The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a serious warning about ongoing cyberattacks targeting SaaS infrastructures—highlighting a breach involving Commvault’s Metallic SaaS...
SoloSecurities
Editor’s pick
This week’s hottest
Apple Releases Urgent Security Update for WebKit Zero-Day
Introduction Apple has once again stepped up to reinforce the security of its ecosystem by releasing a crucial patch for a zero-day vulnerability in its WebKit browser engine. The flaw, identified as CVE-2025-24201, has...
How earned $500 from Google – Flaw in Authentication
Hello Everyone! Today I will share the write-up of my first accepted bug in Google, Which is in “Google Cloud Partner Advantage Portal” where I was able to modify personal details for victim account via Broken...
Subdomain Takeover
What is a subdomain? A domain name typically has two parts: The top-level domain (TLD) is the extension, such as .com or .org, and the second-level domain (SLD) is the unique part of the domain name, often a business or...
Hackers Use Polymorphic Extensions to Hijack Browser Add-Ons & Steal Data
Introduction Cybersecurity researchers have uncovered a highly sophisticated attack technique that enables malicious browser extensions to impersonate any installed add-on. This novel approach, referred to as a...
Account Takeover (User + Admin) Via Password Reset
Hello Everyone! I’m Hemant Patidar, Final Year B.Tech – Civil Engineering Student at SRMIST, Chennai. A Cyber Security Enthusiast, Security Engineer, and a Bug Bounty Hunter by night. Let’s start… While...
Latest articles
