Hacking, AppSec, and Bug Bounty newsletter
2017-10-31 | Google Buganizer bugs, GoCrack, and Why TLS 1.3 isn’t there yet
Tuesday, October 31
Happy Halloween! Let’s make shelley.ai smarter and spookier.
Stored XSS on support.rockstargames.com [8 upvotes] - $1,000 bounty for this report to Rockstar Games by @mrreboot.
Default credentials on [redacted] [9 upvotes] - no bounty for this report to International Islamic University Chittagong by @strukt.
You can see all the latest and greatest disclosures and bounties on www.hackerone.com/hacktivity
OTHER ARTICLES WE’RE READING
Maybe a few more brainstorms on the name would have been in order: Introducing GoCrack: A Managed Password Cracking Tool
ABOUT ZERO DAILY
Zero Daily is a daily newsletter that highlights application security, bug bounty, and hacker focused topics. The content is curated with love by @luketucker and brought to you by HackerOne.
Friends don’t keep good things to themselves - forward this to your homies and co-workers. BTW, want to see who runs bug bounties?
Have a news tip / story to highlight? We’d love to hear about it. Email: firstname.lastname@example.org
Get this email forwarded to you? Click here to subscribe to the Zero Daily
Additionally, as expected, revenue was unfavorably impacted by approximately $135 million from lost sales in certain markets related to the cyber-attack.