Hacking, AppSec, and Bug Bounty newsletter
2018-02-06 | Cryptominers FTW, Temp.reaper, and Grammarly’s fast fix
Tuesday, February 6
TWEET OF THE DAY
Added SAML to a service and then, before shipping, started reading @Hacker0x01, GitHub and other public bug bounties for SAML-related vulnerabilities. So many good integration tests cases to write now. Would be crazy to ship SAML support without reading these. - @mccode
OTHER ARTICLES WE’RE READING
Should it be 100%? - Study says 42% of Alexa's top 100,000 sites were risky.
Temp.reaper: North Korean threat group suspected to be behind Adobe Flash exploit
Vulnerability (found by Taviso) in Grammarly extension fixed
ABOUT ZERO DAILY
Zero Daily is a daily newsletter that highlights application security, bug bounty, and hacker focused topics. The content is curated with love by @luketucker and brought to you by HackerOne.
Friends don’t keep good things to themselves - forward this to your homies and co-workers. BTW, want to see who runs bug bounties?
Have a news tip / story to highlight? We’d love to hear about it. Email: firstname.lastname@example.org
Get this email forwarded to you? Click here to subscribe to the Zero Daily
That's the problem: most users *have no idea* Amazon stores Echo recordings.