Hacking

How to Get a Finger on the Pulse of Corporate Networks via the SSL VPN

Sep 19, 2019 By Detectify In Detectify

Detectify Crowdsource hacker, Alyssa Herrera, is a full-time bug bounty hacker and web application security researcher who works to protect organizations. She was one of several Crowdsource hackers to submit a working proof of concept for File Disclosure in Pulse Secure Connect (CVE-2019-11510). This guest blog post will walk through how she developed an exploitable-payload for this vulnerability.

Read Post

Detectify

Read more about How to Get a Finger on the Pulse of Corporate Networks via the SSL VPN

Hacker prevention: tips to reduce your attack surface

Sep 16, 2019 By Mike Klepper In AT&T Cybersecurity

These days it seems that every time you open your favorite news source there is another data breach related headline. Victimized companies of all sizes, cities, counties, and even government agencies have all been the subject of the “headline of shame” over the past several months or years.

Read Post

AT&T Cybersecurity

Read more about Hacker prevention: tips to reduce your attack surface

Gamers risk getting played by hackers

Sep 6, 2019 By Joseph Poppy In Bulletproof

If you’re in your mid-twenties or beyond, you will be familiar with people at family gatherings saying ‘remember when we didn’t have all these gadgets, and we used to actually talk to each other?’ The answer to this is ‘no’ – the level of conversation has remained largely unchanged, it’s just now we have gadgets and gizmos to occupy our attention during these moments of strained silence. I put it down to the Mandela effect.

Read Post

Bulletproof

Read more about Gamers risk getting played by hackers

The Biggest Cyber Threat is Not A Zero-Day ft. Zoë Rose

Aug 5, 2019 By Tripwire In Tripwire

The biggest cyber threat is not the latest zero-day or fast-spreading malware. Cybersecurity consultant Zoë Rose explains what affects our industry the most and what security professionals can do about it now.

View Video

Tripwire

Read more about The Biggest Cyber Threat is Not A Zero-Day ft. Zoë Rose

A Day in the Life of an Ethical Hacker ft. Zoë Rose

Aug 5, 2019 By Tripwire In Tripwire

Ever wonder what it’s like to be an “ethical hacker?” Zoë Rose walks us through a typical day in her life as an ethical hacker/cybersecurity consultant at Baringa Partners.

View Video

Tripwire

Read more about A Day in the Life of an Ethical Hacker ft. Zoë Rose

Anne-Marie Eklund Löwinder: "I was good at making others' code stop running very early on."

Jul 18, 2019 By Detectify In Detectify

She’s the CISO of The Internet Foundation of Sweden (IIS) and one of 14 trusted individuals to hold a Key to the Internet, which means the DNSSEC key generation for the internet root zone. Anne-Marie Eklund Löwinder is also one of the few Swedes who have been inducted into the Internet Hall of Fame.

Read Post

Detectify

Read more about Anne-Marie Eklund Löwinder: "I was good at making others' code stop running very early on."

Lerhan: Bypassing IDOR protection with URL shorteners

Jul 3, 2019 By Xavier Blasco In Detectify

Xavier Blasco (a.k.a Lerhan) is a 23-year old security researcher on the Detectify Crowdsource Platform. He’s passionate about security and found a way in through bug bounty programs. As an ethical hacker, he is naturally curious in security testing vendors which he is buying from and this time it led to bypassing IDOR protection using URL shorteners. In the following guest blog, he describes this security flaw that led him to access new client contracts on Jazztel’s platform.

Read Post

Detectify

Read more about Lerhan: Bypassing IDOR protection with URL shorteners

The Tax Paying Hacker: A Modern Phenomenon

Jun 12, 2019 By Harris Zane In Tripwire

In a dark room lit only by the light from four computer monitors sits a hacker named Hector (not his real name). You can hear the faint pulse of an EDM track coming from his headphones as Hector taps away on his computer’s keyboard. The above description could serve as the setting for a hacker movie set in the early 2000s. But it doesn’t work in today’s context. Nowadays, Hector sits in a brightly lit room with multiple screens at his disposal.

Read Post

Tripwire

Read more about The Tax Paying Hacker: A Modern Phenomenon

Detectify Crowdsource | Meet the Hacker - Linus Särud

May 28, 2019 By Detectify In Detectify

This Meet the Hacker episode features Detectify Crowdsource hacker, Linus Särud aka @_zulln. He is a security researcher at Detectify and he specializes in finding web application vulnerabilities. Linus started hacking when he was in his early teens and found a bug in Google Translate.

View Video

Detectify

Read more about Detectify Crowdsource | Meet the Hacker - Linus Särud

Protecting Your Company Website as an ERM Strategy

May 24, 2019 By RiskOptics In RiskOptics

Your corporate website is more than just a business card since it is the most significant asset your organization holds for providing vital information to customers. A security breach on your company's website from hackers can be devastating to your organization's reputation amongst your clients. Exposing customer data to attackers impedes all efforts made to build a strong brand since customer trust is compromised.

Read Post