Tag: hackerone

• Is this a security exploit / good enough for bug bounty?

  Remember I posted about account access? This is the long story of how that came about. Picture the scene – You have an old email address you rarely use. It gets the occasional email which is clearly meant for someone else. Mostly Jacquline Lawson eCards or random newsletter signups. I saw the “1” in red…

  Doug

  January 10, 2019

  self, tech

  account security, exploit, hackerone

• Discovering & educating about account access

  This evening I discovered a possible security problem with an online service who sell a physical problem. I’m being intentionally vague now since I’ve responsibly disclosed it to the company and they’re going to work on it. They’ve let me know I can publish a post when it’s fixed. If I find a security hole…

  Doug

  January 4, 2019

  self, tech

  hackerone, responsible disclosure, security exploit