This site uses cookies to improve your experience. By viewing our content, you are accepting the use of cookies. To help us insure we adhere to various privacy regulations, please select your country/region of residence. If you do not select a country we will assume you are from the United States. View our privacy policy and terms of use.

Remove fixing-data-breaches-part-4-bug-bounties
article thumbnail

Fixing Data Breaches Part 4: Bug Bounties

Troy Hunt

DECEMBER 20, 2017

Over the course of this week, I've been writing about "Fixing Data Breaches" which focuses on actionable steps that can be taken to reduce the prevalence and the impact of these incidents. The Mechanics of a Bug Bounty. The Economics of Breaches and Bug Bounties.

Data breaches 48
Data breaches Marketing Mining IT 48
article thumbnail

Fixing Data Breaches Part 5: Penalties

Troy Hunt

DECEMBER 21, 2017

In the first 4 parts of "Fixing Data Breaches", I highlighted education , data ownership and minimisation , the ease of disclosure and bug bounties as ways of addressing the problem. This part of the series is also the hardest to implement. This is an incident where 4.8

Data breaches 51
Data breaches GDPR Education Personal data 51
Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Trending Sources

article thumbnail

No, Spotify Wasn't Hacked

Troy Hunt

JANUARY 8, 2019

Clearly a Spotify breach, right? If they had a breach then yes, hashes may be cracked, but that's not what's happening here. Regular readers will appreciate the mechanics of this already but all those who I point here for whom this is new, this attack simply takes exposed credentials from a data breach and tries them on another site.

Passwords 90
Passwords Data breaches Security IT 90
article thumbnail

The Hacker Mind Podcast: Hunting The Next Heartbleed

ForAllSecure

NOVEMBER 24, 2020

It is a vulnerability in SSL/TLS, protocols that are designed to protect data in transit. 4 characters. 4 characters. It would be a massive data breach. there was no upper limit and returning more data than it should have been allowed. There are a lot of dupes reported with, say, bug bounties, for example.

Encryption 52
Encryption Artificial Intelligence Marketing Security 52
article thumbnail

The Hacker Mind Podcast: Hunting The Next Heartbleed

ForAllSecure

NOVEMBER 24, 2020

It is a vulnerability in SSL/TLS, protocols that are designed to protect data in transit. 4 characters. 4 characters. It would be a massive data breach. there was no upper limit and returning more data than it should have been allowed. There are a lot of dupes reported with, say, bug bounties, for example.

Encryption 52
Encryption Artificial Intelligence Marketing Security 52
article thumbnail

The Hacker Mind Podcast: Hunting The Next Heartbleed

ForAllSecure

NOVEMBER 24, 2020

It is a vulnerability in SSL/TLS, protocols that are designed to protect data in transit. 4 characters. 4 characters. It would be a massive data breach. there was no upper limit and returning more data than it should have been allowed. There are a lot of dupes reported with, say, bug bounties, for example.

Encryption 52
Encryption Artificial Intelligence Marketing Security 52
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

 

Stay Connected

Join 55,000+ Insiders by signing up for our newsletter

About
Webinars
Awards
About
Editions
Webinars
Awards
Editions
Topics
Twitter
Powered by Aggregage | Terms and Conditions | Your California Rights and Privacy Policy
© Aggregage 2024