2017-06-08 | Comey time, hacker motivations, and 30K gem

Thursday, June 8 

Greetings from America’s capital.  

TOP STORY

• In D.C. today where it’s Comey time [c-span livestream] and you can also read his 7-page written testimony. Read more cyber-related Washington goings-on from Politico, including members of Congress’ letter to President Trump about cybersecurity deficiencies at Trump properties.  

HACKTIVITY

• Subdomain takeover on happymondays.starbucks.com due to non-used AWS S3 DNS record [83 upvotes] - $2,000 bounty for this report to Starbucks by @danilg. This is one the more popular disclosed reports on Hacktivity over the last 6-months. There may or may not be a rickroll PoC.   

You can see all the latest and greatest disclosures and bounties on www.hackerone.com/hacktivity 

OTHER ARTICLES WE’RE READING

• What motivates a hacker? I Am The Cavalry pontificates

• Calls for presentations open for PrivacyCon 2018

• Well, that was easy

• Ghosts from the past

• The $30K gem: Part 1

ABOUT ZERO DAILY

Zero Daily is a daily newsletter that highlights application security, bug bounty, and hacker focused topics. The content is curated with love by @luketucker and brought to you by HackerOne.  

Friends don’t keep good things to themselves - forward this to your homies and co-workers. BTW, want to see who runs bug bounties? 

Have a news tip / story to highlight? We’d love to hear about it. Email: zerodaily@hackerone.com

Get this email forwarded to you? Click here to subscribe to the Zero Daily

 

"[The QNA] could've been owned by random script kiddies forever."

Motherboard