Wednesday, August 1
TOP STORY
DHS is launching a new body to tackle cyber threats to key infrastructure: National Risk Management Center. As part of the new NRMC, a Supply Chain Task Force will be formed.
TWEET OF THE DAY
Backdoors in Cisco Routers - @schneierblog
OTHER ARTICLES WE’RE READING
Facebook identifies coordinated efforts on the platform to influence politics reports the New York Times.
Politico reports that the IRS still hasn't set up basic cybersecurity protections like password length requirements and regular software patching according to its review of a new GAO audit report of the agency’s “financial management and tax processing systems”.
Iowa based UnityPoint phishing attack led to data breach affecting up to 1.4 million patients
CRLF Injection Into PHP’s cURL Options by TomNomNom
CloudGoat by Rhino Labs. A vulnerable-by-design AWS environment
Burp will be doing daily feature blogs in build up of a suite of additions to the popular tool
ABOUT ZERO DAILY
Zero Daily is a daily newsletter that highlights application security, bug bounty, and hacker focused topics. The content is curated with love by @luketucker and brought to you by HackerOne.
Friends don’t keep good things to themselves - forward this to your homies and co-workers. BTW, want to see who runs bug bounties?
Have a news tip / story to highlight? We’d love to hear about it. Email: zerodaily@hackerone.com
We think it’s inevitable that we will find evidence, and we will find other actors, whether these are from Russia, from other countries, or domestic actors that are looking to continue to try and abuse the platform.
Nathaniel Gleicher, Facebook’s head of cybersecurity policy
HackerOne is the #1 hacker-powered security platform, helping organizations find and fix critical vulnerabilities before they can be criminally exploited. As the contemporary alternative to traditional penetration testing, our bug bounty program solutions encompass vulnerability assessment, crowdsourced testing and responsible disclosure management. Discover more about our security testing solutions or Contact Us today.