Multiple bugs chained to takeover Facebook Accounts which uses Gmail. ( $42k ) https://t.co/tdXO3u5ddA

Due to the repeated screw-ups and zero transparency around bans by @Hacker0x01, I’ve chosen to leave with dignity. My account is now fully deactivated and to be removed. If you need my services, I’m still available at @Bugcrowd @intigriti @immunefi @HackenProof @StandoffBB

I’ve been hunting on H1 for almost 3 years, ranked #18 in 2025, have always tried to contribute positively to the hacker community. I’ve earned around $500k in bounties and was on the road to $1M. Yet I don’t even have HSM, and I feel I haven’t been recognized as I should 1/4

After that, it’s up to you. PS: Don’t fool yourself, you're just the middleman in this game. You're not doing anything special. Without the honest, talented hackers that companies came looking for, you'd be nothing but a spam folder clogged up by bunch of AIs and script kiddies.

What you're doing is just childish. My friend who was banned is one of the best hackers and persons i known. What we're asking for is for you to first remember who made you, then to have the courtesy and professionalism to explain your reasons and give him a chance to explain.

it's your platform and hell you can do whatever, but failing to provide a reason and saying "no other communications on this matter can be provided" means what ? we should trust your "wisdom", that you don't make mistakes and we can't even have a case to defend or justify?

It’s disappointing to see what Meta(Facebook) bug bounty program has turned into. It feels like an endless cycle of waiting, the interactions have become frustrating, almost like it's a new program.I’ve decided to step away for good, don’t expect to see my name in the top anymore

I'm in LV, if anyone wants to hangout pm.

Great and simple tool to follow vulns, you can see trends and also find social media posts related to one CVE, making it easier to gather additional information about the vulnerability or find PoCs.

Hacking Windsurf: I asked the AI for the shell, it said yes. new video’s out. I show how I could’ve hacked you… just by getting you to click my link. Link posted below.

CVE-2025-5086

I believe we shouldn't categorize a company security and safety as our own success and achievement in life, it's actually theirs, and they actually paid for it. If you're working with them, it's another thing since you're part of it, you believe in it, but as an outsider not sure

I think bug bounty is great as a start point, to gain skills and make money, however your future should be on how to use the acquired skills and money to actually make a difference in the world or your life.

Alhamdulillah, $250,000 in total with bonuses for this bug, another record broken. Many thanks to @Meta and the Yes Team @phwd_ @JosipFranjkovic @vulnano , crazy we're still doing it after all these years.

It was a great interview! Thank you for having me @ctbbpodcast

New @ctbbpodcast with @samm0uda, should be a good one! 🤩 https://t.co/Ih9vLswZzk

I got $66000 once for an XSS. The impact to the business and its users is the important thing in a report and not the bug itself.

if you hate light bursts from you srceen at night, enable this "chrome://flags/#enable-force-dark"

To all triagers out there, stop trying to reproduce client-side pocs from a local html file.

Yay, I was awarded a $30,000 bounty on @Hacker0x01 ! https://t.co/5UdNTQkdhX #TogetherWeHitHarder Should have been another $50,000, however no consistently in payouts, going back to Meta.

Hyped! On the 28th of September i will be hosting the annual Truesec Cybersecurity Summit & present the talk I performed at Blackhat, Defcon and soon Sec-t! Get your tickets at: https://t.co/mUol5egQ1I