HK
Heykuki News
Top
New
Best
Ask
Show
Jobs
Toggle theme
Top
New
Best
Ask
Show
Jobs
Request
61.
▲
US healthcare org sends data breach warning to 1.4m patients following
portswigger.net
2 comments
5 years ago
feross
10 points
62.
▲
‘Log4Shell’ vulnerability poses critical threat to applications using
portswigger.net
discuss
5 years ago
feross
10 points
63.
▲
JSON hijacking for the modern web
blog.portswigger.net
discuss
10 years ago
dsr12
10 points
64.
▲
French government visa website hit by cyber-attack that exposed applicants’
portswigger.net
discuss
5 years ago
feross
9 points
65.
▲
Bitwarden responds to encryption design flaw criticism
portswigger.net
2 comments
3 years ago
simonebrunozzi
8 points
66.
▲
Smashing the state machine: the true potential of web race conditions
portswigger.net
discuss
3 years ago
curling_grad
8 points
67.
▲
Top Hacks from Black Hat and DEF Con 2021
portswigger.net
discuss
5 years ago
feross
8 points
68.
▲
NMAP project latest victim of Google’s ‘wrongful blocking’ of cybersec resources
portswigger.net
discuss
5 years ago
kgu87
8 points
69.
▲
HTTP/1.1 must die: the desync endgame
portswigger.net
2 comments
a year ago
882542F3884314B
7 points
70.
▲
WordPress security plugin Hide My WP addresses SQL injection, deactivation flaws
portswigger.net
1 comment
5 years ago
feross
7 points
71.
▲
HTTP/2: The Sequel is Always Worse
portswigger.net
discuss
10 months ago
quicksilver03
7 points
72.
▲
Stealing passwords from infosec Mastodon – without bypassing CSP
portswigger.net
discuss
4 years ago
ghuntley
7 points
73.
▲
MFA Fatigue Attacks
portswigger.net
discuss
4 years ago
mooreds
7 points
74.
▲
Russian botnet ‘RSOCKS’ dismantled after hacking millions of devices
portswigger.net
discuss
4 years ago
shaunpud
7 points
75.
▲
Jenkins project succumbs to ‘mass exploitation’ of critical Atlassian Confluence
portswigger.net
discuss
5 years ago
feross
7 points
76.
▲
All Day DevOps: Third of Log4j downloads still pull vulnerable version despite
portswigger.net
2 comments
4 years ago
feross
6 points
77.
▲
Stealing HttpOnly cookies with the cookie sandwich technique
portswigger.net
discuss
a year ago
chillax
6 points
78.
▲
Stealing passwords from infosec Mastodon – without bypassing CSP
portswigger.net
discuss
4 years ago
bookofjoe
6 points
79.
▲
Google WAF bypassed via oversized POST requests
portswigger.net
discuss
4 years ago
feross
6 points
80.
▲
Implementing Tic Tac Toe with 170mb of HTML – No JavaScript or CSS
portswigger.net
1 comment
3 years ago
hackvertor
5 points
81.
▲
Microsoft Unveils ‘Super Duper Secure Mode’ in Latest Version of Edge
portswigger.net
1 comment
5 years ago
thunderbong
5 points
82.
▲
Listen to the whispers: web timing attacks that work
portswigger.net
discuss
2 years ago
dytir
5 points
83.
▲
Deserialized web security roundup – Fortinet, Citrix bugs; another Uber breach;
portswigger.net
discuss
4 years ago
feross
5 points
84.
▲
Security certification body (ISC)² defends ‘undemocratic’ bylaw changes
portswigger.net
discuss
4 years ago
mooreds
5 points
85.
▲
Security researchers blast CrowdStrike bug disclosure practices
portswigger.net
discuss
4 years ago
WaitWaitWha
5 points
86.
▲
‘Eternity malware’ offers Swiss Army knife of cybercrime tools
portswigger.net
discuss
4 years ago
feross
5 points
87.
▲
Tor Project heads to Russian court to appeal against censorship
portswigger.net
discuss
4 years ago
feross
5 points
88.
▲
Interpol arrests 1k suspects, seizes $27m in crackdown on cybercrime
portswigger.net
discuss
5 years ago
feross
5 points
89.
▲
NIST unveils draft criteria for ‘seal of approval’ scheme on consumer software
portswigger.net
4 comments
5 years ago
feross
4 points
90.
▲
Bitwarden responds to encryption design flaw criticism
portswigger.net
1 comment
3 years ago
favourable
4 points
More