Posted on Sep 17, 2020 11:41:14 AM
Jake Miller's recent blog on h2c request smuggling was covered in DarkReading In the post, Jake demonstrates how upgrading HTTP/1.1 connections to lesser-known HTTP/2 over cleartext (h2c) connections can allow a bypass of reverse …
Read Story
Posted on Sep 16, 2020 12:16:08 PM
Jake Miller's recent blog on h2c request smuggling was covered in Intigriti's Bug Bytes newsletter. In the post, Jake demonstrates how upgrading HTTP/1.1 connections to lesser-known HTTP/2 over cleartext (h2c) …
Read Story
Posted on Sep 11, 2020 12:19:17 PM
Jake Miller's recent blog on h2c request smuggling was covered in Hackaday. In the post, Jake demonstrates how upgrading HTTP/1.1 connections to lesser-known HTTP/2 over cleartext (h2c) connections can allow …
Read Story
Posted on Aug 31, 2020 4:41:20 PM
Bishop Fox's Associate Vice President of Consulting Daniel Wood was recently interviewed by Security Magazine. Daniel answered a variety of questions regarding cybersecurity best practices. Read more here …
Read Story
Posted on Aug 28, 2020 9:43:12 AM
Bishop Fox's recent advisory on the Zamzar API was covered in PortSwigger. Chris Flanagan discovered a high risk server-side request forgery vulnerability. Read more here …
Read Story
Posted on Aug 14, 2020 10:49:48 AM
Bishop Fox Lead Researcher Dan Petro was recently mentioned in Dark Reading in reference to best practices for remote workforces and advice on network segmentation. Read more here …
Read Story
Posted on Aug 13, 2020 10:13:32 AM
Bishop Fox's new tool Smogcloud was recently mentioned in CSO. Smogcloud enables security engineers, penetration testers, and AWS administrators to monitor the collective changes that create dynamic and ephemeral internet-facing …
Read Story
Posted on Aug 13, 2020 10:00:53 AM
Bishop Fox's recent advisory on the TinyMCE application version 5.2.1 was covered in Threatpost. George Steketee and Chris Davis discovered a high risk cross-site scripting vulnerability. Read more here …
Read Story
Posted on Aug 13, 2020 9:53:33 AM
Bishop Fox's recent advisory on the TinyMCE application version 5.2.1 was covered in SecurityWeek. George Steketee and Chris Davis discovered a high risk cross-site scripting vulnerability. Read more here …
Read Story
Posted on Aug 13, 2020 9:51:21 AM
Bishop Fox's recent advisory on the TinyMCE application version 5.2.1 was covered in PortSwigger. George Steketee and Chris Davis discovered a high risk cross-site scripting vulnerability. Read more here …
Read Story
){kind=icon}
){kind=icon}
