Videos

Mon
04
May
Editorial_Staff_Team's picture

Grindr Account System - Session Auth Bypass Vulnerability (Video)

Grindr Account System - Session Auth Bypass Vulnerability (Video)

Due to the successful participation in the bc flex security program the core team discovers today a security video that demonstrates a session auth bypass vulnerability in the grindr account system. The vulnerability has been patched in april next to the end of the bug bounty competition. The issue is that due to the password change the app is allowed to request through the browser the service.

Tue
03
Feb
Editorial_Staff_Team's picture

Facebook Security - 12.500$ Bug Bounty reward to Security Researcher

Facebook Security - 12.500$ Bug Bounty reward to Security Researcher

In may last year (2014) the vulnerability researcher "Joe Ballhis" discovered a zero-day vulnerability to the facebook security team due to the participation in the official bug bounty program. The issue has been patched by the facebook developer team within the last qarter of 2014.

Facebook confirmed the vulnerability and rewards the researcher with a 12.500$ bug bounty. A video demonstrates the vulnerability and captures the issue that was marked as critical by the facebook security team.

Pages

Subscribe to RSS - Videos