learner

Verified account

@learner1001a

if ya know ya know

Joined May 2025

140 Following

11 Followers

395 Posts

learner1001a retweeted

3 days ago

There is a postMessage API that websites and extensions can use to communicate over. Many are misconfigured and can allow for 1. Extensions to snoop on sensitive website content 2. Websites to gain access to privileged extension capabilities. Great research!

1

30

10

17

11K

6 days ago

@minchoi All you have shown are the presentation layer which is less valuable than the core.

0

0

0

1

3K

learner1001a retweeted

Adnan Khan @adnanthekhan

7 days ago

It's finally happening. We can put this whole install script NPM worm madness behind us... https://t.co/BnSYkpdMQA

7

173

40

80

60K

10 days ago

@vxunderground The acquisition of the scale AI is the worst among all

0

0

0

0

148

12 days ago

@ZackKorman Didn’t they say AI will replace engineers in 6 months and now they gotta pause because of that?

0

0

0

0

27

12 days ago

0

1

0

0

113

14 days ago

@IceSolst @MartinShkreli lol

1

0

0

0

27

14 days ago

@dinodaizovi @IceSolst @AnthropicAI Would be useful if the agent is developed with less privilege and sandboxing.

0

1

0

0

110

14 days ago

@0xcdn I have seen a few people that were rewarded 50-60K dollars from dependency confusion. Microsoft MSRC is running out of money

0

0

0

0

257

14 days ago

@vxunderground GH doesn't give a fuck. It hasn't even shared the details or postmoterm from the last VS code security incident.

0

2

0

0

961

16 days ago

@msftsecresponse @HackingLZ Seriously you needed AI to write this article to respond to the community? What a shame!

1

8

0

0

4K

19 days ago

@ZackKorman This fucking article is written by AI 100%

0

2

0

0

51

19 days ago

@vxunderground @thegrugq No surprise when working with MSRC

0

0

0

0

83

learner1001a retweeted

19 days ago

Chat, I don't want to be that guy, but I think Microsoft has really pissed off security researchers and we're approaching the tipping point. This Eclipse guy has really rocked the boat for Microsoft.

vxunderground's tweet photo. Chat, I don't want to be that guy, but I think Microsoft has really pissed off security researchers and we're approaching the tipping point.

This Eclipse guy has really rocked the boat for Microsoft. https://t.co/y7wOvB2UYh

118

4K

512

744

165K

19 days ago

@d5fa4lt @C2IRIS @ChaoticEclipse0 Spend time grinding.

0

0

0

0

22

learner1001a retweeted

Florian Roth ⚡️

24 days ago

Oh, great https://t.co/Z3eldzjcg6

cyb3rops's tweet photo. Oh, great
https://t.co/Z3eldzjcg6 https://t.co/NhA4dylDfI

34

888

122

362

95K

22 days ago

Has @github shared the postmortem of its recent security incident? What a joking company

0

0

0

0

13

25 days ago

@perplexity_ai You guys should focus on your strength

0

0

0

0

48

26 days ago

@IceSolst At this point building an app like GitHub is super easy. Enough patterns to build.

0

1

0

0

631

26 days ago

@github It's been nearly 2 days, and you guys still haven't shared further details, even the name of the extension. What a fucking joke!

0

0

0

0

762

Last Seen Users on Sotwe

Trends for you

Most Popular Users