News

BUG BREAKDOWN: AUTH BYPASS, WORDPRESS AZURE AD SSO PLUGIN

Critical auth bypass in WordPress Azure AD SSO plugin due to missing OIDC id_token validation

Read More ->

YesWeHack is now an Offensive Security and Exposure Management platform

Map, test, fix, comply: unveiling our unified approach to offensive security

Read More ->

Continuous Pentesting with zero false positives: CONTINUOUS COVERAGE, 0 FALSE POSITIVES, FASTER REMEDIATION

Continuous Pentesting with zero false positives: a fully managed, platform-driven approach

Read More ->

Introducing Autonomous Pentest: identify actively exploited vulnerabilities across your attack surface

Read More ->

Introducing Autonomous Pentest: identify actively exploited vulnerabilities across your attack surface

Read More ->

Notepad++ hijack, pwning Claude Code, top web hacking techniques of 2025 – ethical hacker news roundup

Read More ->

Notepad++ hijack, pwning Claude Code, top web hacking techniques of 2025 – ethical hacker news roundup

Read More ->

An LLM or robot vulnerability researcher lacks intuition, looks confused

LLM bug hunters lack intuition, ‘security teams will consolidate visibility’ in 2026, EU Cyber Act vuln disclosure revisions – offsec roundup for CISOs

Read More ->

LLM bug hunters lack intuition, ‘security teams will consolidate visibility’ in 2026, EU Cyber Act vuln disclosure revisions – offsec roundup for CISOs

Read More ->

YesWeHack report 2026: the trends, insights and strategic shifts shaping offensive security

Read More ->

YesWeHack report 2026: the trends, insights and strategic shifts shaping offensive security

Read More ->

World Poker Tour and the Curry-Shah collab, in-flight exploits, does maths maketh the hunter? – ethical hacker news roundup

Read More ->

World Poker Tour and the Curry-Shah collab, in-flight exploits, does maths maketh the hunter? – ethical hacker news roundup

Read More ->

An increase in Bug bounty rewards depicted through piles of dollar coins and a bug

Cyber budgets still growing (but not fast enough), ‘AI and automation are operational imperatives’, the real-world impact of boosting Bug Bounty rewards – OffSec roundup for CISOs

Read More ->

Cyber budgets still growing (but not fast enough), ‘AI and automation are operational imperatives’, the real-world impact of boosting Bug Bounty rewards – OffSec roundup for CISOs

Read More ->

News

Critical auth bypass in WordPress Azure AD SSO plugin due to missing OIDC id_token validation

Map, test, fix, comply: unveiling our unified approach to offensive security

Continuous Pentesting with zero false positives: a fully managed, platform-driven approach

Introducing Autonomous Pentest: identify actively exploited vulnerabilities across your attack surface

Introducing Autonomous Pentest: identify actively exploited vulnerabilities across your attack surface

Notepad++ hijack, pwning Claude Code, top web hacking techniques of 2025 – ethical hacker news roundup

Notepad++ hijack, pwning Claude Code, top web hacking techniques of 2025 – ethical hacker news roundup

LLM bug hunters lack intuition, ‘security teams will consolidate visibility’ in 2026, EU Cyber Act vuln disclosure revisions – offsec roundup for CISOs

LLM bug hunters lack intuition, ‘security teams will consolidate visibility’ in 2026, EU Cyber Act vuln disclosure revisions – offsec roundup for CISOs

Introducing Autonomous Pentest: identify actively exploited vulnerabilities across your attack surface

YesWeHack report 2026: the trends, insights and strategic shifts shaping offensive security

YesWeHack report 2026: the trends, insights and strategic shifts shaping offensive security

World Poker Tour and the Curry-Shah collab, in-flight exploits, does maths maketh the hunter? – ethical hacker news roundup

World Poker Tour and the Curry-Shah collab, in-flight exploits, does maths maketh the hunter? – ethical hacker news roundup

Cyber budgets still growing (but not fast enough), ‘AI and automation are operational imperatives’, the real-world impact of boosting Bug Bounty rewards – OffSec roundup for CISOs

Cyber budgets still growing (but not fast enough), ‘AI and automation are operational imperatives’, the real-world impact of boosting Bug Bounty rewards – OffSec roundup for CISOs

YesWeHack report 2026: the trends, insights and strategic shifts shaping offensive security

MINDEF Launches Next Bug Bounty Programme with YesWeHack

MINDEF Launches Next Bug Bounty Programme with YesWeHack

YesWeHack marks first year of Bug Bounty partnership with Singapore government

YesWeHack marks first year of Bug Bounty partnership with Singapore government

Why ‘HTTP/1.1 must die’, Intel exploits, C# Random hack with no maths – ethical hacker news roundup

Why ‘HTTP/1.1 must die’, Intel exploits, C# Random hack with no maths – ethical hacker news roundup

MINDEF Launches Next Bug Bounty Programme with YesWeHack

Products

Researchers

Resources

Company

Follow us