Konstantin WeddigeJan 7, 2025
Today I found out that my article on #KoboldLetters inspired this work on #FicklePDFs: https://portswigger.net/research/fickle-pdfs-exploiting-browser-rendering-discrepancies
Fickle PDFs: exploiting browser rendering discrepancies

Imagine the CEO of a random company receives an email containing a PDF invoice file. In Safari and MacOS Preview, the total price displayed is £399. After approval, the invoice is sent to the accounti

PortSwigger Research
Lutra SecurityNov 19, 2024

One week ago we were at #BSidesMunich2024 and if you didn't get a chance to attend, you can now catch up by watching the recordings.

For example, @weddige's talk about Kobold Letters And Other Mischief: https://www.youtube.com/watch?v=ko9cwRM3BZU

#KoboldLetters #SalamanderMIME

Kobold Letters And Other Mischief: How Emails Can Deceive You - Konstantin Weddige

YouTube
Show threadKonstantin WeddigeNov 18, 2024
the recording of my talk on #KoboldLetters and #SalamanderMIME is now on YouTube: https://www.youtube.com/watch?v=ko9cwRM3BZU
Kobold Letters And Other Mischief: How Emails Can Deceive You - Konstantin Weddige

YouTube
Show threadKonstantin WeddigeNov 10, 2024

@lutrasecurity I'll be talking about Salamander/MIME and Kobold Letters at @BSidesMunich tomorrow:

https://2024.bsidesmunich.org/talks/002-06_JUXQQB_kobold-letters-and-other-mischief-how-emails-can-deceive-you/

#SalamanderMIME #KoboldLetters #BSidesMunich2024

Kobold Letters and Other Mischief - How Emails Can Deceive You

Konstantin WeddigeSep 4, 2024

I'm very happy to announce that I'll be speaking at #BSidesMunich2024 on 11th November about Kobold Letters and Other Mischief - How Emails Can Deceive You.

https://2024.bsidesmunich.org/talks/002-06_JUXQQB_kobold-letters-and-other-mischief-how-emails-can-deceive-you/

If you haven't got a ticket yet, you can get one here on 8th September: https://2024.bsidesmunich.org/tickets/

Follow @BSidesMunich for more updates.

#BSidesMunich #BSides #KoboldLetters

Kobold Letters and Other Mischief - How Emails Can Deceive You

Lutra SecurityJun 5, 2024

Online Community of Practice (CoP) der Sollence® ACADEMY – Circle Cybersecurity

https://mobilizemuc.org/events/024d1c41-0149-41e4-9d1b-97a4cb25ad33

Konstantin WeddigeApr 18, 2024
Google just awarded me a $100 bounty for #KoboldLetters in Gmail.
Show thread🙃 ɐıunp zsɐɯoʇ Apr 6, 2024
🇬🇧 The longer form of #blog posts has temporarily started to tire me out a bit, plus I have an additional project on the side for the blog that consumes some of my time. Because of this, lately I've been finding a lot of joy in writing shorter notes like this recent one about #KoboldLetters https://blog.tomaszdunia.pl/kobold-letters/. I can do it even on my phone, which is super convenient!
What do you think about this form of blogging?
👍
66.7%
👎
0%
See results only
33.3%
Poll ended at .
Kobold Letters – ciekawy sposób ataku przez e-mail – Tomasz Dunia Blog

🙃 ɐıunp zsɐɯoʇ Apr 6, 2024
🇵🇱 Dłuższa forma postów na #blog chwilowo zaczęła mnie trochę męczyć, plus mam dla bloga dodatkowy projekt na boku, który pochłania mi trochę czasu. Z uwagi na to ostatnio sporo radości sprawia mi pisanie takich krótszych notatek jak ta ostatnia o #KoboldLetters https://blog.tomaszdunia.pl/kobold-letters/. Mogę to robić nawet na telefonie, co jest super wygodne!
Co myślisz o takiej formie prowadzenia bloga?
👍
83.3%
👎
16.7%
Chcę tylko wynik
0%
Poll ended at .
Kobold Letters – ciekawy sposób ataku przez e-mail – Tomasz Dunia Blog

Tomasz DuniaApr 5, 2024

🇵🇱 Nowy wpis na blogu! / 🇬🇧 New blog post!

Kobold Letters – ciekawy sposób ataku przez e-mail

#CSS #cyberbezpieczeństwo #cybersecurity #email #Gmail #HTML #KoboldLetters #Outlook #scam #Thunderbird

Autor: @[email protected]

https://blog.tomaszdunia.pl/kobold-letters/

Kobold Letters – ciekawy sposób ataku przez e-mail – Tomasz Dunia Blog