Archive - May 2020

Bug Bounty Radar // The latest bug bounty programs for May 2020 29 May 2020 at 14:31 UTC Google launches CTF-style bug bounty challenge for Kubernetes 29 May 2020 at 13:41 UTC New Yorker charged in e-commerce cybercrime, bitcoin laundering scam 29 May 2020 at 11:51 UTC Google partners with US victim support network to fight Covid-19 scams 28 May 2020 at 15:04 UTC LadderLeak: Side-channel security flaws exploited to break ECDSA cryptography 28 May 2020 at 14:07 UTC Cloud-based cyber-attacks flaring up during coronavirus pandemic 28 May 2020 at 12:22 UTC Valak 2.0: The malware loader turned information stealer 28 May 2020 at 11:15 UTC Know thine enemy: Australian Cyber Security Centre spotlights most popular cyber-attack techniques 27 May 2020 at 14:56 UTC Shodan founder John Matherly on IoT security, dual-purpose hacking tools, and information overload 27 May 2020 at 12:37 UTC Android security: Regional differences make mobiles devices in some countries more hackable than others 27 May 2020 at 10:44 UTC Machine learning techniques applied to crack CAPTCHAs 26 May 2020 at 14:21 UTC SIM swap fraud – an explainer 26 May 2020 at 12:49 UTC DDLS and Open Colleges partner to expand online cybersecurity training in Australia 25 May 2020 at 08:13 UTC Google Cloud security find earns South American researcher $31k bug bounty payout 22 May 2020 at 16:30 UTC Going deep: How advances in machine learning can improve DDoS attack detection 22 May 2020 at 15:20 UTC How to perform an HTTP header smuggling attack through a reverse proxy 22 May 2020 at 13:10 UTC Signal patches (minor) approximate location disclosure flaw 22 May 2020 at 11:10 UTC Digital-cyber land grants – How a newly proposed education system could tackle the security brain drain, cyber skills gap 21 May 2020 at 14:28 UTC Sentencing delayed for former AlphaBay sales dispute mediator 21 May 2020 at 12:54 UTC Home Chef delivers data breach news linked to darknet sale of 8m customer records 21 May 2020 at 11:54 UTC Shielded web security flaws in QNAP storage devices finally released 20 May 2020 at 15:26 UTC Dark web vendors feel the pinch as coronavirus lockdown restrictions impact underground operations 20 May 2020 at 14:02 UTC Google launches Enhanced Safe Browsing to combat fleet-footed phishing sites 20 May 2020 at 11:55 UTC XSS vulnerability uncovered in Google Voice browser extension 19 May 2020 at 14:14 UTC Web application attacks rise to account for almost half of all data breaches 19 May 2020 at 12:19 UTC BIND 9 security releases address two high severity vulnerabilities 19 May 2020 at 10:25 UTC MyLittleAdmin has a big, unpatched security flaw 18 May 2020 at 16:08 UTC Covve revealed as source of data breach impacting 23m individuals 18 May 2020 at 14:14 UTC FIRST updates guidelines for multi-party vulnerability disclosure 18 May 2020 at 11:46 UTC US healthcare admin firm admits data breach 15 May 2020 at 15:22 UTC HackerOne co-founder unearths information leakage bug in Rails package 15 May 2020 at 13:32 UTC Obscure, decade-old vulnerability finally unearthed in GLPI asset management app 15 May 2020 at 11:28 UTC US Computer Fraud and Abuse Act: How an upcoming Supreme Court ruling could have serious ramifications for ethical hackers 14 May 2020 at 16:11 UTC Cloud security: Attacking Azure AD to expose sensitive accounts and assets 14 May 2020 at 12:56 UTC Service NSW: Australian government agency hit by cyber-attack 14 May 2020 at 11:23 UTC DEF CON 2020: ‘Safe Mode’ virtual event will be free to attend, organizers confirm 13 May 2020 at 14:00 UTC Critical SharePoint and browser security flaws star in May Patch Tuesday 13 May 2020 at 12:50 UTC XSS vulnerability in ‘Login with Facebook’ button earns $20,000 bug bounty 13 May 2020 at 11:12 UTC Squid patches security flaws in HTTP digest authentication 12 May 2020 at 15:00 UTC House of cards: Majority of commercial apps contain outdated, abandoned open source components, study claims 12 May 2020 at 13:06 UTC WordPress security: More than one million sites exposed through Page Builder plugin vulnerabilities 12 May 2020 at 10:44 UTC DDoS surge driven by attacks on education, government, and coronavirus information sites 11 May 2020 at 16:31 UTC RDP attacks skyrocket amid Covid-19 lockdown 11 May 2020 at 14:51 UTC Nintendo hacker sentencing postponed due to coronavirus-related court delays 08 May 2020 at 14:28 UTC GitHub showcases new code-scanning security tools at virtual event 07 May 2020 at 15:32 UTC Data breach at Indian learning platform Unacademy exposes millions of user accounts 07 May 2020 at 12:25 UTC Polymorphic payloads: New image processing test suite snags Google Scholar 07 May 2020 at 11:31 UTC Hacking power supplies allows data to be lifted from air-gapped systems 06 May 2020 at 15:46 UTC Severe RCE vulnerability in content filtering system has been patched, Netsweeper says 06 May 2020 at 14:37 UTC Taiwan’s major oil refineries struck by malware, causing chaos at gas stations 06 May 2020 at 12:24 UTC Salt framework security flaws used to attack multiple targets 05 May 2020 at 15:25 UTC Authorities dismantle InfinityBlack cybercrime gang following year-long investigation 05 May 2020 at 14:31 UTC Coronavirus-themed phishing campaign smuggles Agent Tesla malware 05 May 2020 at 11:44 UTC Multinational’s mobile endpoints engulfed by Cerberus banking trojan 04 May 2020 at 16:25 UTC Gmail XSS vulnerability placed under the microscope 04 May 2020 at 15:31 UTC Tarkett cyber-attack disrupts French flooring company’s operations 04 May 2020 at 10:28 UTC EU calls for ceasefire on cyber-attacks exploiting coronavirus pandemic 01 May 2020 at 15:07 UTC Non-profits shout ‘Victory!’ as ICANN rejects .org directory sale to private equity firm 01 May 2020 at 13:47 UTC JQuery XSS vulnerability affects other apps, warns security researcher 01 May 2020 at 12:31 UTC