Follow us
Hans Metsoja
Today we’re happy to announce the completion of an independent security audit of Opera’s free built-in browser VPN. Opera’s free, no-log, built-in browser VPN was originally launched as part of the PC browser in 2016 and later added to the Opera browser on Android. It provides our users with an enhanced level of browser privacy. ...
» Read moreOpera maintains both a public bug bounty program, and a private program, where security researchers can submit security issues they have found in Opera’s products for cash rewards. We like to highlight some of the issues that have been submitted, to educate the community about the types of issues they should be on the look-out...
» Read more
One of my earlier posts outlined how I had discovered six security vulnerabilities in the Privoxy software using the technique of fuzzing to cause the software to crash. This post outlines how I discovered three more vulnerabilities in Privoxy related to a non-crashing vulnerability: memory leaks. In many ways, fuzzing is much more than just...
» Read moreThe story of how Joshua Rogers found several CVEs in The Squid Caching Proxy
» Read more
Opera Team
Continuing from his previous post, Bug Bounty Hunter Renwa writes about the second vulnerability he submitted to Opera's Bug Bounty Programme: a Remote Code Execution in Opera's My Flow Feature. What follows is his write-up and experience.
» Read more
Opera Team
Opera manages a Bug Bounty program where researchers can report vulnerabilities in Opera's software and be rewarded for it. For high quality reports, we like to invite researchers to write about their findings. In this post, Opera's Security Team has invited Bug Bounty Hunter Renwa to write about a recent vulnerability that he reported, which was subsequently fixed and $4,000 USD reward given. What follows is his write-up and experience.
» Read more
Niklas Barsk
In this episode of the Opera Bug Bounty series, we introduce Opera for Android, our main product for the Android platform.
» Read more