-
Yesterday ENISA published a new study on the topic of economics of vulnerability disclosure. This is the first attempt in trying to explain the behavior of different actors involved in
#vulnerabilitydisclosure by looking a the cost…https://lnkd.in/esNtm5B https://lnkd.in/eeddZma -
See why self-managed vulnerability disclosure programs are a bad idea - A blog by
@PaniShubranshu https://bit.ly/2LwFiHW#BugBounty#VulnerabilityDisclosure#InfoSec#CyberSecurity#Security#Blogs#vulnerability#SafeHats#InstaSafe -
Aon’s Cyber Labs recently discovered a security vulnerability in WebLogic Server version v12.2.1.4 allowing for unauthenticated remote code execution. https://aon.io/2H8v6lf
#AonCyberLabs#vulnerabilitydisclosure#cybersecurityhttps://lnkd.in/erxiJJZ -
Fascinating read about China's
#VulnerabilityDisclosure process. Not surprising a process exists, but always interesting to learn more about how gov'ts think about it.#cybersecurityhttps://www.cyberscoop.com/china-vulnerability-disclosure-mss-recorded-future/ … -
Justice Department wants to help you run a vulnerability disclosure program https://www.cyberscoop.com/doj-vulnerability-disclosure-program-cfaa-bug-bounty/ …
@martenmickos#VulnerabilityDisclosure -
We want to say THANK YOU to everyone who has been contributing to our list of
#bugbounty and#vulnerabilitydisclosure programs... Add a new program between now and midnight on Friday, Nov 17 2019 and go into the draw for one of three 100 USD gift cards! https://github.com/disclose/disclose/tree/master/program-list …Prikaži ovu nit -
Initial draft terms have been published at https://github.com/disclose/disclose …. Submit your PRs for the first release!
#vulnerabilitydisclosure#bugbounty -
#Vulnerabilitydisclosure is a cornerstone of#cybersecurity. Proud to see some of our signatories actively participating in multi-stakeholder discussions on this topic. Certainly more to come!https://twitter.com/UNIDIR/status/1219563175647072258 …
-
this is amazing... the it modernization report to the white house assumes
#vulnerabilitydisclosure and#bugbounty as *the* best-practice approaches to external security testing for the usg https://itmodernization.cio.gov/assets/report/Report%20to%20the%20President%20on%20IT%20Modernization%20-%20Final.pdf …Prikaži ovu nit -
Sometimes vendors are awesome when it comes to
#VulnerabilityDisclosure. Sometimes not. If a security researcher gets in touch with you, how should you handle it? Our@TheKenMunroShow shares advice and insights to help smooth the path. https://www.pentestpartners.com/security-blog/a-security-researcher-has-made-contact-what-do-i-do/ …pic.twitter.com/psGY9v7IIX
-
this is a massive step forward in taking the risk out of
#vulnerabilitydisclosure and#bugbounty by@tesla, and maximizing the benefit of a safer internet... i sincerely hope this becomes the status quo. massive props to all involved!!!#securityresearchisnotacrimehttps://twitter.com/Tesla/status/1037391569144360960 … -
It was a pleasure to speak about the challenges in responsible
#vulnerabilitydisclosure. Thank you@UNIDIR for the insightful discussion.https://twitter.com/UNIDIR/status/1219235806759522304 …Starting soon at the Palais des Nations in Concordia I. Operationalizing Cyber Norms!
https://twitter.com/UNIDIR/status/1219171556162777088 … -
The results of this research by my company show just how poor the situation is for hackers wanting to report issues to companies across the world - and it directly impacts consumers. We know what the issue is, now let's get it fixed.
#cvd#vulnerabilitydisclosure#iothttps://twitter.com/copperhorseuk/status/1067353683325784064 … -
hey
#bugbounty and#vulnerabilitydisclosure program owners... is your program in the@disclose_io list? if it is, is it up to date? https://github.com/disclose/disclose/blob/master/bug-bounty-list/bug-bounty-list.json … -
There has been an odd turn around in
#VulnerabilityDisclosure. In the early days researchers were threatened with legal action by companies, and now researchers are threatening companies with full disclosure. Which part of this is the "Coordinated" in#CoordinatedDisclosure?
-
"[papers] Phrack: Twenty years of Escaping the Java Sandbox (Ieu Eauvidoum & disk noise)" https://www.exploit-db.com/papers/45517/
#vulnerabilitydisclosure feeds#feedly -
The
@CapitalOne incident highlights the importance in the role of#vulnerabilitydisclosure. Confirmation of breach less than 48 hours after the initial report -- a good testament to the power of#whitehats.https://bgcd.co/31aVkLP -
The
#EU Agency for#Cybersecurity - A new chapter for#ENISA bringing it closer to Member States governments in operational cooperation under#NIS Directive, in case of large scale#cyberattacks, in coordinating#vulnerabilitydisclosure https://www.enisa.europa.eu/news/enisa-news/the-european-union-agency-for-cybersecurity-a-new-chapter-for-enisa/ … -
Looking at how the
#Meltdown and#Spectre#VulnerabilityDisclosure was handled. What did they get right, what did they get wrong?#Malware#Security#CyberSecurity@malwarejakehttp://ow.ly/wmft30iJF0p -
"Hackers are not scary people"
@1sand0s at@hack_lu#hacklu#vulnerabilitydisclosure pic.twitter.com/RoqzOR8JTC
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.