Hacking, AppSec, and Bug Bounty newsletter
2017-06-13 | MacSpy, CrashOverride, and VM Super Hub hack
Tuesday, June 13
Have a great day!
[XSS/pay.qiwi.com] Pay SubDomain Hard-Use XSS [7 upvotes] - $150 bounty for this report to Qiwi by @pengenkiddy… Two reports for the price of one. @pengenkiddy found Xss on billing [5 upvotes] and received $150 bounty for the find reported to Qiwi.
Did you know? Over the last four days, multiple $10K+ bounties have been paid.
You can see all the latest and greatest disclosures and bounties on www.hackerone.com/hacktivity
OTHER ARTICLES WE’RE READING
More on CRASHOVERRIDE
Hacking the Virgin Media Super Hub by Context’s research team
ABOUT ZERO DAILY
Zero Daily is a daily newsletter that highlights application security, bug bounty, and hacker focused topics. The content is curated with love by @luketucker and brought to you by HackerOne.
Friends don’t keep good things to themselves - forward this to your homies and co-workers. BTW, want to see who runs bug bounties?
Have a news tip / story to highlight? We’d love to hear about it. Email: firstname.lastname@example.org
Get this email forwarded to you? Click here to subscribe to the Zero Daily
"Dance like no one is watching. Encrypt like everyone is.”
HackerOne is the #1 hacker-powered security platform, helping organizations find and fix critical vulnerabilities before they can be criminally exploited. As the contemporary alternative to traditional penetration testing, our bug bounty solutions encompass vulnerability assessment, crowdsourced security testing and responsible disclosure management. Discover more about our hacker powered security testing solutions or Contact Us today.