Wednesday, February 21
TOP STORY
uTorrent DNS rebinding vulnerability and patch. See @taviso’s post for technical details.
TWEET OF THE DAY
We have a fancy internet-connected coffee machine in our newsroom. The coffee isn't that bad. Unsurprisingly, you can login with a default password. - @zackwhittaker
OTHER ARTICLES WE’RE READING
Windows DFIR stuffy stuff and more by Harlan Carvey
Another report on the economic impact of cyber crime, this one by CSIS/McAfee: over half a trillion dollar impact annually, a 34% increase from the previous report by CSIS/McAfee in 2014.
Kaspersky looks at what Fancy Bear has been up to this past year
ABOUT ZERO DAILY
Zero Daily is a daily newsletter that highlights application security, bug bounty, and hacker focused topics. The content is curated with love by @luketucker and brought to you by HackerOne.
Friends don’t keep good things to themselves - forward this to your homies and co-workers. BTW, want to see who runs bug bounties?
Have a news tip / story to highlight? We’d love to hear about it. Email: zerodaily@hackerone.com
Get this email forwarded to you? Click here to subscribe to the Zero Daily
And the GDPR will spark the fuse. It will be so easy to black mail organizations because their webmaster left backup archives on a publicly readable S3 bucket.
The things that we keep finding there is just ridiculous…
HackerOne is the #1 hacker-powered security platform, helping organizations find and fix critical vulnerabilities before they can be criminally exploited. As the contemporary alternative to traditional penetration testing, our bug bounty program solutions encompass vulnerability assessment, crowdsourced testing and responsible disclosure management. Discover more about our security testing solutions or Contact Us today.