XSS Hunter, a popular tool for detecting cross-site scripting (XSS) bugs on sites, now belongs to Truffle Security who have launched a new version with enhanced security features. Given that XSS is a frequent vulnerability (about 23% of the bug reports submitted to bug bounty platform HackerOne), the tool’s modifications should mitigate its previous data leakage risks. The new version also supports detection of other vulnerabilities like cross-origin resource sharing (CORS) misconfigurations and scans for source code leaks.
Securonix Threat Labs 2024 Annual Autonomous Threat Sweeper (ATS) Intelligence Insights
2024 saw the evolution of cyber threats, with attacks on widely-used technologies like VPNs, advanced phishing campaigns, and exploitations of cloud services for malware distribution.
