Never miss a story

Get subscribed to our newsletter


×
Hackers have the power to bring down your website or your entire network if they so wish. Pixabay

Facing an embarrassing situation, San Francisco-based HackerOne which is a vulnerability coordination and bug bounty platform and boasts of clients like Starbucks, Instagram, Goldman Sachs, Twitter and Zomato, has paid $20,000 to a user who exposed a vulnerability in its own bug bounty platform.

The vulnerability was exposed by a user with the handle called “haxta4ok00” who has now been paid $20,000 by HackerOne.


“A hacker had access for a short time to information relating to other programmes running on the HackerOne platform.

“Less than 5 per cent of HackerOne programmes were impacted, and those programmes were contacted within 24 hours of report receipt,” HackerOne said in a statement this week.

The hacker, and HackerOne community member posted a report to the bug bounty platform: “I can read all reports @security and more programmes.”


While 85 per cent of people own a smartphone, 54 per cent believe the technology is spying on them. Pixabay

HackerOne responded: “We didn’t find it necessary for you to have opened all the reports and pages in order to validate you had access to the account. Would you mind explaining why you did so to us?”

Haxta4ok00 said: “I did it to show the impact. I didn’t mean any harm by it. I reported it to you at once. I was not sure that after the token substitution I would own all the rights. I apologise if I did anything wrong. But it was just a white hack.”

In August this year, HackerOne revealed that hackers earned $21 million in just a year reporting vulnerabilities via various bug bounty opportunities as governments’ efforts to fix malware increased a whopping 214 per cent globally.

Also Read: Delhi Breathes Hazardous Air, Once Again

Food delivery platform Zomato has paid more than $100,000 (over Rs 70 lakh) to 435 hackers to date for finding and fixing bugs on its platform.

With the help of HackerOne’s bug bounty programme since July 2017, Zomato has successfully resolved 775 vulnerabilities report.

Hacker-powered security is a technique that utilises collaboration with the hacker community to find unknown security vulnerabilities and reduce security risk. Popular examples include bug bounty programmes and vulnerability disclosure policies. (IANS)


Popular

Unsplash

The Microsoft office

Microsoft has disrupted the activities of a China-based hacking group, gaining control of the malicious websites the group used to attack organisations in the US and 28 other countries around the world.

The Microsoft Digital Crimes Unit (DCU) said in a statement that a federal court in Virginia granted its request to seize websites of the hacking group called 'Nickel', enabling the company to cut off Nickel's access to its victims and prevent the websites from being used to execute attacks.

Keep Reading Show less
Unsplash

MediaTek's plans to boost technology democratisation and enable access to disruptive connectivity

Chip manufacturer MediaTek on Monday announced that it is focused on making 2022 a year aimed at rapid growth, business success, substantial expansion in Research and Development capabilities.

MediaTek's plans to boost technology democratisation and enable access to disruptive connectivity with its range of mainstream to flagship 5G chips.

"We at MediaTek are focused on making 2022 a year aimed at rapid growth, business success, and substantial expansion in our R&D capabilities. For 2022, we are focused on further strengthening our presence in India, offering incredible experiences to customers, and supporting the country's technology initiatives with our expertise and collaboration with leading OEMs," Anku Jain, Managing Director, MediaTek India said in a statement.

Follow NewsGram on LinkedIn to know what's happening around the world.

In the flagship segment, MediaTek recently announced the Dimensity 9000 chip, which is a milestone of innovation and a rise to the incredible, built-to-power flagship 5G smartphones in the world, the company claims.

MediaTek Dimensity 9000 features a single Cortex-X2 performance core clocked at 3.05GHz, three Cortex-A710 cores at 2.85GHz and four Cortex-A510 efficiency cores at 1.8GHz.

It packs a 10-core Arm Mali-G710 that takes care of graphics processing, the report said.

Keep Reading Show less
Unsplash

There have already been voices in the US demanding most of the "China concept stocks" be removed from the US.

If the US loses Chinese companies, Wall Street will gradually alienate itself from the world's most prosperous market and the US will no longer be the true global financial centre, Chinese state media claimed.

Didi Chuxing, the Chinese ride-hailing giant, announced on Friday that the company is starting the work of delisting from the New York Stock Exchange (NYSE) and initiating preparations for listing in Hong Kong.

Keep reading... Show less