Monday, January 29, 2018
Posted by Editorial_Staff_Team
Reader's rate:
3.6
Banknotes Misproduction security & biometric weakness In the last months vulnerability lab team reviewed the new 20€ & 50€ banknotes of the european central bank. One of our core team researchers identified that for the security sign of the holograms are different components in... + continue reading
Thursday, January 4, 2018
Posted by Editorial_Staff_Team
Reader's rate:
4.81818
Independent Researcher scores in Wickr Inc Bug Bounty Program The security researcher Hanno Horrmeyer uncovered a vulnerability in the wickr inc ios and android application in 2017 Q1-2. He began to research for other program participants and teams after his disclosure to the bug bounty program... + continue reading
Friday, November 24, 2017
Posted by Editorial_Staff_Team
Reader's rate:
4.42857
Legendary free speech - You are the Key! In the last weeks we got invited to the very famous JBFone Conference organized by the Fiducia & GAD IT AG. The Fiducia & GAD IT AG is a public corporation at the stock-market and reliable for the most german or european volksbanks. Fiducia... + continue reading
Friday, October 20, 2017
Posted by Editorial_Staff_Team
Reader's rate:
5
Google Play Store starts Bug Bounty Program for Apps Today the google security team announced to startup a new bug bounty program for the google play store android application. The program is open to random developers and chosen constituents of researchers. In a public blogpost the company... + continue reading
Friday, September 22, 2017
Posted by Editorial_Staff_Team
Reader's rate:
5
German security experts speech in front of 31,000 people The german security expert and ceo of the evolution security gmbh and founder of the vulnerability laboratory was invited as keynote speaker to the official internet security conference 2017 in beijing china. In 2017 the official topic of... + continue reading
Monday, August 14, 2017
Posted by Editorial_Staff_Team
Reader's rate:
5
Apple iOS v10.2 & v10.3 - SMS Reply & Answer Function During the last months we had setup a mobile forensic laboratory in our office to reproduce and uncover more new mobile zero-day vulnerabilities. Our first investigation was in a code lock functions of the settings - passcode module... + continue reading
Sunday, May 28, 2017
Posted by Editorial_Staff_Team
Reader's rate:
5
Stack Buffer Overflow Vulnerability in Skype v7.2, v7.35 & v7.36 Security researchers of the vulnerability laboratory core research team uncovered a critical vulnerability in skype v7.2, v7.35 & v7.36 for microsoft windows. The vulnerability was discovered during a team conference in... + continue reading
Tuesday, May 16, 2017
Posted by Editorial_Staff_Team
Reader's rate:
5
PayPal Inc - New Scope & Program Guidelines It was a bit silent around the independent paypal inc bug bounty program within the last year, because the developers were silently programming and designing new stable updates. Today in the morning the paypal inc company announced several new... + continue reading
Tuesday, January 3, 2017
Posted by Editorial_Staff_Team
Reader's rate:
4.4
Telekom Cloud - MyworkPlace Business Frontend & Backend Vulnerabilities Researchers of the vulnerability laboratory core team discovered multiple persistent cross site scripting web vulnerabilities to the telekom cert team in mid december 2016. The security vulnerabilities was located in... + continue reading

Featured Cooperative Security Articles

Monday, 29/01/18 - 0 comment(s)
Banknotes Misproduction security & biometric weakness In the last months vulnerability lab team reviewed the new 20€ & 50€ banknotes of the european central bank. One of our core team researchers identified that for the security sign of the holograms are different components in usage. The security signs are build by the European... + continue reading
Thursday, 04/01/18 - 0 comment(s)
Independent Researcher scores in Wickr Inc Bug Bounty Program The security researcher Hanno Horrmeyer uncovered a vulnerability in the wickr inc ios and android application in 2017 Q1-2. He began to research for other program participants and teams after his disclosure to the bug bounty program was not correctly acknowledged. After a short... + continue reading

TOP SECURITY STORIES

Monday, 29/01/18 - 0 comment(s)
Banknotes Misproduction security & biometric weakness In the last months vulnerability lab team reviewed the new 20€ & 50€ banknotes of the european central bank. One of our core... + continue reading

BUG BOUNTY ISSUES

Thursday, 04/01/18 - 0 comment(s)
Independent Researcher scores in Wickr Inc Bug Bounty Program The security researcher Hanno Horrmeyer uncovered a vulnerability in the wickr inc ios and android application in 2017 Q1-2. He began... + continue reading

BEST SECURITY VIDEOS

Tuesday, 25/08/15 - 0 comment(s)
PayPal Inc patched medium severity Cross Site Request Forgery Issue The independent and individual vulnerability laboratory researcher paresh parmar discovered during the participate in the... + continue reading

IT-SECURITY EVENTS

Friday, 24/11/17 - 0 comment(s)
Legendary free speech - You are the Key! In the last weeks we got invited to the very famous JBFone Conference organized by the Fiducia & GAD IT AG. The Fiducia & GAD IT AG is a public... + continue reading
Fri
20
Oct
Editorial_Staff_Team's picture

Google starts new - Security Reward Program for Android Apps

Google Play Store starts Bug Bounty Program for Apps

Today the google security team announced to startup a new bug bounty program for the google play store android application. The program is open to random developers and chosen constituents of researchers.

In a public blogpost the company announced "". We all was awaiting that event for over some years, due to the quality of the applications in the google app store went massively down during the last years.

Fri
22
Sep
Editorial_Staff_Team's picture

Internet Security Conference 2017 by Qihoo 360

German security experts speech in front of 31,000 people

The german security expert and ceo of the evolution security gmbh and founder of the vulnerability laboratory was invited as keynote speaker to the official internet security conference 2017 in beijing china. In 2017 the official topic of the internet security conference is as follows "Of all Things Human is the Measure".

Mon
14
Aug
Editorial_Staff_Team's picture

Apple iOS v10.2 & v10.3 - SMS Reply Access Permission Vulnerability

Apple iOS v10.2 & v10.3 - SMS Reply & Answer Function

During the last months we had setup a mobile forensic laboratory in our office to reproduce and uncover more new mobile zero-day vulnerabilities. Our first investigation was in a code lock functions of the settings - passcode module and the keyboard suggestion option. To explain the full impact we need to demonstrate the functionalities ago.

The "Answer with Message / Reply with message" allows a local idevice user to answer only to the caller with a customized or automated SMS one time. The function is available in the settings - touch id & code module. After activation of the setting, the idevice owner is able to answer directly to the caller by one sms.The answer as reply runs by the basic sms function over the provider and can generate costs.

Pages

Subscribe to VULNERABILITY MAGAZINE - Bug Bounties, Acknoweldgements & Security Research RSS