Hey! I'm David, cofounder of zkSecurity and the author of the Real-World Cryptography book. I was previously a crypto architect at O(1) Labs (working on the Mina cryptocurrency), before that I was the security lead for Diem (formerly Libra) at Novi (Facebook), and a security consultant for the Cryptography Services of NCC Group. This is my blog about cryptography and security and other related topics that I find interesting.

Prezi got pwned posted March 2014

they allowed "file://" to be fetched from their servers when they should have restricted it to "http(s)://"
they were using servers that were part of a network to do some private stuff, didn't filter those ips, people on the same network could perform those tasks.

http://engineering.prezi.com/blog/2014/03/24/prezi-got-pwned-a-tale-of-responsible-disclosure/

Well done! You've reached the end of my post. Now you can leave a comment or read something else.

Here are some random popular articles:

Here are some random recent articles:

Comments

leave a comment...

My book Real-World Cryptography is finished and shipping! You can purchase it here.

If you don't know where to start, you might want to check these popular articles:

Here are the latest links posted:

You can also suggest a link.