Latest Insights
2025
The 'S' in MCP Stands For Security - Part 2
The new toy remote MCP sounds cool, but is it secure against old attack vectors? Nova investigates.Read More
Full Account Takeover Through a Simple In-App Link Click
Nova Security explains how a session-handling flaw in a widely used mobile app left accounts exposed, and why routine penetration testing remains critical for all organisations.Read More
2024
Uber - Navigating the Complexities of redirect_uri: A Bug Bounty Journey
At Nova Security, we continuously analyze and assess the cybersecurity landscapes of diverse industries, aiming to uncover potential vulnerabilities and provide strategic solutions.Read More
Delving into DeFi: Unveiling the Vulnerabilities of Price Manipulation in Smart Contracts
At Nova Security, our team continually seeks to explore the depths of cutting-edge technologies. One such area that we have recently begun to explore is smart contracts, and we are eager to share our learnings with our professional community.Read More
Breaking Down Uber's Microservices: A Close Examination of API Manipulation
At Nova Security, we continuously analyse and assess the cybersecurity landscapes of diverse industries, aiming to uncover potential vulnerabilities and provide strategic solutions.Read More