@zackwhittaker can you do a bit on your newsletter or something about how stupid it is to have a trust center page with all the certificates for stuff but no where to report issues? im half tempted to leave a thing on some ones infosec or cloudgroup jira board about an exposed cred
random_robbie
- 239 Followers
- 697 Following
- 205 Posts
I Write exploits generally N day wordpress plugins
@cirriustech love to know how this goes. Isn't it limited to certain languages
@chrispy I managed to scrape 4k repos of creds loads of big names in there but not everything was useful
A good few fortune 500 in here and crypto company.
Now an ISP
Now an ISP
also be super careful a few people have put repos that have 50mb files which come out to 3.8GB in size if your trying to monitor this.
@zackwhittaker interesting one this.
Shai-Hulud malware infects 500 npm packages, leaks secrets on GitHub
This is now starting blank repos with a inital commit by linux it links back to his ACTUAL github
Adobe drops emergency patch for CVE-2025-54236, aka SessionReaper, a critical Magento flaw! Hackers can exploit WebAPI ServiceInputProcessor to hijack sessions, steal credit cards, or take over admin accounts.
SessionReaper, a critical bug in Magento & Adobe Commerce (CVE-2025-54236)
