LATEST ARTICLES

Why Should Companies migrate from SDLC to Secure SDLC

Security has always been considered a luxury by most of enterprises, the majority being SMBs. But looking at the recent sophisticated attacks like the...
Enterprise Security|CyberSecurity|Cyber Crime

Why cybersecurity is essential for small businesses

Cybersecurity is a common term for every business but how seriously is it taken? Small businesses often have no budget set aside for cybersecurity...

Celebrating Cyber Security Awareness Month by creating Awareness

Technology has made life easier not only households but also businesses. However, technology has also paved way for cybercriminals to spread their roots and...

Persistent XSS to Steal Passwords – Paypal

Note: This bug has been reported via Paypal bug bounty program and is fixed now. POC FIRST? https://www.youtube.com/watch?v=_OfzLvqytnU&feature=youtu.be There are days when we get to test different...

XSS by tossing cookies

All cross site scripting vulnerabilities cannot be exploited easily and would need a vulnerablity chain to exploit them For example a self XSS that...

Fabric.io API permission apocalypse – Privilege Escalations

What Is Fabric.io? The Fabric platform is made of three modular kits that address some of the most common and pervasive challenges that all app...

How we tookover shopify accounts with one single click

To keep up with the security companies we often spend some time on bug bounties. That was a very boring weekend till we found...