AI-Controlled Fighter Jets Are Dogfighting With Human Pilots Now

Plus: New York’s legislature suffers a cyberattack, police disrupt a global phishing operation, and Apple removes encrypted messaging apps in China...

On Secure Voting Systems

Andrew Appel shepherded a public comment--signed by twenty election cybersecurity experts, including myself--on best practices for ballot marking devices and vote tabulation. It was written for the Pennsylvania legislature, but its general in nature. From the executive summary: We believe that no...

house.leg.state.mn.us Cross Site Scripting vulnerability OBB-3120781

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

wvlegislature.gov Cross Site Scripting vulnerability OBB-2634447

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

legisweb1.legislature.maine.gov Cross Site Scripting vulnerability OBB-2220615

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

The Senate Is Mad as Hell at Facebook—Again

The latest hearing on Instagram and teen mental health was the depressing work of a legislature that can’t legislate...

Utah's ‘Porn Filter’ Law Passes the State Legislature

Plus: An iOS 14 jailbreak is out, Solarwinds details emerge, and more of the week's top security news...

leg.state.nv.us Cross Site Scripting vulnerability OBB-1477649

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

utahlegislature.granicus.com Cross Site Scripting vulnerability OBB-1286576

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

lrl.state.tx.us XSS vulnerability

Open Bug Bounty ID: OBB-441321 Description| Value ---|--- Affected Website:| lrl.state.tx.us Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

legis.state.wv.us XSS vulnerability

Open Bug Bounty ID: OBB-441325 Description| Value ---|--- Affected Website:| legis.state.wv.us Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat...

oregonlegislature.gov XSS vulnerability

Vulnerable URL: https://www.oregonlegislature.gov/billslaws/Pages/ORS.aspx?FollowSite=0=%27-confirm%27OPENBUGBOUNTY%27-%27 Details: Description| Value ---|--- Patched:| No Latest check for patch:| 25.12.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 252565 VIP...

oregonlegislature.gov XSS vulnerability

Vulnerable URL: https://www.oregonlegislature.gov/citizenengagement/Reports/Forms/AllItems.aspx?FollowSite=0=%27-confirm%27OPENBUGBOUNTY%27-%27 Details: Description| Value ---|--- Patched:| No Latest check for patch:| 20.12.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed...

legislature.mi.gov XSS vulnerability

Vulnerable URL: http://www.legislature.mi.gov/Sgyidzvkxuasdidwe1yzzga3v/mileg.aspx?page=getobject="%20onfocus="prompt%27OPENBUGBOUNTY%27"%20autofocus=" Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / No...

revisor.leg.state.mn.us XSS vulnerability

Vulnerable URL: https://www.revisor.leg.state.mn.us/statutes/?id=1%22--%3E%3Csvg/onload=;prompt/OPENBUGBOUNTY/;%3E609b Details: Description| Value ---|--- Patched:| Yes, at 24.11.2017 Latest check for patch:| 24.11.2017 11:25 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed...