If you use Twitter for Android and want your tweets to be private, you may want to play safe and review your settings. Twitter has disclosed that it’s fixed a bug that, for more than four years, made the private (aka ‘protected’) tweets of some of the platform’s users public. The flaw affected an unknown number … More Twitter bug may have exposed private tweets of Android users for years
The program with a prize pool of almost US$1 million aims to leverage the ‘power of the crowd’ in order to prevent another Heartbleed. The European Union (EU) is rolling out a bug bounty scheme on some of the most popular free and open source software around in a bid to ultimately make the internet … More EU offers bug bounties on popular open source software
The flaw affected one of the platform’s APIs between May 2017 and September 10 of this year, when it was patched “within hours”. Twitter has fixed a bug that is believed to have shared Direct Messages (DMs) and protected Tweets of some users with developers who were not authorized to access that information. According to the … More Twitter patches bug that may have spilled users’ private messages
The discovery was made barely two days after the release of a patch that fixes the critical flaw in the web application framework. Researchers have discovered freely available proof-of-concept (PoC) code that can be used to exploit a critical security hole in the Apache Struts 2 web application framework shortly after the vulnerability was disclosed … More PoC targeting critical Apache Struts bug found online
The slew of vulnerabilities – since patched – were found without the use of automated testing tools. A team of seven researchers has discovered more than 20 security vulnerabilities in OpenEMR, an open-sourceapplication used worldwide for the electronic management of the medical records of almost 100 million people. In keeping with the principles of responsible disclosure, … More Software bugs put nearly 100 million health records at risk of exposure
ESET Ireland 