- 6 Followers
- 35 Following
- 24 Posts
sorry i say dumb shit all the time 😔
Neverfadingwood 🇺🇦@jeFF0Falltrades aaand into the Wall of Fame I go!
I hadn't tried RE before but that was an insanely cool learning expierence. Eagerly awaiting more videos, thanks a lot for your work!
I hadn't tried RE before but that was an insanely cool learning expierence. Eagerly awaiting more videos, thanks a lot for your work!
@jeFF0Falltrades what the french toast!? Your content is freaking amazing!
@ZebraNorth Thanks for the tip. They have not been combative at all so far, but you never know.
The only urge I have is... my data is there too. I'd like to know if it has been compromised :/
@jerry no, sorry forgot to mention I'm a contractor. So it's just me as a self-employed person using their services
tl;dr with some fuzzing you have read access to all financial records any client of the platform might have
Hello Mastodon! I haven't really posted anything here since I'm socially awkward but I come with a cry for help.
I am not a security professional (although I strive to be), just an engineer so I need some advice. I found an unprotected endpoint on one of the sites I use daily for my business that allows read access to all documents, regardless of who they belong to. I disclosed the vulnerability with the company that owns the platform and their dev team is already working on a fix. The thing is, their OpSec is pretty much non-existent and I lack the knowledge to know what to do here. Is this something that should be disclosed to the public after it's patched? I also want to recommend they check their logs to see if someone has exploited this before, but I lack the confidence lol.
Could anyone tell me how I should recommend they handle this? Is this maybe something I should NOT do?
Thank you lovely people :)
#opsec #redteam #vulnerability #disclosure #infosec
@simonzerafa where’s that from?
mattIn my experience, there are two types of people in tech. There’s “Alexa controls my thermostat” people and “I live in a cabin in the woods” people. RPi thought they would be interacting with the thermostat people on the wood cabin people’s social media site.