The initiative, run by HackerOne, aims to uncover dangerous code repository bugs that end up going viral across the application supply-chain.
Source: Read More (Threatpost)
You might be interested in …
[HackerNews] WhatsApp Photo Filter Bug Could Have Exposed Your Data to Remote Attackers
A now-patched high-severity security vulnerability in WhatApp’s image filter feature could have been abused to send a malicious image over the messaging app to read sensitive information from the app’s memory. Tracked as CVE-2020-1910 (CVSS score: 7.8), the flaw concerns an out-of-bounds read/write and stems from applying specific image filters to a rogue image and sending the […]
[ZDNet] DOJ gives Russian national two-year sentence for work shielding Kelihos malware and other ransomware
Oleg Koshkin allegedly operated the websites “crypt4u.com,” “fud.bz,” and others that helped hackers “render malicious software fully undetectable by nearly every major provider of antivirus software.” Source: Read More (Latest topics for ZDNet in Security)
Daily NCSC-FI news followup 2020-08-01
Offense and Defense A Tale of Two Sides: Group Policy and Logon Scripts www.fortinet.com/blog/threat-research/offense-defense-a-tale-of-two-sides-group-policy-and-logon-scripts In this blog, we will look at Group Policy Objects (GPO) in Windows operating systems. Specifically, how they can be used to deploy and execute malicious payloads on target machines within an Active Directory environment. We will also look at ways […]