Ashpool
LightNews LightNews
banner
ashpool.bsky.social
Ashpool
@ashpool.bsky.social
7 followers 16 following 1 posts
Web Application Pentesting || Go || Currently trying to learn Nix
Posts Replies Media Videos
Reposted by Ashpool
crimew.gay
NEW FROM ME: so i guess i hacked samsung?!
it's not quite xz but at least my grandma knows what samsung is

a short bug bounty write up on how i randomly stumbled onto samsung cloud infrastructure

(not an april fools bit)

maia.crimew.gay/posts/i-hack...
so i guess i hacked samsung?!
it's not quite xz but at least my grandma knows what samsung is
maia.crimew.gay
April 1, 2024 at 1:33 PM
Reposted by Ashpool
web3isgoinggreat.com
Crema Finance and Nirvana Finance hacker sentenced to three years imprisonment

April 12, 2024
https://www.web3isgoinggreat.com/?id=nirvana-finance-hacker-sentenced
Crema Finance and Nirvana Finance hacker sentenced to three years imprisonment Shakeeb Ahmed, the hacker who stole a combined $12 million from Crema Finance and Nirvana Finance in July 2022, has been sentenced to three years in prison. Ahmed had previously worked for Amazon, where he led a bug bounty program focused on paying whitehat hackers to discover flaws in Amazon's software. US Attorney Damian Williams described this as the first ever conviction for a smart contract hack. Ahmed forfeited around $12.3 million in stolen funds, and will pay more than $5 million in restitution.
April 12, 2024 at 5:35 PM
Reposted by Ashpool
martenmickos.bsky.social
Developer accidentally exposed a jenkins instance publicly. Within 45mins, external security researcher found it. Eng team fixed it in 20mins. Means risk averted in an hour. Peace of mind restored. -- This sort of rapid find and fix is possible only with a bug bounty program.
April 13, 2024 at 4:35 PM