This is both absolutely disturbing and quite encouraging at the same time. This type of session riding flaw is scary and one wonders why it was not caught earlier. That said, it is great to see organizations like PayPal reaching out to the community and using bounty programs to discover bugs and solve security problems. We (the IT Security Community) are all in this together.
top of page
Recent Posts
See AllI recently spoke about the FTC’s lawsuit against Chegg, a major education tech firm, in one of the weekly tech tips interviews I provide...
Multiple sources have reported the breach of Cisco’s own network, purportedly via a Cisco employee’s personal Google account. According...
I very much enjoyed this article from Pieter Danhieux via Dark Reading and this creative approach to the management of applications and...
bottom of page
Comments