home.social

#openbugbounty — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #openbugbounty, aggregated by home.social.

  1. Ich glaube es gibt eine Gruppe die scanned systematisch den IPv4 Adressraum und wenn da irgendwo eine neue Woltlab Suite Instanz auftaucht feuern die eine Openbugbounty Scam Mail raus.
    Und wie man sieht ist das Problem auch nicht neu:
    https://mastodon.social/@DocCool/115620762844478695

    #openbugbounty #scam

  2. Ich glaube es gibt eine Gruppe die scanned systematisch den IPv4 Adressraum und wenn da irgendwo eine neue Woltlab Suite Instanz auftaucht feuern die eine Openbugbounty Scam Mail raus.
    Und wie man sieht ist das Problem auch nicht neu:
    https://mastodon.social/@DocCool/115620762844478695

    #openbugbounty #scam

  3. Ich glaube es gibt eine Gruppe die scanned systematisch den IPv4 Adressraum und wenn da irgendwo eine neue Woltlab Suite Instanz auftaucht feuern die eine Openbugbounty Scam Mail raus.
    Und wie man sieht ist das Problem auch nicht neu:
    https://mastodon.social/@DocCool/115620762844478695

    #openbugbounty #scam

  4. Ich glaube es gibt eine Gruppe die scanned systematisch den IPv4 Adressraum und wenn da irgendwo eine neue Woltlab Suite Instanz auftaucht feuern die eine Openbugbounty Scam Mail raus.
    Und wie man sieht ist das Problem auch nicht neu:
    https://mastodon.social/@DocCool/115620762844478695

    #openbugbounty #scam

  5. Ich glaube es gibt eine Gruppe die scanned systematisch den IPv4 Adressraum und wenn da irgendwo eine neue Woltlab Suite Instanz auftaucht feuern die eine Openbugbounty Scam Mail raus.
    Und wie man sieht ist das Problem auch nicht neu:
    https://mastodon.social/@DocCool/115620762844478695

    #openbugbounty #scam

  6. Yesterday I got a #scam email allegedly from #OpenBugBounty (from a slightly different email address, note the typo) about a vulnerability but with no details, asking to contact by email to a Gmail address.

    I immediately reported to #namesilo (the domain registrar) and openbugbounty[.]org. Today the scam domain has been deactivated! That was pretty fast!

  7. Hi #itsecurity folks. I have a question for a friend:
    My friend got contacted by #OpenBugBounty about a vulnerability in his website. They say they do responsible disclosure, but in fact, they don’t disclose anything. My friend contacted the “security researcher” who found the vulnerability and that guy just asked for money. So nothing is disclosed to my friend (who thinks there probably is nothing serious, knowing his website).

    So what’s the deal? Is OpenBugBounty a blackmailing site or legit?

  8. Hi #itsecurity folks. I have a question for a friend:
    My friend got contacted by #OpenBugBounty about a vulnerability in his website. They say they do responsible disclosure, but in fact, they don’t disclose anything. My friend contacted the “security researcher” who found the vulnerability and that guy just asked for money. So nothing is disclosed to my friend (who thinks there probably is nothing serious, knowing his website).

    So what’s the deal? Is OpenBugBounty a blackmailing site or legit?

  9. Hi #itsecurity folks. I have a question for a friend:
    My friend got contacted by #OpenBugBounty about a vulnerability in his website. They say they do responsible disclosure, but in fact, they don’t disclose anything. My friend contacted the “security researcher” who found the vulnerability and that guy just asked for money. So nothing is disclosed to my friend (who thinks there probably is nothing serious, knowing his website).

    So what’s the deal? Is OpenBugBounty a blackmailing site or legit?

  10. Hi #itsecurity folks. I have a question for a friend:
    My friend got contacted by #OpenBugBounty about a vulnerability in his website. They say they do responsible disclosure, but in fact, they don’t disclose anything. My friend contacted the “security researcher” who found the vulnerability and that guy just asked for money. So nothing is disclosed to my friend (who thinks there probably is nothing serious, knowing his website).

    So what’s the deal? Is OpenBugBounty a blackmailing site or legit?

  11. Hi #itsecurity folks. I have a question for a friend:
    My friend got contacted by #OpenBugBounty about a vulnerability in his website. They say they do responsible disclosure, but in fact, they don’t disclose anything. My friend contacted the “security researcher” who found the vulnerability and that guy just asked for money. So nothing is disclosed to my friend (who thinks there probably is nothing serious, knowing his website).

    So what’s the deal? Is OpenBugBounty a blackmailing site or legit?

  12. Why does OpenBugBounty still only support Twitter login? Surely they've seen the writing on the wall by now??

    On that topic, are there any alternatives to OBB that support more traditional, non social-network related logins?

    #openbugbounty #twitter #security

  13. Why does OpenBugBounty still only support Twitter login? Surely they've seen the writing on the wall by now??

    On that topic, are there any alternatives to OBB that support more traditional, non social-network related logins?

    #openbugbounty #twitter #security

  14. Why does OpenBugBounty still only support Twitter login? Surely they've seen the writing on the wall by now??

    On that topic, are there any alternatives to OBB that support more traditional, non social-network related logins?

    #openbugbounty #twitter #security

  15. Why does OpenBugBounty still only support Twitter login? Surely they've seen the writing on the wall by now??

    On that topic, are there any alternatives to OBB that support more traditional, non social-network related logins?

    #openbugbounty #twitter #security

  16. @abuse_ch the reason I didn't use the site was the twitter only auth.. seems like I was right to be cautious. I wonder if others like #openbugbounty are also affected?

  17. After some time of radio silence, I saw another #OpenBugBounty phishing.

    It pretends to be from openbugbounty.de and try uses a gmail contact

  18. After some time of radio silence, I saw another #OpenBugBounty phishing.

    It pretends to be from openbugbounty.de and try uses a gmail contact

  19. After some time of radio silence, I saw another #OpenBugBounty phishing.

    It pretends to be from openbugbounty.de and try uses a gmail contact

  20. After some time of radio silence, I saw another #OpenBugBounty phishing.

    It pretends to be from openbugbounty.de and try uses a gmail contact

  21. After some time of radio silence, I saw another #OpenBugBounty phishing.

    It pretends to be from openbugbounty.de and try uses a gmail contact