HackerOne
Latest
Sony starts a PlayStation bug bounty program
Sony has launched a bug bounty program that anyone can participate in, and rewards for reporting critical PS4 vulnerabilities start at $50,000, Sony Senior Director of Software Engineering Geoff Norton wrote on the PlayStation blog.
Facebook wants to help small businesses protect your privacy
Data privacy is a continually growing concern in the wake of news of election tampering and Cambridge Analytica scandals. As the EU's General Data Protection Regulations (GDPR) take full effect, it's not only big corporations that need to be wary of protecting their users' privacy. Facebook is now partnering with TeachPrivacy in the US for community events held to train small and medium businesses on ten specific things they need to know about customer data protection. Sessions will be held in Baltimore, New Orleans, San Diego, Palo Alto and Edison, New Jersey. Facebook is working with the Promontory consulting group to train folks in the EU, as well.
Coinbase bug could have let anyone give themselves free ether
Cryptocurrency exchanges have had a fair share of justified criticism. They can be high-value targets for criminals, easy to hide from the IRS and easily affected by tech issues. Luckily, thanks to a bug report by financial security outfit VI Company, a nasty bug in Coinbase's cryptocurrency system has been found and fixed. The researchers found that users could add unlimited ether to their Coinbase account with some simple, easily replicated steps.
Air Force security hackathon leads to record payout
The US Air Force's second security hackathon has paid dividends... both for the military and the people finding holes in its defenses. HackerOne has revealed the results of the Hack the Air Force 2.0 challenge from the end of 2017, and it led to volunteers discovering 106 vulnerabilities across roughly 300 of the USAF's public websites. Those discoveries proved costly, however. The Air Force paid out a total of $103,883, including $12,500 for one bug -- the most money any federal bounty program has paid to date.
The enduring myth of the hacker boy-band
Last week, Wired magazine published a sprawling feature on a group of young hackers the magazine claimed would "make us or break us" with their "exceptional talent." The article fawningly profiled each member of a group of Northeastern University college students who would "soon dominate technology -- and shape our future."