A Guide To Subdomain Takeovers

Technical guide on how to understand, find, exploit, and report subdomain misconfigurations by EdOverflow


https://www.hackerone.com/application-se...-takeovers

Improve Credential Sharing with Hacker Email Aliases

New hacker email aliases feature makes credential sharing, and whitelisting domains simple for programs


https://www.hackerone.com/ethical-hacker...il-Aliases

Oath Bug Bounty Program Update: $1M in payouts and expansion of the program

Oath has surpassed over $1,000,000 bounties paid to hackers for their help to significantly decrease risk and reduce Oath’s attack surface. However, bugs aren’t all Oath received from the security community. They also heard a ton of feedback that they’ve accounted for in five changes to their program policy. Check them out!


https://www.hackerone.com/vulnerability-...on-program

7 Common Security Pitfalls to Avoid When Migrating to the Cloud

Read about the seven common security pitfalls to avoid when considering a migration to the cloud. Get actionable steps you should take now to ensure the best security possible for your customers.


https://www.hackerone.com/application-se...ting-cloud

Windows 11 bug warns Local Security Authority protection is off


Windows 11 users report seeing widespread Windows Security warnings that Local Security Authority (LSA) Protection has been disabled even though it shows as being toggled on. [...]


https://www.bleepingcomputer.com/news/mi...on-is-off/

Ferrari discloses data breach after receiving ransom demand

Ferrari has disclosed a data breach following a ransom demand received after attackers gained access to some of the company's IT systems. [...]


https://www.bleepingcomputer.com/news/se...om-demand/

Unpatched Samsung Chipset Vulnerabilities Open Android Users to RCE Attacks

Users of affected devices that want to mitigate risk from the security issues in the Exynos chipsets can turn off Wi-Fi and Voice-over-LTE settings, researchers from Google's Project Zero say.

https://www.darkreading.com/attacks-brea...ce-attacks

ChatGPT Gut Check: Cybersecurity Threats Overhyped or Not?

UK cybersecurity authorities and researchers tamp down fears that ChatGPT will overwhelm current defenses, while the CEO of OpenAI worries about its use in cyberattacks.

https://www.darkreading.com/attacks-brea...-overhyped

Scout picked S.C. because of speed, says CEO Scott Keogh

<p>Scout Motors picked a site in suburban Columbia, S.C. for its $2 billion factory in part because it was ready to go. Gov. Henry McMaster signed a $1.3 billion incentive package for the project into law Monday.</p>

https://www.autonews.com/automakers-supp...d-says-ceo

Hackers target .NET developers with malicious NuGet packages


Threat actors are targeting and infecting .NET developers with cryptocurrency stealers delivered through the NuGet repository and impersonating multiple legitimate packages via typosquatting. [...]


https://www.bleepingcomputer.com/news/se...-packages/