New HackRF Case for Devs & Pentesters Released (ABS & PLA)

Wednesday, July 11, 2018
Posted by Editorial_Staff_Team
Top Stories
0 comment(s)
Reader's rate:
5
New HackRF Case Available (ABS & PLA) HackRF One first version is part of great scott gadgets which is a software defined radio peripheral capable of transmission or reception of radio signals from 1 MHz to 6 GHz. The HackRF One can send and receive almost any radio signal. This allows... + continue reading

AT&T Corporation - Lab uncovers new details about BizCircle Vulnerabilities

Thursday, July 5, 2018
Posted by Editorial_Staff_Team
Bug Bounty
2 comment(s)
Reader's rate:
5
AT&T BizCircle - Frontend & Backend Vulnerabilities Last month, researchers in our laboratory conducted in-depth safety tests on the AT&T BizCircle Platform. This has identified a number of security holes that AT&T has now eliminated. The core researchers in the laboratory go... + continue reading

PayPal Inc Increases Bug Bounty Payments in 2018 up to 30.000$

Tuesday, March 13, 2018
Posted by Editorial_Staff_Team
Bug Bounty
1 comment(s)
Reader's rate:
5
Bug Bounty Program increases payments for researchers in 2018 Today in the morning the paypal inc bug bounty program updated again within one month the official bug bounty program conditions. The newst update of j.p. morgan increases the payment amounts to a new stage for participating security... + continue reading

PayPal Inc Updates the Bug Bounty Program with Venmo Payments Services

Tuesday, February 27, 2018
Posted by Editorial_Staff_Team
Bug Bounty
0 comment(s)
Reader's rate:
5
PayPal Inc - Venmo Bug Bounty Program Today in the morning paypal inc announced its newst updates of the bug bounty program. The new service is called "Venmo" and became to today official part of the bug bounty program. For the program the official terms and process for submitting... + continue reading

Intel expands the own Bug Bounty Program for Security Researchers

Saturday, February 24, 2018
Posted by Editorial_Staff_Team
Bug Bounty
0 comment(s)
Reader's rate:
5
Intel Bug Bounty Program for Public Researchers Intel decided latly after the incident of the last year with meltdown, spectre and other security issues that the bug bounty program will expand and be opened to other international security researchers. The upcoming updates are announced in a web... + continue reading

Banknotes Misproduction security & biometric weakness

Monday, January 29, 2018
Posted by Editorial_Staff_Team
Top Stories
0 comment(s)
Reader's rate:
3.6
Banknotes Misproduction security & biometric weakness In the last months vulnerability lab team reviewed the new 20€ & 50€ banknotes of the european central bank. One of our core team researchers identified that for the security sign of the holograms are different components in... + continue reading

Wickr Inc - App Clock & Message Deletion Glitch

Thursday, January 4, 2018
Posted by Editorial_Staff_Team
Bug Bounty
0 comment(s)
Reader's rate:
4.833335
Independent Researcher scores in Wickr Inc Bug Bounty Program The security researcher Hanno Horrmeyer uncovered a vulnerability in the wickr inc ios and android application in 2017 Q1-2. He began to research for other program participants and teams after his disclosure to the bug bounty program... + continue reading

Edward Snowden free speech at JBFone - Data Security & Privacy

Friday, November 24, 2017
Posted by Editorial_Staff_Team
Security Events
1 comment(s)
Reader's rate:
4.5
Legendary free speech - You are the Key! In the last weeks we got invited to the very famous JBFone Conference organized by the Fiducia & GAD IT AG. The Fiducia & GAD IT AG is a public corporation at the stock-market and reliable for the most german or european volksbanks. Fiducia... + continue reading

Google starts new - Security Reward Program for Android Apps

Friday, October 20, 2017
Posted by Editorial_Staff_Team
Bug Bounty
0 comment(s)
Reader's rate:
5
Google Play Store starts Bug Bounty Program for Apps Today the google security team announced to startup a new bug bounty program for the google play store android application. The program is open to random developers and chosen constituents of researchers. In a public blogpost the company... + continue reading

Featured Cooperative Security Articles

New HackRF Case for Devs & Pentesters Released (ABS & PLA)

Wednesday, 11/07/18 - 0 comment(s)
New HackRF Case Available (ABS & PLA) HackRF One first version is part of great scott gadgets which is a software defined radio peripheral capable of transmission or reception of radio signals from 1 MHz to 6 GHz. The HackRF One can send and receive almost any radio signal. This allows pentesters to disable smarthome alarm systems, open... + continue reading

AT&T Corporation - Lab uncovers new details about BizCircle Vulnerabilities

Thursday, 05/07/18 - 2 comment(s)
AT&T BizCircle - Frontend & Backend Vulnerabilities Last month, researchers in our laboratory conducted in-depth safety tests on the AT&T BizCircle Platform. This has identified a number of security holes that AT&T has now eliminated. The core researchers in the laboratory go into more detail in the article. This time the... + continue reading

Jump back to navigation

TOP SECURITY STORIES

New HackRF Case for Devs & Pentesters Released (ABS & PLA)

Wednesday, 11/07/18 - 0 comment(s)
New HackRF Case Available (ABS & PLA) HackRF One first version is part of great scott gadgets which is a software defined radio peripheral capable of transmission or reception of radio... + continue reading

Banknotes Misproduction security & biometric weakness

29/01/18 - 0 comment(s)

US Military starts official "Hack the Army" Bug Bounty Program

14/11/16 - 1 comment(s)

Wickr Inc - When honesty disappears behind the VCP Mountain

27/10/16 - 5 comment(s)

+ View all
Jump back to navigation

BUG BOUNTY ISSUES

AT&T Corporation - Lab uncovers new details about BizCircle Vulnerabilities

Thursday, 05/07/18 - 2 comment(s)
AT&T BizCircle - Frontend & Backend Vulnerabilities Last month, researchers in our laboratory conducted in-depth safety tests on the AT&T BizCircle Platform. This has identified a... + continue reading

PayPal Inc Increases Bug Bounty Payments in 2018 up to 30.000$

13/03/18 - 1 comment(s)

PayPal Inc Updates the Bug Bounty Program with Venmo Payments Services

27/02/18 - 0 comment(s)

Intel expands the own Bug Bounty Program for Security Researchers

24/02/18 - 0 comment(s)

+ View all
Jump back to navigation

VULNERABILITIES & BUGS

Lab Researcher discovered Microsoft Skype Denial of Service Vulnerability

Thursday, 29/03/18 - 1 comment(s)
Microsoft Skype Mobile v8.x - Remote Denial of Service Vulnerability Vulnerability Labs core team discovered a new denial of service vulnerability and rendering problem in Skype Mobile Client v8.... + continue reading

Apple iOS v10.2 & v10.3 - SMS Reply Access Permission Vulnerability

14/08/17 - 2 comment(s)

Stack Buffer Overflow Zero Day Vulnerability uncovered in Microsoft Skype v7.2, v7.35 & v7.36

28/05/17 - 2 comment(s)

Adobe Connect v9.5.6 - (CVE-2016-7851) Persistent Cross Site Vulnerability

10/11/16 - 0 comment(s)

+ View all
Jump back to navigation

BEST SECURITY VIDEOS

PayPal Inc patched medium severity Cross Site Request Forgery Issue

Tuesday, 25/08/15 - 0 comment(s)
PayPal Inc patched medium severity Cross Site Request Forgery Issue The independent and individual vulnerability laboratory researcher paresh parmar discovered during the participate in the... + continue reading

Shopify | Buy Button | Persistent Embed POST Inject Vulnerability

13/08/15 - 8 comment(s)
UBNT Bug Bounty #3 - Persistent Filename Vulnerability

UBNT Bug Bounty #3 - Persistent Filename Vulnerability

11/08/15 - 0 comment(s)

Ebay Inc coordinated patch of 3 Magento Vulnerabilities (IVE, XSS & CSRF)

23/06/15 - 1 comment(s)

+ View all
Jump back to navigation

LAB MAGAZINE ISSUES

Welcome to "Vulnerability Magazine"

Wednesday, 12/03/14 - 1 comment(s)
Vulnerability Magazine Welcome to the Vulnerability Magazine! The the vulnerability magazine, publishes the latest vulnerabilities and security informations from our laboratory infrastructure.... + continue reading

+ View all
Jump back to navigation

IT-SECURITY EVENTS

Edward Snowden free speech at JBFone - Data Security & Privacy

Friday, 24/11/17 - 1 comment(s)
Legendary free speech - You are the Key! In the last weeks we got invited to the very famous JBFone Conference organized by the Fiducia & GAD IT AG. The Fiducia & GAD IT AG is a public... + continue reading

Internet Security Conference 2017 by Qihoo 360

22/09/17 - 0 comment(s)

Manchester City - Football Club hosts first Hackathon in July 2016

05/07/16 - 0 comment(s)

Hack in the Box | Amsterdam 2015 | HITB

31/05/15 - 3 comment(s)

+ View all
Jump back to navigation

Wed
11
Jul
Editorial_Staff_Team's picture

New HackRF Case for Devs & Pentesters Released (ABS & PLA)

Submitted by Editorial_Staff_Team on Wed, 07/11/2018 - 13:34

New HackRF Case Available (ABS & PLA)

HackRF One first version is part of great scott gadgets which is a software defined radio peripheral capable of transmission or reception of radio signals from 1 MHz to 6 GHz. The HackRF One can send and receive almost any radio signal. This allows pentesters to disable smarthome alarm systems, open cars and intercept SMS messages. Even telephone calls can be tapped or simply listed by the frequence. The hackrf device is well known in the it-security business by researchers and developers.

Normally the hackrf is delivered with a hard metal case, metal plates and some screws like you can see in the following picture.

Thu
05
Jul
Editorial_Staff_Team's picture

AT&T Corporation - Lab uncovers new details about BizCircle Vulnerabilities

Submitted by Editorial_Staff_Team on Thu, 07/05/2018 - 14:40

AT&T BizCircle - Frontend & Backend Vulnerabilities

Last month, researchers in our laboratory conducted in-depth safety tests on the AT&T BizCircle Platform. This has identified a number of security holes that AT&T has now eliminated. The core researchers in the laboratory go into more detail in the article.

This time the reported security vulnerabilities of the core team were limited to the frontend and backend management of the BizCircle application. Validation weaknesses and output errors in the user profile of the application were exploited. These allowed an attacker to inject malicious script code with persistent attack vectors. The affected entries were e.g. display name, first name & load name.

Pages

Subscribe to Vulnerability Magazine - Bug Bounties, Acknoweldgements & Security Research RSS

Syndicate

Subscribe to Syndicate