Purveyor of the finest offsec tools and red teamer at @MDSecLabs, creator of /r/redteamsec and co-author of the Mobile App Hacker's Handbook

Manchester, England
Joined February 2009
In early 2020 a vulnerability that enabled seeing the phone number linked to every Facebook account was exploited, creating a database containing the information 533m users across all countries. It was severely under-reported and today the database became much more worrisome 1/2
25
547
926
Show this thread
Dominic Chell retweeted
1
11
29
Dominic Chell retweeted
Important news from @Mimecast: a Mimecast-issued certificate used by some customers for authentication to Microsoft has been compromised by a "sophisticated threat actor." mimecast.com/blog/important-…
5
78
87
Dominic Chell retweeted
A story on how I gained RCE against Microsoft Exchange Online using CVE-2020-16875 and bypassed their patches twice over. Latest patch bypass is unpatched against on-premise deployments! Making Clouds Rain - Remote Code Execution in Microsoft Office 365: srcincite.io/blog/2021/01/12…
12
372
776