Steven Danneman
@sdanndev
Followers
185
Following
2K
Media
28
Statuses
267
RT @JackRhysider: You should be aware of the term "harvest now, decrypt later". At some point, the encryption we use today will be easily c….
0
136
0
Credit union BECU has turned off Quicken access for 2 months and counting due to cyber attacks. MANY banks still allow user:pass only access to OFX with no MFA, ripe for password spray and reuse attacks.
0
0
2
Thanks @paymentvillage for a fun, realistic, hacking challenge! $100,000 charged and 18 card numbers stolen. #DEFCON31
1
1
22
RT @HollyGraceful: SSL/TLS issues come up all the time during PenTests and explaining the technical detail of all of the different TLS conf….
0
107
0
RT @jra_samba: Just got laid off from Google. If anyone needs SMB 1/2/3 protocol or Open Source experience, I'm interested.
0
95
0
RT @yacineMTB: if you don't release an API people will build a whole selenium browser automation over it smh.
0
36
0
RT @travismcpeak: As an industry, security needs to move away from filing a vulnerability Jira ticket and calling it a day. Business risk i….
0
2
0
The most thorough timeline and technical explanation of the incident I've read so far. A lot of good lessons learned for other companies in this post mortem.
A lot has been spoken about Uber case, but I went and purchased the trial transcripts before they were set to release in 2023:. A blameless post-mortem of USA v. Joseph Sullivan.
0
0
1
RT @DafyddStuttard: If you enjoyed the Web App Hacker’s Handbook, I’d encourage you to try out our Burp Challenge on @WebSecAcademy. It’s….
0
5
0
RT @LunaSecIO: Pictured: Proof that Node + NPM is madness. This pic is showing the chain of dependencies leading to a vulnerable package,….
0
20
0
Who? -> Whoever.What? -> Whatever.When? -> Whenever.Where? -> Wherever.Why? ->.
2
0
3
RT @feistyduck: From the TLS Newsletter: Coursera announced the much-delayed Cryptography II course by Dan Boneh starting in October. Boneh….
0
3
0