Dropbox uncovers 264 vulnerabilities in HackerOne Singapore bug hunt

Dropbox has uncovered 264 vulnerabilities, paying out $319,300 in bounties, after a one-day bug hunt in Singapore that brought together hackers from 10 nations around the world. Hosted by bug bounty platform HackerOne, the live event saw 45 of its members from countries such as Japan, India, Australia, Hong Kong, and Sweden, and some as young as 19, band together in the city-state in an attempt to infiltrate Dropbox’s targeted systems.

The cloud storage vendor days earlier had revealed parts of its “attack” scope, so HackerOne members had already identified and submitted dozens of potential bugs before the live event. According to a company spokesperson, the focus this time was on Dropbox and its recent acquisition of digital workflow platform, HelloSign.

Read more…
Source: ZDNet