|
Would it be worse to put the Snowden app on your phone , knowing it would open you up to FSB backdoors - if it also locked out CIA backdoors ?
|
#
?
Dec 24, 2017 06:44
|
|
|
|
| # ? May 14, 2024 00:01 |
|
|
Partycat posted:Would it be worse to put the Snowden app on your phone , knowing it would open you up to FSB backdoors - if it also locked out CIA backdoors ? But it doesn't lock out anything...
|
|
#
?
Dec 24, 2017 06:45
|
|
|
Partycat posted:Would it be worse to put the Snowden app on your phone , knowing it would open you up to FSB backdoors - if it also locked out CIA backdoors ? the Snowden app doesn't lock out anything it just logs data from the camera, mic, light sensor, accelerometer, and when certain conditions or triggers are met it sends the data to you and/or the FSB
|
|
#
?
Dec 24, 2017 07:52
|
|
|
when you convert the bytecode from the apk to human-readable, it exploits the interpreter and executes code on your desktop
|
|
#
?
Dec 24, 2017 08:21
|
|
|
weirdly, it's just a colour swapped version of GCHQ's cyber security advent calendar christmas tree
|
|
#
?
Dec 24, 2017 08:26
|
|
|
Lain Iwakura posted:when you convert the bytecode from the apk to human-readable, it exploits the interpreter and executes code on your desktop At least then it would be interesting.
|
|
#
?
Dec 24, 2017 15:02
|
|
|
https://twitter.com/andysayler/status/944607187489509379
|
|
#
?
Dec 24, 2017 15:48
|
|
|
did anyone post this fortigate one https://securite.intrinsec.com/2017/12/22/cve-2017-7344-fortinet-forticlient-windows-privilege-escalation-at-logon/
|
|
#
?
Dec 24, 2017 16:44
|
|
|
anthonypants posted:did anyone post this fortigate one https://securite.intrinsec.com/2017/12/22/cve-2017-7344-fortinet-forticlient-windows-privilege-escalation-at-logon/ ah, the 2017 version of 'press cancel at the login screen in windows 95 to log in anyway'
|
|
#
?
Dec 24, 2017 18:33
|
|
|
nice writeup about getting rce in win 10 by exploiting the jscript interpreter used to run proxy auto config scripts https://googleprojectzero.blogspot.co.uk/2017/12/apacolypse-now-exploiting-windows-10-in_18.html
|
|
#
?
Dec 24, 2017 19:04
|
|
|
oh hey uber sucks https://medium.com/bread-and-circuses/how-i-got-paid-0-from-the-uber-security-bug-bounty-aa9646aa103f
|
|
#
?
Dec 24, 2017 20:19
|
|
|
Suspicious Dish posted:oh hey uber sucks https://medium.com/bread-and-circuses/how-i-got-paid-0-from-the-uber-security-bug-bounty-aa9646aa103f and looks like hackerone too
|
|
#
?
Dec 24, 2017 20:32
|
|
|
Suspicious Dish posted:oh hey uber sucks https://medium.com/bread-and-circuses/how-i-got-paid-0-from-the-uber-security-bug-bounty-aa9646aa103f to be fair, his first submissions are garbage begbounty style poo poo and probably set the tone for how the engineer would read his future reports
|
|
#
?
Dec 24, 2017 20:38
|
|
|
Daman posted:to be fair, his first submissions are garbage begbounty style poo poo and probably set the tone for how the engineer would read his future reports "We already knew about this, and we also don't plan to fix it any time soon" is an incredibly bullshit reason to not pay out a bounty.
|
|
#
?
Dec 24, 2017 20:44
|
|
|
to be fair, if uber doesn't want to pay for low hanging bug bounties, maybe they should patch their issues
|
|
#
?
Dec 24, 2017 20:45
|
|
|
having non-expiring auth tokens and client-side logout seems really bad to me but what do i know
|
|
#
?
Dec 24, 2017 20:45
|
|
|
Daman posted:to be fair, his first submissions are garbage begbounty style poo poo and probably set the tone for how the engineer would read his future reports also come the gently caress on, an engineer reads his final report in the wrong tone and decides that the correct course of action is to lock the report, fix the issue, not pay, and shadowban him????
|
|
#
?
Dec 24, 2017 20:47
|
|
|
Truga posted:to be fair, if uber doesn't want to pay for low hanging bug bounties, maybe they should patch their issues or at least document them
|
|
#
?
Dec 24, 2017 20:47
|
|
|
I'm not going to defend Uber but the first one is pretty dumb (and dumb on Uber making not having pinning a security bug).
|
|
#
?
Dec 24, 2017 20:54
|
|
|
https://twitter.com/whispersystems/status/944951877610831872
|
|
#
?
Dec 25, 2017 01:01
|
|
|
|
|
#
?
Dec 25, 2017 02:45
|
|
|
lol. merry Christmas, ya filthy animals
|
|
#
?
Dec 25, 2017 03:54
|
|
|
Hed posted:lol. merry Christmas, ya filthy animals give me some Hed
|
|
#
?
Dec 25, 2017 04:22
|
|
|
replace ‘Santa’ with ‘the UAE government’
|
|
#
?
Dec 25, 2017 07:11
|
|
|
Don't be like Gori: https://www.bleepingcomputer.com/news/security/man-threatened-company-with-cyber-attack-to-fire-employee-and-hire-him-instead/ quote:North Carolina judge sentenced a Washington man this week to 37 months in prison for threatening a company with attacks unless they fire one of their employees and hire him instead. "I'm a convicted felon and you'll never stop my attacks despite knowing my name and who I am because I desire a job with your company. I am a leet operator."
|
|
#
?
Dec 26, 2017 14:30
|
|
|
quote:replace her with me, an operator 100x better that she is oppressing of course its a 4chan incel retard
|
|
#
?
Dec 26, 2017 18:09
|
|
|
i dunno, the current employee can only manage 2 screens like a god drat chump
|
|
#
?
Dec 26, 2017 18:12
|
|
|
Pull Request: Remove my password from lists so hackers won't be able to hack me https://github.com/danielmiessler/SecLists/pull/155
|
|
#
?
Dec 26, 2017 19:11
|
|
|
https://twitter.com/cameo/status/945542159653937152
|
|
#
?
Dec 26, 2017 19:27
|
|
|
CommieGIR posted:Don't be like Gori: given his liking for posting insane rants on the internet under his real name, he's probably not getting hired any other way
|
|
#
?
Dec 26, 2017 19:32
|
|
|
CommieGIR posted:Don't be like Gori: I'm so close don't stop
|
|
#
?
Dec 26, 2017 19:39
|
|
|
Isn't there like a lockable box you can get where people can drop packages? You give the delivery person the combination as a special instruction or something.
|
|
#
?
Dec 26, 2017 22:18
|
|
|
like delivery drivers who won't even use the doorbell would ever care about that
|
|
#
?
Dec 26, 2017 22:26
|
|
|
ymgve posted:like delivery drivers who won't even use the doorbell would ever care about that i had a package marked as 'not at home' even though i live in an apartment complex with an intercom
|
|
#
?
Dec 26, 2017 22:31
|
|
|
amazon now has lockers in a lot of cities where they can leave your poo poo and you have three days to pick it up
|
|
#
?
Dec 26, 2017 22:32
|
|
|
Cold on a Cob posted:amazon now has lockers in a lot of cities where they can leave your poo poo and you have three days to pick it up these are useful and lots of aparement complexes have their own version too
|
|
#
?
Dec 26, 2017 22:42
|
|
|
Doom Mathematic posted:Isn't there like a lockable box you can get where people can drop packages? You give the delivery person the combination as a special instruction or something. like the post office has always had?
|
|
#
?
Dec 26, 2017 22:44
|
|
|
DJ Commie posted:like the post office has always had? only USPS can deliver to a PO box though
|
|
#
?
Dec 26, 2017 22:47
|
|
|
This whole concept of leaving packages out on people's porch is alien to me. Deliveries are made to a resident of the house, their neighbors or taken to the post office or w/e
|
|
#
?
Dec 26, 2017 22:54
|
|
|
|
| # ? May 14, 2024 00:01 |
|
|
spankmeister posted:This whole concept of leaving packages out on people's porch is alien to me. Deliveries are made to a resident of the house, their neighbors or taken to the post office or w/e "I don't have time to wait around for a package!" "How dare you hand my mail to someone else!" "You can't expect me to miss work to drive all the way to the post office!"
|
|
#
?
Dec 26, 2017 23:03
|
|
