In an embarrassing twist, bug bounty platform HackerOne has paid a $20,000 reward to a researcher who reported a security flaw inadvertently caused by one of its staff during… a bug submission.
Monthly Archives: December 2019
Facebook suing ILikeAd for hijacking users’ ad accounts
Facebook says the company used celeb bait links to infect victims with malware and hijacked their ad accounts to sell diet pills.
$5m bounty set on the alleged head of Evil Corp banking Trojan group
Know where Maksim “Aqua” Yakubets is? Can you pry him out of Russia and his Lamborghinis? The biggest ever cybercrook reward awaits!
Mac users targetted by Lazarus ‘fileless’ Trojan
The Lazarus hacking group are trying to sneak a ‘fileless’ Trojan on to Apple computers, disguised as a fake cryptocurrency trading program.
US parents file class action against TikTok over children’s privacy
Collecting children’s data without their guardians’ consent is illegal under COPPA and already earned TikTok a huge fine.
Instagram trying to protect kids by getting dates of birth from new users
It’s about showing age-appropriate content, it said. Though staying safe from child-privacy lawsuits doesn’t hurt, either.
OpenBSD devs patch authentication bypass bug
One of the internet’s most popular free operating systems allowed attackers to bypass its authentication controls.
Cookie-stealing malware wants to know your Facebook ad budget
The AdKoob malware that sneakily peeks at how much you’re spending on ads is back.
iCloud-hacking politician to be sentenced on Christmas eve
Former Dutch city council member Mitchel van der K invaded hundreds of iCloud accounts “frequently and repeatedly”.
Machine-raiding Python libraries squashed by community
Python developers have once again fallen victim to malicious software libraries lurking in their favourite package manager.