Hacking, AppSec, and Bug Bounty newsletter
2017-12-19 | Zealot Apache Struts, Top 7 security predictions for 2018, and McAfee Threats Report
Tuesday, December 19
Mining Monero: new Apache Struts campaign, Zealot, leverages NSA-attributed EternalBlue and EternalSynergy exploits.
TWEET OF THE DAY
"These stupid Windows updates are just wasting my time, I've never even been infected with the malware they're mean to prevent!" - uh, yeah, that means they're working - @troyhunt
OTHER ARTICLES WE’RE READING
McAfee Threats Report December 2017 - 57.6 million new malware samples in 3Q, a new record
It’s Official: North Korea Is Behind WannaCry - WSJ OpEd title written by Tom Bossert, Donald Trump's homeland security adviser
Top 7 security predictions for 2018 by CSO Online. That number 5 though…
Open source S3 buckets search engine by Rojan Rijal
Corben is hacking the hackers and blogging about it: Leveraging an SSRF in HackerTarget
ABOUT ZERO DAILY
Zero Daily is a daily newsletter that highlights application security, bug bounty, and hacker focused topics. The content is curated with love by @luketucker and brought to you by HackerOne.
Friends don’t keep good things to themselves - forward this to your homies and co-workers. BTW, want to see who runs bug bounties?
Have a news tip / story to highlight? We’d love to hear about it. Email: email@example.com
Get this email forwarded to you? Click here to subscribe to the Zero Daily
There’s such a perception of the government being closed off and ready to sweep issues under the rug. It was great seeing how excited they were to work with us. This honestly changes everything, and it’s clear they care about working with us to protect their interests.