Ethical Hackers Reported 835 Vulnerabilities, Earned $450K in 2023

By Deeba Ahmed
The US Department of Defense reported the most security vulnerabilities in 2023, with 96 reports or 10% of all reports.
This is a post from HackRead.com Read the original post: Ethical Hackers Reported 835 Vulnerabilities, Earned $450K i… Continue reading Ethical Hackers Reported 835 Vulnerabilities, Earned $450K in 2023

CVEMap: Open-source tool to query, browse and search CVEs

CVEMap is an open-source command-line interface (CLI) tool that allows you to explore Common Vulnerabilities and Exposures (CVEs). It’s designed to offer a streamlined and user-friendly interface for navigating vulnerability databases. Although C… Continue reading CVEMap: Open-source tool to query, browse and search CVEs

Why cyberattacks mustn’t be kept secret

No company is immune to cyberattacks, but when the inevitable happens, too many companies still try to maintain a wall of silence. In fact, over half of security professionals admit their organizations maintain a culture of security through obscurity, … Continue reading Why cyberattacks mustn’t be kept secret

HackerOne collaborates with Semgrep to streamline code review for modern development

HackerOne announced a partnership with code security solution, Semgrep, to combine Semgrep’s automated code security tools with expert support from HackerOne PullRequest code reviewers. Security teams can now analyze code through Semgrep and have… Continue reading HackerOne collaborates with Semgrep to streamline code review for modern development

How EU lawmakers can make mandatory vulnerability disclosure responsible

There is a standard playbook and best practice for when an organization discovers or is notified about a software vulnerability: The organization works quickly to fix the problem and, once a fix is available, discloses that vulnerability for the benefi… Continue reading How EU lawmakers can make mandatory vulnerability disclosure responsible

Photos: Infosecurity Europe 2023, part 3

Infosecurity Europe is taking place at ExCeL London from 20-22 June 2023 and Help Net Security is on site. The first gallery is available here, and the second gallery is here. Here’s a closer look at the conference featuring: Swimlane, Adaptiva, … Continue reading Photos: Infosecurity Europe 2023, part 3

To enable ethical hackers, a law reform is needed

Organizations need to be able to match the ingenuity and resources of cybercriminals to better defend themselves against the increasing number of threats and attacks that could paralyze their business. Unfortunately, some laws restrict genuine security… Continue reading To enable ethical hackers, a law reform is needed

The top security threats to GraphQL APIs and how to address them

Enterprises looking to modernize their APIs are increasingly switching from the REST architecture to the open-source data query and manipulation language GraphQL. While the transition makes sense – GraphQL is more flexible, scalable, and easier f… Continue reading The top security threats to GraphQL APIs and how to address them

Uber hacked, attacker tears through the company’s systems

Uber has been hacked, again – this time by an 18-year-old (allegedly). According to The New York Times, the breach happened on Thursday. The hacker claims to have gotten in by social-engineering an Uber employee: Apparently there was an internal … Continue reading Uber hacked, attacker tears through the company’s systems