Hacking, AppSec, and Bug Bounty newsletter
2018-08-28 | Zero Day in Microsoft ALPC for Windows 10, MacOS synthetic reality, and The world’s oldest blockchain
Tuesday, August 28
ES&S response to Senators request to let Def Con security experts test its machines, and we’re paraphrasing: “talk to the spooks about the Russian hackers lurking in black hoodies”. Beau Woods has something to say about that along with Matt Blaze, Alex Stamos, and many others.
TWEET OF THE DAY
Data breaches recorded by the Information Commissioner's Office (ICO) in the UK have doubled since the introduction of GDPR, according to the commercial law firm EMW – a 160% rise from the 2,417 complaints recorded in 2017. - @DailySwig
OTHER ARTICLES WE’RE READING
Something to look for at the next patch Tuesday: Unpatched ALPC Priv Esc Bug in Windows 10 x64 PoC
HaveIbeenPwned passwords are now available in NTLM form
The world’s oldest blockchain? The printed classified section of The New York Times.
Patrick Wardle on macOS synthetic reality and why Cupertino deserves some credit
ABOUT ZERO DAILY
Zero Daily is a daily newsletter that highlights application security, bug bounty, and hacker focused topics. The content is curated with love by @luketucker and brought to you by HackerOne.
Friends don’t keep good things to themselves - forward this to your homies and co-workers. BTW, want to see who runs bug bounties?
Have a news tip / story to highlight? We’d love to hear about it. Email: firstname.lastname@example.org
Infosec you can get wrong the first few times: Banks ,Credit card processors, R&D, PHI. Infosec that has to be right the first time, every time: Voting machines, Airline safety, Patient care equipment, ICS.
HackerOne is the #1 hacker-powered security platform, helping organizations find and fix critical vulnerabilities before they can be criminally exploited. As the contemporary alternative to traditional penetration testing, our bug bounty program solutions encompass vulnerability assessment, crowdsourced testing and responsible disclosure management. Discover more about our security testing solutions or Contact Us today.