September 18, 2024 at 07:42AM The evolution of software has surprised us, from Deep Blue beating Kasparov to chatbots handling complex tasks. Cybersecurity testing is also evolving, with automated penetration testing (PT) disrupting traditional methods. Automated PT offers more thorough and frequent testing at a fraction of the cost, making it crucial for robust security … Read more
January 22, 2024 at 03:31PM A security researcher in Germany was fined €3,000 for reporting a vulnerability in an e-commerce database that put customer information at risk. Modern Solution GmbH downplayed the data exposure, leading to a legal battle. Hendrik H. was initially vindicated by the District Court but was eventually fined and is planning … Read more
November 14, 2023 at 08:09AM Chris Wysopal, founder and CTO of Veracode, discusses his background as a hacker and the ethical hacker’s role in cybersecurity. He explains that hackers have a curiosity to understand how systems work and can uncover unintended consequences. Wysopal also discusses the dual use dilemma of hacking tools like L0phtCrack and … Read more
October 18, 2023 at 09:05AM An ethical hacker exploited a bug in the way X truncates URLs to take control of a CIA Telegram channel used for intelligence. The bug caused the Telegram link to be shortened incorrectly, allowing the hacker to register a new, unregistered handle. The issue could have exposed the CIA to … Read more