all InfoSec news
185 - Facebook Account Takeovers and a vBulletin RCE [Bug Bounty Podcast]
Feb. 7, 2023, 9 p.m. | DAY[0]
DAY[0] www.youtube.com
Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/185.html
[00:00:00] Introduction
[00:00:21] Single-Sign On Gadgets: Escalate (Self-)XSS to Account Takeover
[00:11:11] Account takeover of Facebook/Oculus accounts due to First-Party access_token stealing
[00:14:00] …
abusing account accounts account takeover authentication bounty bug bug bounty deserialization facebook gadgets introduction meta options party php podcast rce sign single stealing takeover takeovers vbulletin xss
More from www.youtube.com / DAY[0]
253 - A Retrospective and Future Look Into DAY[0]
2 weeks, 1 day ago |
www.youtube.com
245 - A PHP and Joomla Bug and some DOM Clobbering [Bug Bounty Podcast]
2 months, 1 week ago |
www.youtube.com
Jobs in InfoSec / Cybersecurity
Lead Security Specialist
@ Fujifilm | Holly Springs, NC, United States
Security Operations Centre Analyst
@ Deliveroo | Hyderabad, India (Main Office)
CISOC Analyst
@ KCB Group | Kenya
Lead Security Engineer – Red Team/Offensive Security
@ FICO | Work from Home, United States
Cloud Security SME
@ Maveris | Washington, District of Columbia, United States - Remote
SOC Analyst (m/w/d)
@ Bausparkasse Schwäbisch Hall | Schwäbisch Hall, DE