Source
PortSwigger
Pwn2Own Vancouver: 15th annual hacking event pays out $1.2m for high-impact security bugs
Tesla, Microsoft, and others targeted in hacking competition that saw Star Labs crowned ‘Masters of Pwn’
Chicago Public Schools data breach blamed on ransomware attack on supplier
Cybercrooks compromised server containing student course information and assessment data
Chicago Public Schools data breach blamed on third-party ransomware attack
Cybercrooks compromised server containing student course information and assessment data
Yik Yak fixes information disclosure bug that leaked users’ GPS location
Hairy MitM exploit independently discovered by two security researchers
Blockchain bridge Wormhole pays record $10m bug bounty reward
Critical security flaw patched on the same day it was submitted
WordPress theme Jupiter patches critical privilege escalation flaw
Users urged to update systems amid reports of active exploitation
Widespread Swagger-UI library vulnerability leads to DOM XSS attacks
Dozens of bugs reported with a backlog containing hundreds more
Revisions to US Computer Fraud and Abuse Act will not prosecute ‘good-faith’ security research
DoJ makes long-anticipated changes to established computer crime laws
US revises policy regarding Computer Fraud and Abuse Act, will not prosecute good faith research
DoJ makes long-anticipated changes to policy
Active attacks against VMware flaws prompts emergency update directive
CISA orders US federal agencies to implement patches ASAP