$12.50 per vulnerability, only to be spent in the Yahoo Company Store, mind you, is what security researchers got for finding four XSS vulnerabilities. The security outfit, High-Tech Bridge, is understandably a bit miffed.
A 17-year-old German student says he found a bug on PayPal's site but the company won't fork over the reward money. PayPal said someone had already found the bug but they also cited an age guideline that isn't actually included in its bug bounty program guidelines.
Apple has had a good-bad-good-bad week of it in the computer security environment.
Its announcement of two-step verification for some users was quickly followed by a report of a password recovery exploit for everyone else...
Apple's latest update to iOS just came out.
Version 5.1.1 is more than just a cosmetic fix: it patches at least three security flaws, all of which should be considered serious.
A grey hat hacker has discovered cross-site scripting (XSS) holes in 25 UK online stores that are certified as safe by the likes of VeriSign, Visa, and MasterCard.
Researchers discovered a cross-site scripting flaw in WordPress 3.3 yesterday that only occurs if you ran the installation with an IP address instead of a domain name. WordPress 3.3.1 is now available to fix the vulnerability.
Sony Music Portugal is the latest Sony asset to be targeted by hackers. Is there light at the end of the tunnel? Are there other Sony websites that are still flawed?
Don't just read the latest computer security news - watch it in 90 seconds! This month: when internet access chose the government; Adobe battles another zero-day; Twitter suffers XSS woes; and the Stuxnet malware keeps on making the wrong headlines. Read more…