Imperial & Dabman Internet Radio - Undocumented Telnetd & Code Execution

Monday, September 9, 2019
Posted by Editorial_Staff_Team
Published Vulnerabilities
3 comment(s)
Reader's rate:
5
Undocumented Telnetd... + continue reading

GPSRP pays researchers for reporting abusiv google playstore apps

Monday, September 2, 2019
Posted by Editorial_Staff_Team
Bug Bounty
1 comment(s)
Reader's rate:
5
GPSRP pays researchers for reporting abusiv google playstore apps Adam Bacchus, Sebastian Porst, and Patrick Mutchler  of the  Android Security... + continue reading

Apple extends exisiting private bug bounty program at the end of the year

Friday, August 9, 2019
Posted by Editorial_Staff_Team
Top Stories
2 comment(s)
Reader's rate:
5
Apple Updates Bug Bounty Program Q4 In recent years, Apple and the company around cupertino have received massive criticism about the current Bug Bounty program. Among other things, well-known security researchers from the scene have criticized Apple for a faulty program, which attracts others but... + continue reading

Telekom Magenta Musik 360 - Multiple Cross Site Scripting Vulnerabilities

Thursday, March 7, 2019
Posted by Editorial_Staff_Team
Videos
1 comment(s)
Reader's rate:
5
Telekom Magenta Musik 360 - CERT Coordinates The videos shows the reproduce for the german telekom in a new service they did publish in 2019 Q1. The vulnerabilities are persistent and non-persistent cross site scripting issues within the front / backend of the online service. Remote attackers... + continue reading

Swiss Governemnt Starts E-Voting PIT Bug Bounty Program in February

Friday, February 15, 2019
Posted by Editorial_Staff_Team
Top Stories
1 comment(s)
Reader's rate:
5
Internation Bug Bounty Program to PenTest E-Voting System The federal government of switzerland offers hackers who can uncover vulnerabilities, privacy issues or simple bugs in its e-voting system up to 44,000 euros. International White Hat or ethics hackers are given the opportunity to... + continue reading

Apple iOS 12.0 - 12.1.1 - PassCode Bypass Vulnerability

Monday, December 24, 2018
Posted by Editorial_Staff_Team
Bug Bounty
0 comment(s)
Reader's rate:
5
Yes, we did it again! Due to the last few years we have discovered several problems that bypass the password protection mechanism of ios. In recent weeks we have discovered a new problem affecting the latest ios versions 12.1 and 12.1.1.1. The vulnerability allows password protection to be... + continue reading

Microsoft BingPlaces Business - (url) Redirect Vulnerability

Friday, November 16, 2018
Posted by Editorial_Staff_Team
Bug Bounty
2 comment(s)
Reader's rate:
5
Open Redirect in Microsoft BingPlaces Business uncovered Security researchers of the vulnerability laboratory uncovered this week an open redirect vulnerability in the famous microsoft bingplaces business web-application. The issue allows to redirect users by client-side get method request to... + continue reading

Google Expands Vulnerability Reward Program - Combat Platform Abuse in 2018

Monday, August 20, 2018
Posted by Editorial_Staff_Team
Bug Bounty
2 comment(s)
Reader's rate:
5
Google Expands Existing Bug Bounty Program in 2018 Google now wants to reward security researchers who are able to report methods of misuse of googles product series. Google has expanded its bug bounty program to include rewards that go beyond reporting specific vulnerabilities. Security... + continue reading

New Banana PI R1 SD V3 Case for Devs & PenTesters Available

Tuesday, July 24, 2018
Posted by Editorial_Staff_Team
Top Stories
0 comment(s)
Reader's rate:
5
New Banana PI R1 SD V3 Case Available The Banana Pi R1 is a router based on the same SoC as the M1 Classic Pi. The R1 is an open hardware router that runs on a variety of open source operating systems such as OpenWrt, Android and Bananian. The R1 has a slim router form factor with a bay for 2.5... + continue reading

Featured Cooperative Security Articles

Imperial & Dabman Internet Radio - Undocumented Telnetd & Code Execution

Monday, 09/09/19 - 3 comment(s)
Undocumented Telnetd... + continue reading

GPSRP pays researchers for reporting abusiv google playstore apps

Monday, 02/09/19 - 1 comment(s)
GPSRP pays researchers for reporting abusiv google playstore apps Adam Bacchus, Sebastian Porst, and Patrick Mutchler  of the  Android Security... + continue reading

Jump back to navigation

TOP SECURITY STORIES

Apple extends exisiting private bug bounty program at the end of the year

Friday, 09/08/19 - 2 comment(s)
Apple Updates Bug Bounty Program Q4 In recent years, Apple and the company around cupertino have received massive criticism about the current Bug Bounty program. Among other things, well-known... + continue reading

Swiss Governemnt Starts E-Voting PIT Bug Bounty Program in February

15/02/19 - 1 comment(s)

New Banana PI R1 SD V3 Case for Devs & PenTesters Available

24/07/18 - 0 comment(s)

Mozilla's New ASan Nightly Build Project Bug Bounty Program 2018

23/07/18 - 0 comment(s)

+ View all
Jump back to navigation

BEST SECURITY VIDEOS

Telekom Magenta Musik 360 - Multiple Cross Site Scripting Vulnerabilities

Thursday, 07/03/19 - 1 comment(s)
Telekom Magenta Musik 360 - CERT Coordinates The videos shows the reproduce for the german telekom in a new service they did publish in 2019 Q1. The vulnerabilities are persistent and non-... + continue reading

PayPal Inc patched medium severity Cross Site Request Forgery Issue

25/08/15 - 0 comment(s)

Shopify | Buy Button | Persistent Embed POST Inject Vulnerability

13/08/15 - 8 comment(s)
UBNT Bug Bounty #3 - Persistent Filename Vulnerability

UBNT Bug Bounty #3 - Persistent Filename Vulnerability

11/08/15 - 0 comment(s)

+ View all
Jump back to navigation

LAB MAGAZINE ISSUES

Welcome to "Vulnerability Magazine"

Wednesday, 12/03/14 - 1 comment(s)
Vulnerability Magazine Welcome to the Vulnerability Magazine! The the vulnerability magazine, publishes the latest vulnerabilities and security informations from our laboratory infrastructure.... + continue reading

+ View all
Jump back to navigation

IT-SECURITY EVENTS

Edward Snowden free speech at JBFone - Data Security & Privacy

Friday, 24/11/17 - 2 comment(s)
Legendary free speech - You are the Key! In the last weeks we got invited to the very famous JBFone Conference organized by the Fiducia & GAD IT AG. The Fiducia & GAD IT AG is a public... + continue reading

Internet Security Conference 2017 by Qihoo 360

22/09/17 - 0 comment(s)

Manchester City - Football Club hosts first Hackathon in July 2016

05/07/16 - 0 comment(s)

Hack in the Box | Amsterdam 2015 | HITB

31/05/15 - 3 comment(s)

+ View all
Jump back to navigation

Mon
09
Sep
Editorial_Staff_Team's picture

Imperial & Dabman Internet Radio - Undocumented Telnetd & Code Execution

Submitted by Editorial_Staff_Team on Mon, 09/09/2019 - 03:01

Undocumented Telnetd & Code Execution



A few weeks ago, in the context of a security, we had carried out individual investigations following an anomaly in a private network. Web radio terminals device of the company Telestar Digital GmbH were identified, which have an undocumented telnetd server. Since this seemed strange to us, we took a closer look at the services and other functions and found something amazing.

Mon
02
Sep
Editorial_Staff_Team's picture

GPSRP pays researchers for reporting abusiv google playstore apps

Submitted by Editorial_Staff_Team on Mon, 09/02/2019 - 19:01

GPSRP pays researchers for reporting abusiv google playstore apps




Adam Bacchus, Sebastian Porst, and Patrick Mutchler  of the  Android Security & Privacy Team, announced great news of a upcoming data protection and privacy reward program. This week google extends the scope of GPSRP to include all apps in Google Play with 100 million or more installations. These apps can now be rewarded even if the app developers (3rd party) don't have their own vulnerability or bug bounty program.

The GPSRP program, which was originally launched about 1 year ago, is still limited to reporting vulnerabilities only in very popular Android apps in the Google Play Store. Many of them have their own products.

Pages

Subscribe to Vulnerability Magazine - Bug Bounties, Acknoweldgements & Security Research RSS

Recent comments

Great one
FiroSolutions
you are dope man
Henrico
how grandios the way turns
Nagash
gsec could have done that
Geroldi
you believe in apple does
linus
gbe, many bb sites get higher
juqxue
Iyube
owoday
zrnscspw888@gmail.com
Justfog C601
jqgfehtix42r@gmail.com
バーバリー コピー
works great
Vimperator

Syndicate

Subscribe to Syndicate