iPhone 13 Pro, Windows, Chrome, Linux and others pwned at Tianfu Cup

By Waqas
Tianfu Cup is a version of the Pwn2own in which hackers managed to hack iPhone 13 through a vulnerability in the Safari mobile browser.
This is a post from HackRead.com Read the original post: iPhone 13 Pro, Windows, Chrome, Linux and others p… Continue reading iPhone 13 Pro, Windows, Chrome, Linux and others pwned at Tianfu Cup

Another 0-Day Looms for Many Western Digital Users

Countless Western Digital customers saw their MyBook Live network storage drives remotely wiped in the past month thanks to a bug in a product line the company stopped supporting in 2015, as well as a previously unknown zero-day flaw. But there is a similarly serious zero-day flaw present in a much broader range of newer Western Digital MyCloud network storage devices that will remain unfixed for many customers who can’t or won’t upgrade to the latest operating system. Continue reading Another 0-Day Looms for Many Western Digital Users

Researcher release PoC exploit for 0-day in Chrome, Edge, Brave, Opera

By Deeba Ahmed
The issue was demonstrated at the Pwn2Own 2021 hacking contest in which researchers won $100,000 for exploiting this flaw in Chrome and Edge.
This is a post from HackRead.com Read the original post: Researcher release PoC exploit for 0-d… Continue reading Researcher release PoC exploit for 0-day in Chrome, Edge, Brave, Opera

Microsoft Exchange server, Teams, Zoom, Chrome pwned at Pwn2Own

By Waqas
This year, Pwn2Own will have an automotive category as well, mainly for hacking Tesla cars. Participants will be offered $600,000 and a vehicle.
This is a post from HackRead.com Read the original post: Microsoft Exchange server, Teams, Zoom, C… Continue reading Microsoft Exchange server, Teams, Zoom, Chrome pwned at Pwn2Own

HackerOne, Verizon weigh pros and cons of making live hacking contests virtual

Among all the ways COVID-19 has affected the cybersecurity world, perhaps nothing is more impossible than live hacking events, which were once a staple of the industry. The coronavirus forced bug bounty company HackerOne and Verizon Media into hosting two online hacking events together since the outbreak, and they recently completed what they billed as the world’s largest live hacking contest. Live hacking events, whether virtual or in-person, give companies a chance to lure ethical hackers to find their security flaws before the attackers do, and can serve as recruiting opportunities for corporate positions, too. What made the most recent competition stand out was its massive size, and what the experiment could mean for the rest of the bug bounty community. The HackerOne/Verizon Media duo wasn’t the first to move live hacking events online. Pwn2Own made a similar transition in March. With more than 3,000 people from 59 countries registering […]

The post HackerOne, Verizon weigh pros and cons of making live hacking contests virtual appeared first on CyberScoop.

Continue reading HackerOne, Verizon weigh pros and cons of making live hacking contests virtual

Vulnerability Disclosure: Ethical Hackers Seek Best Practices

Cybersecurity researchers Brian Gorenc and Dustin Childs talk about the biggest vulnerability disclosure challenges in IoT and the industrial vertical. Continue reading Vulnerability Disclosure: Ethical Hackers Seek Best Practices