Hacking, AppSec, and Bug Bounty newsletter
2018-10-11 | Top 10 web hacking techniques of 2017, Security versus compatibility, and Where’s the data at?
Thursday, October 11
Portswigger’s Top 10 Web Hacking Techniques of 2017. Top billing went to @orange_8361, @omer_gil, and @intidc.
TWEET OF THE DAY
OTHER ARTICLES WE’RE READING
Where’s the data at? Wikileaks released documentation that it claims reveals the location of many Amazon data centers.
TFW when you acquire a company and turns out they had several unprotected servers leaking customer data.
Accessnow asks, “What if the Bloomberg Big Hack story is true?”
Security versus compatibility: fun thread from @blowdart
ABOUT ZERO DAILY
Zero Daily is a daily newsletter that highlights application security, bug bounty, and hacker focused topics. The content is curated with love by @luketucker and brought to you by HackerOne.
Friends don’t keep good things to themselves - forward this to your homies and co-workers. BTW, want to see who runs bug bounties?
Have a news tip / story to highlight? We’d love to hear about it. Email: firstname.lastname@example.org
It's different working for a security product company instead of internal security. On an internal team the bad thing is that nobody will ever witness your clever security engineering. At a product firm, the bad thing is everyone will witness your 'clever' security engineering.
HackerOne is the #1 hacker-powered security platform, helping organizations find and fix critical vulnerabilities before they can be criminally exploited. As the contemporary alternative to traditional penetration testing, our bug bounty program solutions encompass vulnerability assessment, crowdsourced testing and responsible disclosure management. Discover more about our security testing solutions or Contact Us today.