SecureBug allows you to evaluate your offensive and defensive skills, in addition, to let you exchange your ideas and methodologies with thousands of people in the security field.
Join Nordic's No.1 Crowdsourced Security Platform For Offensive & Defensive Security Strategies.
A new set of SQLite vulnerabilities can allow attackers to remotely run malicious code inside Google Chrome. Security researchers have uncovered a set of five vulnerabilities affecting Chrome versions before 79.03945.79. It is dubbed as Magellan 2.0. The five vulnerabilities of Magellan 2.0 are tracked as CVE-2019-13734, CVE-2019-13750, CVE-2019-13751, CVE-2019-13752, and CVE-2019-13753. The original Magellan…
Cybersecurity researchers have found a database that contains personal information of millions of Facebook users, just sitting on a server available for anyone who knew where to look. Nearly 270 million Facebook users have had their user IDs, phone numbers and names left in an unsecured database accessible on the Internet for anyone to mine,…
A vulnerability has been discovered in two Citrix (a load balancer and monitoring tech) products, placing 80,000 companies in 158 countries at risk. Businesses with apps published using these technologies may be exposing their internal network to unauthorized access. The easily exploitable vulnerability can allow attackers to obtain direct access to a company’s local network…
Experts discovered a massive global Emotet malware campaign that uses the Swedish climate-change activist Greta Thunberg as a lure. The teenage climate-change activist and Time Person of the Year, Greta Thunberg, inspires people all around the world. Apparently, this includes cybercriminals. The copy within the email includes a few different themes: The renowned Swedish environmental…
Slovakian security firm ESET discovered an ongoing phishing campaign is targeting PayPal customers. It does so by sending emails disguised as ‘unusual activity’ alerts that warn them of suspicious logins from unknown devices and attempts to exploit their credentials and financial information. To ensure that the potential victims are scared and willing to click on…
Security researchers have revealed a zero-day vulnerability in Dropbox for Windows app. This vulnerability can authorize an attacker in gaining access to Windows SYSTEM privileges from a starting point of a simple Windows user. What is the Dropbox for Windows zero-day vulnerability? Two security researchers, Chris Danieli and another known as Decoder, first discovered the…
Apple has formally opened its bug bounty program today to all security researchers, after announcing the move earlier this year in August at the Black Hat security conference in Las Vegas. The tech giant will pay white hat hackers that report security flaws in the iOS, macOS, watchOS, tvOS, iPadOS, and iCloud. On top of…
Threat intelligence is contextual information that describes threats and helps organizations in taking different business decisions. It is extracted from a huge collection of sources and information. It provides operational insight by looking outside the organization and issuing alerts on evolving threats to the organization. To better manage information that is collected from different sources,…
On Friday, The mayor of New Orleans declared a state of emergency after the city detected a cyber-attack the same morning. New Orleans officials confirmed the cyber-attack as a ransomware infection. Officials used the city hall’s public loudspeakers systems to alert employees of the cyber-attack to make sure employees powered down computers as soon as…
The Rooster Teeth Productions has suffered a data breach that exposed payment card information from shoppers. Hackers have stolen credit card and other payment data from users that made purchases on the company’s online store. The attack redirected shoppers to a fake payment form on checkout. The production company is known for its popular shows…