Bug Bounty FAQ: Top Questions, Expert Answers

Four leading voices in the bug bounty community answer frequently asked questions from bounty hunters, companies and curious cybersecurity professionals.

2h

FortiGate VPN Default Config Allows MitM Attacks

The client's default configuration for SSL-VPN has a certificate issue, researchers said.

15h

Industrial Cyberattacks Get Rarer but More Complex

The first half of 2020 saw decreases in attacks on most ICS sectors, but oil/gas firms and building automation saw upticks.

16h

Ring’s Flying In-Home Camera Drone Escalates Privacy Worries

Privacy fears are blasting off after Amazon's Ring division unveiled the new Always Home Cam, a smart home security camera drone.

17h

Microsoft Kills 18 Azure Accounts Tied to Nation-State Attacks

An APT group has started heavily relying on cloud services like Azure Active Directory and OneDrive, as well as open-source tools, to obfuscate its attacks.

21h

Feds Hit with Successful Cyberattack, Data Stolen

The attack featured a unique, multistage malware and a likely PulseSecure VPN exploit.

1d

Cisco Patch-Palooza Tackles 29 High-Severity Bugs

Patches and workaround fixes address flaws on networking hardware running Cisco IOS XE software.

1d

Free Apple iPhone 12? Chatbot Scam Spreads Via Texts

Convincing SMS messages tell victims that they've been selected for a pre-release trial for the soon-to-be-launched device.

1d

Alien Android Banking Trojan Sidesteps 2FA

A new 'fork' of the Cerberus banking trojan, called Alien, targets victims' credentials from more than 200 mobile apps, including Bank of America and Microsoft Outlook.

1d

Zerologon Patches Roll Out Beyond Microsoft

A Samba patch and a micropatch for end-of-life servers have debuted in the face of the critical vulnerability.

2d