hello again

Tag Archives: vulnerability

#hacking | CISA Wants a Vulnerability Disclosure Program At Every Agency

Source: National Cyber Security – Produced By Gregory Evans The Homeland Security Department on Wednesday released a draft of a binding operational directive that would require every federal agency to create a vulnerability disclosure policy. Under the measure, each civilian agency would need to create a formal process for security researchers to share vulnerabilities they […]

Most Organizations Have Incomplete Vulnerability …

Source: National Cyber Security – Produced By Gregory Evans Companies that rely solely on CVE/NVD are missing 33% of disclosed flaws, Risk Based Security says. A new report shows companies that rely solely on the Common Vulnerabilities and Exposures (CVE) system for their vulnerability information are leaving themselves exposed to a substantial number of security […]

Cyber Security Vulnerability Intelligence Analyst

Source: National Cyber Security – Produced By Gregory Evans Dynamics of the Role The Cyber Vulnerability Intelligence Analyst will collect, research, coordinate, and deliver intelligence gathered from various sources to increase TransUnion’s cyber vulnerability awareness and protection levels.  This person will interact with key organizational personnel, working within the Cyber Threat and Intelligence team to […]

Hackers have found a vulnerability and are targeting BitCoin owners

Source: National Cyber Security – Produced By Gregory Evans Cryptocurrencies continue to be a bonanza for criminals and hackers. The latest targets are people who have touted their ownership of BitCoin or other cryptocurrencies. The vulnerability is through their cell phones. Hackers are finding out the telephone numbers of virtual currency owners then calling up […]

Researchers got Rewarded by $10,000 for Reporting XXE Vulnerability in Google

A critical bug XXE vulnerability has been found by researchers which let researchers access the internal files of Google’s production servers. Sounds surprising but it has been really found by hackers which let hackers read any internal files. As shown, the vulnerability was in Google Toolbar Button Gallery. Team of Researchers found a bug when […]

Twitter vulnerability lets apps send DMs without user permission

  Security researcher Egor Homakov has discovered a Twitter vulnerability which allows apps to send DMs without requiring explicit user permission. TNW has verified the findings and can confirm the bug. This means Twitter apps that don’t ask for permission to send DMs can do so anyway. For example, Twitpic doesn’t ask for access to your DMs when you […]