| | Why you need to hash reset_token like password (sakurity.com) |
| 2 points by dsr12 on March 28, 2015 | past |
|
| | Slack. Or why you need to hash reset_token like password (sakurity.com) |
| 3 points by homakov on March 28, 2015 | past | 2 comments |
|
| | How “../sms” could bypass Authy everywhere (sakurity.com) |
| 11 points by homakov on March 16, 2015 | past | 2 comments |
|
| | How “../sms” could bypass Authy 2FA (sakurity.com) |
| 16 points by homakov on March 16, 2015 | past |
|
| | How “../sms” Could Bypass Authy 2-Factor Authentication (sakurity.com) |
| 38 points by dsacco on March 15, 2015 | past | 1 comment |
|
| | Bypass 2 factor authentication on any website using Authy (sakurity.com) |
| 18 points by dsr12 on March 15, 2015 | past |
|
| | ProfileJacking – legal tricks to detect user profile (sakurity.com) |
| 2 points by dsr12 on March 15, 2015 | past |
|
| | Facebook refused to fix hijacking bug in Facebook Connect (sakurity.com) |
| 10 points by homakov on March 7, 2015 | past |
|
| | RECONNECT account hijacker for Facebook Login (sakurity.com) |
| 1 point by dsr12 on March 7, 2015 | past |
|
| | Reconnect – hijacking accounts abusing Facebook Login (sakurity.com) |
| 1 point by homakov on March 7, 2015 | past |
|
| | RECONNECT – critical bug in websites with Facebook Login (sakurity.com) |
| 12 points by gregmolnar on March 7, 2015 | past | 1 comment |
|
| | RECONNECT – critical bug in websites with Facebook Login (sakurity.com) |
| 11 points by homakov on March 7, 2015 | past |
|
| | Critical vulnerability in Spree Commerce, explained (sakurity.com) |
| 1 point by homakov on March 6, 2015 | past |
|
| | Your API Authentication is insecure, and we'll tell you why (sakurity.com) |
| 11 points by homakov on March 5, 2015 | past | 3 comments |
|
| | Ruby's open-uri library is an example of the Ruby-Insecure-Way (sakurity.com) |
| 5 points by homakov on March 5, 2015 | past |
|
| | Format Injection in Duo Web SDK (sakurity.com) |
| 3 points by homakov on March 5, 2015 | past |
|
| | Format Injection Vulnerability in Duo Security Web SDK (sakurity.com) |
| 3 points by gregmolnar on March 5, 2015 | past |
|
| | Using open-uri? Check your code – you're playing with fire (sakurity.com) |
| 2 points by jcxplorer on March 1, 2015 | past |
|
| | Ruby's open-uri is one step away from RCE (sakurity.com) |
| 5 points by homakov on Feb 28, 2015 | past |
|
| | Using open-uri? Check your code – you're playing with fire (sakurity.com) |
| 5 points by homakov on Feb 28, 2015 | past |
|
| | Hire me for on-site security consulting in San Francisco Bay Area (sakurity.com) |
| 3 points by homakov on Feb 20, 2015 | past |
|
| | Security report for Peatio Bitcoin exchange [pdf] (sakurity.com) |
| 7 points by danso on Feb 1, 2015 | past | 2 comments |
|
| | Public Security Report for Peatio Exchange (sakurity.com) |
| 1 point by homakov on Jan 21, 2015 | past |
|
| | Can we hack a device that only reads QR codes? (sakurity.com) |
| 2 points by homakov on Jan 20, 2015 | past |
|
| | The most paranoid way to transfer data – QR Channel (sakurity.com) |
| 4 points by homakov on Jan 20, 2015 | past |
|
| | How a crypto exchange can be hacked in 3 steps (sakurity.com) |
| 4 points by homakov on Jan 14, 2015 | past |
|
| | Hacking an exchange with OAuth and bypassing 2FA (sakurity.com) |
| 6 points by homakov on Jan 12, 2015 | past |
|
| | Hacking a Bitcoin exchange powered by Rails (sakurity.com) |
| 8 points by homakov on Jan 12, 2015 | past |
|
| | Hacking a Bitcoin exchange – the hard way (sakurity.com) |
| 14 points by homakov on Jan 12, 2015 | past | 3 comments |
|
| | Egor Homakov: Hacking a Bitcoin Exchange (sakurity.com) |
| 26 points by dsr12 on Jan 11, 2015 | past |
|
|
| More |
