Conversation

Notices

1. Embed this notice
   Evan B🥥ehs (eb@social.coop)'s status on Friday, 03-May-2024 07:11:08 JST Evan B🥥ehs

   • BrianKrebs
   • yopp

   @briankrebs @alex related: my recent https://boehs.org/node/medicicnes

   • BeAware :fediverse: repeated this.
   • Embed this notice
     Evan B🥥ehs (eb@social.coop)'s status on Friday, 03-May-2024 07:11:07 JST Evan B🥥ehs

     in reply to

     • BrianKrebs
     • yopp

     @briankrebs @alex I’ve received private disclosure of a potential vulnerability that I have independently verified as still active. I would disclose it as we are a whole year past the responsible disclosure period, but it’s the state of Georgia and incompetent governments don’t take too kindly to this: https://www.theverge.com/2021/10/14/22726866/missouri-governor-department-elementary-secondary-education-ssn-vulnerability-disclosure

   • Embed this notice
     yopp (alex@feed.yopp.me)'s status on Friday, 03-May-2024 07:11:18 JST yopp

     in reply to

     • BrianKrebs

     @eb @briankrebs I’ve seen another subtle hack recently: I suppose CMS haven’t been patched, so all the content on a website had few words in article to be made in links that also point to some shady pharma site. I wonder if it’s possible to check backlinks from Georgia’s site. But referrer check is 👌. So simple, much efficient!