SecureBug allows you to evaluate your offensive and defensive skills, in addition, to let you exchange your ideas and methodologies with thousands of people in the security field.
Join Nordic's No.1 Crowdsourced Security Platform For Offensive & Defensive Security Strategies.


SoundCloud API Flaws Could Lead to Account Takeover

Online music platform SoundCloud has fixed several security vulnerabilities affecting its API that could have otherwise resulted in hackers taking over accounts, launching denial of service attacks(DoS), and exploiting the service. Checkmarx Security Research team found the flaws in an investigation aiming to study the state of API security in leading online platforms. According to…


Android-användare har blivit måltavla för Anubis Trojan phishing-attack

Android-användare har blivit måltavla för en fishing-attack som kommer att sprida Anubis banks Trojan över användarnas enheter. Denna skadliga programvara kan attackera mer än 250 shopping- och bankrelaterade appar och stjäla användarnas ekonomiska information. I denna operation används en dubbel strategi för att råda möjliga offer för att installera skadlig programvara. Strategin är att be…

February patch tuesday

February 2020 patch tuesday: Microsoft patched 99 security flaws

Microsoft has released an update to patch 99 vulnerabilities on Windows and other Microsoft software. This includes 12 vulnerabilities flagged as Critical and 87 flagged as Important.  The update includes a patch for the zero-day memory-corruption vulnerability disclosed in late January that’s under active attack. The bug tracked as CVE-2020-0674 is a critical flaw for most Internet Explorer versions,…


An ongoing hacking attack targets software supply chain companies, infects them with the Kwampirs malware, FBI alerts

FBI stated in a security alert sent to private sectors in U.S. that an ongoing campaign is aiming their supply chain software providers; the campaign which is conducted by Orangeworm hacking group, is seeking to penetrate companies with the Kwampirs malware, a remote administration Trojan (RAT). However the identity of the compromised companies were not…