-
WordPress iOS app leaked security tokens to third-partiesNews Security tokens can grant attackers access to website data without needing a password
News -
Cisco fails to fix two criticalNews The remote-code execution and information disclosure bugs have been unpatched since January
News -
Chrome exploit worked hand-in-hand with Windows bugNews Google has only seen the vulnerabilities actively exploited on 32-bit Windows 7 machines
News -
Teenage hacker makes $1m from bug bounty rewardsNews Santiago Lopez exposed over 1,600 software bugs, including those in Twitter and Verizon
News -
Critical flaw in booking platform affects 141 airlinesNews Attackers could have exploited the bug to gain unauthorised access to flights with 44% of the world’s airlines
News -
Microsoft launches $20,000 Azure DevOps bug bounty programmeNews Critical remote code execution flaws are the highest-paid, while denial-of-service attacks earn nothing
News -
Critical flaw delays major Ethereum upgradeNews The Constantinople Upgrade has been delayed after developers became aware of the issue one day before it was scheduled
News -
Misconfigured app exposed NASA data for at least three weeksNews Names and email addresses accidentally made public in the second major security scare in as many months
News -
Adobe releases emergency fixes for two critical flawsNews The bugs let an attacker execute arbitrary code and allowed privilege escalation via six iterations of the software
News -
The scariest security horror stories of 2018In-depth From data breaches to hardware vulnerabilities, these are the most embarrassing security blunders of the year
In-depth -
Twitter suspected potential state-sponsored attackNews Malicious actors exploited two bugs with the platform's support form to gather hidden information, including phone numbers
News -
Second Google+ API bug exposes private data of 52.5 millionNews Google says it has expedited the platform closure by 4 months as a result
News
