Source
PortSwigger
Bug Bounty Radar // The latest bug bounty programs for September 2021
New web targets for the discerning hacker
Microsoft Exchange Server had ‘ProxyToken’ vulnerability that leaked incoming emails
Patched authentication bypass comes in wake of widespread exploitation of ‘ProxyShell’ vulnerabilities
Deserialization bug in TensorFlow machine learning framework allowed arbitrary code execution
Developers revoke YAML support to protect against exploitation
Microsoft warns of critical Azure Cloud vulnerability impacting Cosmos DB accounts
Researchers say the issue has been exploitable for ‘months’
Annke network video recorder vulnerability could see attackers seize control of security cameras
Malicious hackers could access and delete footage or disable cameras
Ransomware attack at Singapore eye clinic potentially breaches 73,000 patients’ data
Healthcare provider hit by cyber-attack earlier this month
Cybercrime triathlete jailed for 11 years over trio of online scams
Romanian national sent down after admitting vishing, phishing, and money laundering rackets
‘Trilateration’ vulnerability in dating app Bumble leaked users’ exact location
Attack built on previous Tinder exploit earned researcher – and ultimately, a charity – $2k
Breach at Deep South allergy clinic group exposed the health info of estimated 9,800 patients
Data leak might be linked to ransomware gang's data dump
UK firm accused of bullying small businesses with CSP patent infringement letters backtracks
Datawing disavows CSP nonce legal offensive