Security 0 Comments 0

The security vulnerabilities bring the web behemoth up to 10 browser zero-days found so far this year.

Microsoft Translation Bugs Open Edge Browser to Trivial UXSS Attacks

29 Jun, 2021 Bug Bounty, Security News, Uncategorized, Vulnerabilities, Web Security 0 Comments 0

The bug in Edge’s auto-translate could have let remote attackers pull off RCE on any foreign-language website just by sending a message with an XSS payload. Microsoft patched two bugs in its Chromium-based Edge browser last week, one of which could be used by an attacker to bypass security and . . . Read more

How to Get into the Bug-Bounty Biz: The Good, Bad and Ugly

14 May, 2021 Bug Bounty, Security News, Threatpost Webinar Series, Vulnerabilities 0 Comments 0

Experts from Intel, GitHub and KnowBe4 weigh in on what you need to succeed at security bug-hunting. Zero-day disclosures, those known bugs without a fix, can have potentially catastrophic results. One of the best ways to combat them is by discovering them before the bad guys do. Some of the . . . Read more

S3 Ep30: AirDrop worries, Linux pests and ransomware truths [Podcast]

29 Apr, 2021 AirDrop, Apple, Bug Bounty, cybercrime, Hacking, iOS, Linux, Naked Security Podcast, OS-X, podcast, Privacy, Ransomware, Security News, Vulnerability 0 Comments 0

by Paul Ducklin We investigate whether AirDrop is really as dangerous as researchers claimed. We discuss the pestiferous problem of fake Linux bugs submitted as an academic exercise. We review the latest Sophos Ransomware Report and uncover uncomfortable truths about paying up. With Kimberly Truong, Doug Aamoth and Paul Ducklin. . . . Read more

Google Project Zero Cuts Bug Disclosure Timeline to a 30-Day Grace Period

16 Apr, 2021 Bug Bounty, Security News, Vulnerabilities 0 Comments 0

The zero-day flaw research group has revised its disclosure of the technical details of vulnerabilities in the hopes of speeding up the release and adoption of fixes. Google Project Zero will now give organizations a 30-day grace period to patch zero-day flaws it discovers in a new disclosure policy revealed . . . Read more

What's Your IT Question?

All posts in Bug Bounty