(@adamshostack@infosec.exchange)
So 06.11.2022
Beiträge: 8.946Folgt: 645Folgende: 3.564
Author, game designer, technologist, teacher.
Helped to create the CVE and many other things. Fixed autorun for XP. On Blackhat Review board.
Books include Threats: What Every Engineer Should Learn from Star Wars (2023), Threat Modeling: Designing for Security, and The New School of Information Security.
Following back if you have content.
Website | |
Latest book | |
Peertube Videos | |
Youtube | |
|
Föderation EN So 19.01.2025 00:07:38 It’s as if 170 million voices were suddenly silenced … and then said “ok, boomer” |
|
Föderation EN Do 14.12.2023 17:30:53 "A security researcher uncovered a Twitter vulnerability in its link shortener. The vulnerability allowed an attacker to craft a malicious URL that, if a user clicked on it, would grant the attacker access to the user's account. The researcher reported the vulnerability to Twitter's bug bounty program, which closed the report as not worthy of a bug bounty. So the researcher published the vulnerability. Immediately Twitter takes its link shortener offline for hours while they fix it.But the press is only reporting on an hours-long X/Twitter link shortener outage, and has completely missed the security issues that led to it.Molly White's coverage of the vulnerability (sorry for the Xitter link but that's just the problem, literally no one else is covering this): https://twitter.com/molly0xFFF/status/1734965774517768471 " Disclosure: https://x.com/shoucccc/status/1734802168723734764?s=20 (All quoting a friend on a private slack) |