Yahoo!: Bitly link takeover

A vulnerability was discovered in which a Bitly link referred to in the description of a Yahoo Twitter handle was broken and redirected to an unintended destination. This situation presented an opportunity for attackers to potentially hijack the link and direct users to a malicious website for...

Better Click to Tweet < 5.10.4 - Settings Update via CSRF

The plugin lacks CSRF protection when updating the bctt-twitter-handle option, allowing an attacker to change the plugin settings by tricking a logged in admin to submit a form. PoC curl -b .cookies -d bctt-twitter=$NEWHANDLE 'https://example.com/wp-admin/?page=bctt-welcome=welcome'...

'DerpTroll' Faces 10 Years in Prison for DDoSing Gaming Sites as a Teen

After a short but disruptive career knocking popular online gaming sites offline for sport, Austin Thompson, a.k.a. “DerpTroll,” has pleaded guilty to hacking charges. He faces a maximum penalty of 10 years prison and a $250,000 fine. Thompson, a 23-year-old Utah resident, made his plea on Tuesda...

HackerOne: User with privilege to maintain External Programs can update certain churned HackerOne programs

Summary: You wrote that some programs are behind, but you are trying to get them back sorry maybe bad translation Description: Apparently because of a system error, I have access to change information in the public program. This option is given only for external programs.But here is a public...

Hero Researcher Who Halted WannaCry Ransomware Arrested by FBI

By Waqas An IT security researcher going by the Twitter handle of This is a post from HackRead.com Read the original post: Hero Researcher Who Halted WannaCry Ransomware Arrested by FBI...

Shadow Brokers Group Releases More Stolen NSA Hacking Tools & Exploits

Remember The Shadow Brokers? They are back. A hackers group that previously claimed to have stolen a bunch of hacking tools malware, zero-day exploits, and implants created by the NSA and gained popularity last year for leaking a portion of those tools is back. Today, The Shadow Brokers group...

High school Student Hacked Into CIA Director's Personal Email Account

A self-described teenage hacker has claimed to have hacked into personal AOL email account of Central Intelligence Agency CIA Director John Brennan and swiped sensitive top-secret data. It's Really a major embarrassment for Brennan as well as the CIA. The hacker, who describes himself as an...

Microsoft Office Word 2010 Crash PoC

No description provided by source. Title : Microsoft Office Word 2010 Stack Overflow Version : Microsoft Office professional Plus 2010 Date : 2012-10-23 Vendor : http://office.microsoft.com Impact : Med/High Contact : coolkaveh at rocketmail.com Twitter : @coolkaveh tested : XP SP3 ENG Bug : ----...

Adobe Acrobat Reader and Flash Player (newclass) invalid pointer

Exploit for windows platform in category remote exploits ================================================================ Adobe Acrobat Reader and Flash Player newclass invalid pointer ================================================================ Title : Adobe Acrobat Reader and Flash Player...