oaklandactivitiesassoc.org Cross Site Scripting vulnerability OBB-3430948

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

oaklandstreetacademy.org Cross Site Scripting vulnerability OBB-3291121

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Play ransomware gang leaks City of Oakland data

The Play ransomware gang has begun partially publishing data they stole from the City of Oakland, California. The data were in multiple archive files with a collective file size of 10GB. According to the ransomware gang, the files contain "private and personal information data, financial...

A week in security (February 13 - 19)

Last week on Malwarebytes Labs: What is AI good at and what the heck is it, actually, with Josh Saxe: Lock and Code S04E04 Malwarebytes recognized as endpoint security leader by G2 CISA issues alert with South Korean government about DPRK's ransomware antics Jailbreaking ChatGPT and other large...

Ransomware pushes City of Oakland into state of emergency

The ransomware attack that hit Oakland on Wednesday February 8, 2023 is still crippling many of the citys services a week later. In fact, the situation is so bad that the Interim City Administrator has now declared a state of emergency. Tweet announcing the state of emergency The ransomware attac...

oaklandlandscapecommittee.org Improper Access Control vulnerability OBB-2207212

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

oaklandairport.com Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1157270 Security Researcher Sprachlos Helped patch 21 vulnerabilities Received 1 Coordinated Disclosure badges , a holder of 1 badges for responsible and coordinated disclosure, found a security vulnerability affecting oaklandairport.com website and its users. Following...

Upcoming Speaking Engagements

This is a current list of where and when I am scheduled to speak: I'm speaking at the Code for America Summit in Oakland, California on May 30, 2019. I'm speaking on "Securing a World of Physically Capable Computers" at Oxford University on Monday, June 17, 2019. The list is maintained on this pa...

oaklandairport.com XSS vulnerability

Open Bug Bounty ID: OBB-691697 Description| Value ---|--- Affected Website:| oaklandairport.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| hidd...

oaklandairport.com XSS vulnerability

Open Bug Bounty ID: OBB-569946 Description| Value ---|--- Affected Website:| oaklandairport.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

CapitalOne Bank taken down by Anonymous hackers

CapitalOne Bank taken down by Anonymous hackers Anonymous Hackers claim to taken down the official website of CapitalOne Bank. Currently Site is showing message on Homepage that "Site under maintenance". In a pastebin release Anonymous Hacker wrote "ya know.. every guy Fawkes day companies go hir...

Anonymous DDOS Oakland police site after violence

Anonymous DDOS Oakland police site after violence Cyber activists associated with Anonymous have targeted the Oakland Police Department OPD and other law enforcement agencies that participated in a controversial crackdown against OccupyOakland protestors. A DDOS distributed denial-of-service atta...

Anonymous DDOS Oakland police site after violence

Anonymous DDOS Oakland police site after violence Cyber activists associated with Anonymous have targeted the Oakland Police Department OPD and other law enforcement agencies that participated in a controversial crackdown against OccupyOakland protestors. A DDOS distributed denial-of-service atta...

[Full-disclosure] Cross Site Scripting (XSS) Vulnerability in Web Mail platform by "Mirapoint"

·= Security Advisory =· Issue: Cross Site Scripting XSS Vulnerability in Web Mail platform by "Mirapoint" Discovered Date: 19/09/2006 Author: Tal Argoni, LegendaryZion. talargoni at gmail.com Product Vendor: http://www.mirapoint.com/ Details: Mirapoint Web Mail platform is prone to a Cross Site...