Friday, September 18, 18:27
Home security Discovery of 264 vulnerabilities in Dropbox by hackers

Discovery of 264 vulnerabilities in Dropbox by hackers

dropboxOnline service storage, synchronization and file sharing, Dropbox, was found with 264 vulnerabilities discovered by 45 hackers.

It will take about 319.300 $ to cover security issues and ensure the huge number of Dropbox users.

The revelation was made in the framework of the regular bug bounty program, in which Dropbox, Inc. is of great importance, since the safety is an essential ingredient.

ZDNet focused on one of the younger hackers, Jack Cable. Cable is 19 years old and works for HackerOne since his 16 years. Has participated in more than 100 events and has identified 250 vulnerabilities. Cable believes that the "maturity" of targeting systems is crucial and that vulnerabilities there are always. According to his words, when you always look you find something. The issue is how companies handle the issue when vulnerability is found.

Dropbox systems are "mature" (running Hacker One program from 2015). That is why more effort is needed to identify vulnerabilities.

Rewards are defined as follows:

  • Remote Code Execution (RCE) on servers - 32768 $
  • Significant Identity Bypass - 17576 $
  • For forgery issues- 13824 $
  • Cross-site scripting at dropbox.com (on all browsers) - 12167 $

The HackerOne platform has done fantastic work with bug bounty programs from 2012. It has the potential of 390.000 hackers and has organized over 1.300 bug bounty programs. The platform takes care of the detection of errors in order to protect and secure systems, applications, services and the Internet in general.

LEAVE ANSWER

Please enter your comment!
Please enter your name here

Absent Mia
Absent Miahttps://www.secnews.gr
Being your self, in a world that constantly tries to change you, is your greatest achievement

LIVE NEWS

Group Tabs: Chrome will automatically create group Tabs

Google wants to rid users of manually creating tabs from users, so the Chromium team is testing it ...

Pinephone: The version with Manjaro Linux is now available for preorder

A few hours earlier, PINE64 announced that the new Pinephone 'Manjaro Community Edition' is now available for ...

Error allows remote code to run on Apple devices

Bugs found on iPhone, iPad and iPod have been fixed by Apple through new updates for iOS systems ...

The CEO of cyber fraud company NS8 has been arrested for fraud

The CEO of the NS8 cyber fraud company has been arrested and charged with defrauding the company's investors.

Critical cross-site scripting (XSS) vulnerabilities fixed in Drupal

This week, several cross-site scripting (XSS) bugs and vulnerabilities were fixed in the Drupal content management system (CMS) ...

Wikipedia: Economists prove its influence in tourism

Forget the glossy travel brochures and fancy websites. One of the most efficient ways in which his entrepreneurs ...

A driver of a Tesla was found asleep while his vehicle was moving at 150 km

Canadian police have charged a man with speeding and dangerous driving after he was found sleeping at the wheel of a motorhome ...

Groups of ransomware work together to carry out attacks

One of the most popular attacks in recent years is ransomware, which can have devastating consequences for a business. And...

The Rampant Kitten team steals 2FA codes through an Android malware

The security company Check Point stated that it has discovered an Iranian hacking team that has developed a special Android malware which is capable of ...

Hacker obtained information about the former Prime Minister of Australia through a post on Instagram

Alex Hope, an Australian hacker, managed in less than an hour to obtain his passport details and personal phone number ...