14 matches found
rcmp-grc.gc.ca Cross Site Scripting vulnerability OBB-3854799
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
rcmp-grc.gc.ca Cross Site Scripting vulnerability OBB-3787316
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
LeakedSource Owner Quit Ashley Madison a Month Before 2015 Hack
This is Part III in a series on research conducted for a recent Hulu documentary on the 2015 hack of marital infidelity website AshleyMadison.com. In 2019, a Canadian company called Defiant Tech Inc. pleaded guilty to running LeakedSource.com, a service that sold access to billions of passwords a...
rcmp-grc.gc.ca Cross Site Scripting vulnerability OBB-3487316
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Malicious code in rcmp-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cd2e4c37beba24789d3b9cac30f99076caa9c503372266d318c8ec29d31abdaa Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-5610 Malicious code in rcmp-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cd2e4c37beba24789d3b9cac30f99076caa9c503372266d318c8ec29d31abdaa Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
rcmp-grc.gc.ca Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1190056 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website...
LeakedSource Founder Arrested for Selling 3 Billion Stolen Credentials
Canadian authorities have arrested and charged an Ontario man for operating a website that collected 'stolen' personal identity records and credentials from some three billion online accounts and sold them for profit. According to the Royal Canadian Mounted Police RCMP, the 27-year-old Jordan Eva...
Canadian Police Charge Operator of Hacked Password Service Leakedsource.com
Canadian authorities have arrested and charged a 27-year-old Ontario man for allegedly selling billions of stolen passwords online through the now-defunct service Leakedsource.com. The now-defunct Leakedsource service. On Dec. 22, 2017, the Royal Canadian Mounted Police RCMP charged Jordan Evan...
rcmpsite.com XSS vulnerability
Vulnerable URL: https://rcmpsite.com/index.php/%27%22--!%3E%20%3Cimg%20src=x%20onerror=alert%22openbugbounty%22%3E?action=promptforloginaction=updatetimelimit Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 83407...
BlackBerry CEO Defends Lawful Access Principles, Supports Phone Hack
BlackBerry’s CEO made the company’s stance on lawful access requests clear this week and is defending actions to provide Canadian law enforcement with what it needed to decrypt communications between devices. The company’s CEO John Chen penned a statement on Monday, reiterating that one of...
Canadian Police obtained Master Key to Crack BlackBerry Messenger Encryption
BlackBerry has long been known for its stance on mobile security, as it was the first mobile phone maker to provide end-to-end encryption. But a new report revealed that the company has provided a master backdoor to law enforcement in its secure devices since 2010. The Royal Canadian Mounted Poli...
19-Year-Old Teenager Arrested for Exploiting Heartbleed Bug to Steal Data
A teenager has been arrested by the Canadian police in relation to the infamous malicious breach on the country's taxpayer system using one of the most critical internet flaws, Heartbleed. Heartbleed bug, that made headlines over past two weeks and every websites around the world flooded with its...
Michael Calce Warns of Online Dangers at HDS Canada's Forum
The guest keynote speakers at technology conferences can vary in quality, but Hitachi Data Systems HDS Canada NYSE: HIT made a smart choice by inviting Michael Calce, also known as Mafiaboy, to speak at their recent Information Forum event in Toronto. Calce gained notoriety as a teenage hacker fr...