A Python directory traversal vulnerability disclosed in August 2007, but never patched, likely affects 350K+ open-source projects and can lead to code execution (Ionut Ilascu/BleepingComputer)

September 22, 2022

Ionut Ilascu / BleepingComputer:
A Python directory traversal vulnerability disclosed in August 2007, but never patched, likely affects 350K+ open-source projects and can lead to code execution — A vulnerability in the Python programming language that has been overlooked for 15 years is now back in the spotlight …

Categories: Uncategorized

Security engineer says Uber hacker had access to its HackerOne bug bounty program; source: the hacker downloaded all vulnerability reports before losing access (Lawrence Abrams/BleepingComputer)

Lawrence Abrams / BleepingComputer:
Security engineer says Uber hacker had access to its HackerOne bug bounty program; source: the hacker downloaded all vulnerability reports before losing access — Uber suffered a cyberattack Thursday afternoon with a hacker gaining access to vulnerability reports and sharing screenshots …

September 16, 2022

Fortinet confirms a critical remote authentication bypass vulnerability in FortiOS, FortiProxy, and FortiSwitchManager is being exploited; a patch is available (Sergiu Gatlan/BleepingComputer)

Sergiu Gatlan / BleepingComputer:
Fortinet confirms a critical remote authentication bypass vulnerability in FortiOS, FortiProxy, and FortiSwitchManager is being exploited; a patch is available — Fortinet has confirmed today that a critical authentication bypass security vulnerability patched last week is being exploited in the wild.

October 10, 2022

Microsoft reveals a now-patched “high severity vulnerability” in TikTok for Android that could let attackers take over accounts that clicked on a malicious link (Corin Faife/The Verge)

Corin Faife / The Verge:
Microsoft reveals a now-patched “high severity vulnerability” in TikTok for Android that could let attackers take over accounts that clicked on a malicious link — Hackers could have used the exploit to post videos, send messages, and edit account details

August 31, 2022

Source: creators that use Snapchat’s TikTok clone Spotlight will now be paid millions per year, down from millions per week in 2021 and $1M per day in 2020 (Lauren Forristal/TechCrunch)

Lauren Forristal / TechCrunch:
Source: creators that use Snapchat’s TikTok clone Spotlight will now be paid millions per year, down from millions per week in 2021 and $1M per day in 2020 — Snapchat has changed the way it pays creators through its Spotlight reward fund. Creators that use Snapchat’s TikTok clone …

October 27, 2022

A look at the Rust programming language after 12 years, evolving from side project to robust ecosystem, as developers praise its security, ease, and performance (Lily Hay Newman/Wired)

Lily Hay Newman / Wired:
A look at the Rust programming language after 12 years, evolving from side project to robust ecosystem, as developers praise its security, ease, and performance — Rust makes it impossible to introduce some of the most common security vulnerabilities. And its adoption can’t come soon enough.

November 5, 2022

Amazon’s “Bird’s Eye View” 3D motion detection tech comes to Spotlight Cam Pro, and the Astro robot gets Virtual Security Guard integration for small businesses (Daniel Cooper/Engadget)

Daniel Cooper / Engadget:
Amazon’s “Bird’s Eye View” 3D motion detection tech comes to Spotlight Cam Pro, and the Astro robot gets Virtual Security Guard integration for small businesses — We’ve already seen Ring add Bird’s Eye View — its fancy 3D motion detection — to its flagship security camera and its flagship outdoor light camera.

September 28, 2022

Related Articles