Security Blog Post

CVE-2020-13956

Post thumbnail
Post thumbnail
Motivation As a security researcher, adopting a holistic approach could lead to finding unexpected vulnerabilities. You start with something but end up with something more interesting. Recently this happened to me and I wanted to share my research approach which could be easily applied elsewhere. [Read More]
Tags: CVE blog

Security Blog Post

Amtrak Mobile APIs - Multiple Vulnerabilities

Post thumbnail
Post thumbnail
Summary The Amtrak mobile APIs are affected by vulnerabilities that can directly lead to the exposure of Personally Identifiable Information (PII) and partial payment data for at least 6 million Amtrak guest rewards members. The Amtrak customers’ exposed PII includes full names, addresses and phone numbers. [Read More]
Tags: blog