May 15, 2024, 4 p.m. | Hak5

Hak5 www.youtube.com

⬇️ OPEN FOR LINKS TO ARTICLES TO LEARN MORE ⬇️





@endingwithali →
Twitch: https://twitch.tv/endingwithali
Twitter: https://twitter.com/endingwithali
YouTube: https://youtube.com/@endingwithali
Everywhere else: https://links.ali.dev
Want to work with Ali? endingwithalicollabs@gmail.com




[❗] Join the Patreon→ https://patreon.com/threatwire
0:00 Intro
00:10 1 - NextJS Vulnerabilities Discovered
02:06 2 - New Technique Allows VPN Bypass
04:31 3 - FIDO2 Flaw Exposes MITM Attack
05:51 4 - Signal Vs Telegram
08:24 5 - Outro


LINKS
🔗 Story 1: NextJS Vulnerabilities Discovered
https://portswigger.net/web-security/request-smuggling/advanced/response-queue-poisoning
https://github.com/advisories/GHSA-77r5-gw3j-2mpf
https://github.com/advisories/GHSA-fr5h-rqp8-mj6g
https://cybersecuritynews.com/next-js-server-compromise/


🔗 Story 2: …

articles attack bypass com elon elon musk expert fido2 flaw gmail intro learn links mitm mitm attack musk nextjs security security expert signal telegram vpn vulnerabilities work

Sr. Product Manager

@ MixMode | Remote, US

Information Security Engineers

@ D. E. Shaw Research | New York City

Staff Technical Support Engineer - Endpoint Security

@ Palo Alto Networks | Singapore, Singapore

Identity and Access Management (IAM) Engineer

@ Vodafone | Madrid, ES

Director, Product and Solutions Marketing - CIAM Solutions

@ ForgeRock | USA - Remote - Austin, TX

Ingénieur de Production IAM (H/F)

@ CITECH | Marseille, France