Dark Reading

Slack Patches Critical Desktop Vulnerability

Slack has patched a critical remote code execution vulnerability that could enable an attacker to execute arbitrary code in the desktop version of its collaboration software, researchers report.
Bleeping Computer

Slack pays stingy $1,750 reward for a desktop hijack vulnerability

A researcher responsibly disclosed multiple vulnerabilities to Slack that allowed an attacker to hijack a user's computer, and they were only rewarded a measly $1,750. Using these vulnerabilities, an ...