Category

bug bounty

4 Posts

Featured

マイナンバー危ない？使える？　天才プログラマー登大遊さんに聞く：朝日新聞デジタル

SafariでGoogleアカウント名が漏えいする脆弱性が見つかる、Appleに問題を報告済みも未対応のまま

ASCII.jp － TECH

オンライン商談ツールはBtoCにシフト、フロントライン労働者のストレス軽減策、ほか

North Korean hackers stole nearly $400 million in crypto last year

Researcher refuses Telegram’s bounty award, discloses auto-delete bug

Posted inBiz & ITbug bountyend to end encryptionhackeroneMessaging AppSecurityTECHTelegram
Posted byAx Sharma
10/04/2021

Telegram took months to fix “self-destruct” message bug. Then requested silence.

Apple forgot to sanitize the Phone Number field for lost AirTags

Posted inAppleBiz & ITbug bountydrop attackinfosecTECHvulnerabilitywatering hole attack
Posted byJim Salter
10/01/2021

Another bug-bounty boondoggle leads to public disclosure before the bug is fixed.

Three iOS 0-days revealed by researcher frustrated with Apple’s bug bounty

Posted inAppleBiz & ITbug bountyinfosecvulnerabilitieszero-day
Posted byJim Salter
09/25/2021

Public disclosure comes in wake of other grumblings about Apple’s bug bounty behavior.

Infosec researchers say Apple’s bug-bounty program needs work

Posted inAppleBiz & ITbug bountyinfosecTECH
Posted byJim Salter
09/10/2021

Apple allegedly pays less for bugs than its competitors do—and pays more slowly.