This segment is sponsored by Flashpoint. Visit https://securityweekly.com/flashpoint to learn more about them! Recent leaks tied to LockBit and Black Basta have exposed the inner workings of two of the most notorious ransomware groups—revealing their tactics, negotiation strategies, and operational infrastructure. For defenders, this rare window in...
Bounties of up to $1 million will be provided by the Zero Day Initiative for cybersecurity researchers reporting a zero-click remote code execution exploit in WhatsApp at this year's Pwn2Own Ireland hacking contest, which is co-sponsored by WhatsApp parent firm Meta, QNAP, and Synology, BleepingComputer reports.
Aeroflot, Russia's flag carrier, had travel information purportedly from its CEO Sergei Aleksandrovsky leaked by Belarusian hacktivist operation Cyber Partisans after Russian internet watchdog Roskomnadzor refuted any data breach resulting from last week's massive cyberattack that has prompted the cancellation of more than 50 flights, reports The Record, a news site by cybersecurity firm Recorded Future.
Up to $40,000 in rewards will be given by Microsoft for critical .NET and ASP.NET Core remote code execution and privilege escalation bugs as part of its upgraded .NET bug bounty program that seeks to better reflect the challenges in discovering such vulnerabilities, BleepingComputer reports.
GBHackers News reports that decentralized perpetual exchange GMX had $42 million in cryptocurrency assets pilfered from its users through the exploitation of a flaw in the GMX V1 smart contract architecture returned by an ethical hacker, who was given a $5 million reward for his efforts. "After payment of a $5 million bounty to the user, the remaining funds are now safely in the GMX Security Multisig.
The crypto world is rife with smart contracts that have been outsmarted by attackers, with consequences in the millions of dollars (and more!). Shashank shares his research into scanning contracts for flaws, how the classes of contract flaws have changed in the last few years, and how optimistic we can be about the future of this space. Segment Res...
