98 matches found
game-debate.com XSS vulnerability
Open Bug Bounty ID: OBB-467775 Description| Value ---|--- Affected Website:| game-debate.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat...
Texas Shooter’s Phone Encrypted
Government and law enforcement officials may soon reignite the debate over encryption after the FBI today revealed that the dead suspect in Sunday’s Texas church shooting was using an encrypted cellphone. FBI special agent Christopher Comb did not reveal what type of phone alleged shooter Devin...
game-debate.com XSS vulnerability
Open Bug Bounty ID: OBB-359831 Description| Value ---|--- Affected Website:| game-debate.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat...
game-debate.com XSS vulnerability
Open Bug Bounty ID: OBB-304750 Description| Value ---|--- Affected Website:| game-debate.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
Marcus Hutchins' Only Certainty is Uncertainty
The particulars of Marcus Hutchins’ indictment last week on charges the WannaCry hero three years ago wrote a banking Trojan have created another divisive information security storyline. While experts in the community rallied over the weekend to raise funds for his bond and wrote letters of suppo...
Shorting-For-Profit Viable Business Model For Security Community
LAS VEGAS–Justine Bone shook up the security research community last year when she decided to do the unconventional. The CEO of MedSec Holdings teamed with hedge fund company Muddy Waters Capital to short the stock of St. Jude Medical in order to profit from research that revealed life-threatenin...
Alternatives to Government-Mandated Encryption Backdoors
Policy essay: "Encryption Substitutes," by Andrew Keane Woods: In this short essay, I make a few simple assumptions that bear mentioning at the outset. First, I assume that governments have good and legitimate reasons for getting access to personal data. These include things like controlling crim...
Comey testimony generates massive interest, massive traffic
Online viewers of former FBI Director James Comey's live testimony last week generated a massive peak of 2.5 Tbps of live streaming video traffic on the Akamai platform, despite the hearing occurring in the middle of the work week, in the middle of the work day. To put this in perspective, that 2...
Comey Talks Strong Crypto, Silent on WikiLeaks
CHESTNUT HILL, Ma.—FBI director James B. Comey today revived the Going Dark discussion during a keynote address at the Boston Conference on Cyber Security, saying it’s time for an adult conversation on the prevalence of strong encryption and how it hinders criminal and national security...
EFF: NSA's Support of Encryption 'Disingenuous'
CAMBRIDGE, Ma.—The National Security Agency came out in support of encryption again Wednesday, but privacy advocates were quick to contest the agency’s stance, criticizing it for having a different definition of the term than others. Glenn Gerstell, general counsel for the NSA, stressed that the...
Experts Want Transparency From Government's Vulnerabilities Equities Process
The federal government’s Vulnerabilities Equities Process—albeit a heavily redacted version—was turned over more than a year ago, and despite that measure of visibility, privacy and security watchdogs still don’t have the transparency they seek with the regard to the unreported flaws the governme...
Clarke: Precedent-Seeking FBI Won't Ask NSA to Unlock Phone
The National Security Agency’s silence in the Apple-FBI story is probably not so surprising. But that hasn’t stopped people from dragging the NSA’s name into the conversation. The latest to do so is Richard Clarke, former counterterrorism chair under presidents George H.W. Bush and Bill Clinton...
Delicate Hardware Hacks Could Unlock Shooter's iPhone
A researcher at IOActive believes the U.S. intelligence community has the capability to carry out a delicate hardware hack that could unlock the iPhone 5c at the center of the current FBiOS debate. The attack requires considerable financial resources and acumen with an intrusive attack against th...
ENCRYPT Act of 2016 — Proposed Bill Restricts States to Ban Encryption
The last year's ISIS-linked terror attacks in Paris and California has sparked debate on Encryption, and the intelligent agencies started reviving their efforts to weaken encryption on various encrypted products and services. But, there is some Good News! California Congressman and Texas Republic...
RSA Conference Panel on Threat Information Sharing Bill
SAN FRANCISCO – The House of Representatives is considering a pair of information sharing bills this week. Also up for consideration is a data breach notification bill that is not likely to make it into law any time in the near future. According to a panel of experts at the RSA Conference, the...
Crypto 'Front Door' Debate Likely to Go On For Years
SAN FRANCISCO–Encryption is the hot new topic in security at the moment, as it has been any number of times in the last few decades. And, as in the past, the notions of key escrow, mandated legal access to encrypted systems and other ideas for helping governments defeat cryptosystems have followe...
Remote let the phone restart count as vulnerability? At least Google says not to count-vulnerability warning-the black bar safety net
Security researchers recently announced about the Android WiFi-Direct vulnerabilities, the vulnerability can lead to Android device reboot. Google and the vulnerability is found above the Core Security of the company has been in debate about this Android vulnerability severity--in the end let the...
EFF Calls Out ISPs Modifying STARTTLS Encryption Commands
As Net Neutrality debates swirl, privacy advocates at the Electronic Frontier Foundation and VPN provider Golden Frog have gone public with a Federal Communications Commission filing that got more attention for accusations that Verizon FIOS customers were having their Netflix streaming service...
Mobile Device Encryption Could Lead to a 'Very, Very Dark Place', FBI Director Says
FBI Director James Comey said Thursday that the recent movement toward default encryption of smartphones and other devices could “lead us to a very, very dark place.” Echoing comments made by law enforcement officials for the last several decades, Comey said that the advanced cryptosystems...
A Cool Debate 1.0.3 Component Joomla Local File Inclusion
No description provided by source. A Cool Debate 1.0.3 Component Joomla Local File Inclusion ========================================================================================= - Discovered by : Chip D3 Bi0s - Email : chipdebiosatgmaildotcom - Group : LatinHackTeam - Date : 18 june 2011 -...