Bonjour Ankama, pouvez-vous me contacter en MP ? A propos de failles de sécurité sur plusieurs de vos sites. cc DOFUS

My first write up! Vulnerability Ankama: Open redirect by bypassing a HMAC based integrity check link.medium.com/mpv2cBqOsU

📢 Résultats de l'épreuve 2 du #WaveGame 🚩 Bravo à Polytech Angers et ENSEIRB-MATMECA qui mènent au score ! Dernière épreuve : 🟡 Wavers : Définition d'une stratégie #IAM 🔵 Wavers : Challenge #CTF #challenge #cybersecurite 👉 wavegame.wavestone.events/index.html

📢 Annonce des finalistes du #WaveGame, le #challenge #cybersecurite Wavestone France 🚩 👏 Bravo à Université Jean Moulin Lyon 3 et ENSEIRB-MATMECA qui sont pour le moment en tête ! 🗓️Rendez-vous le 11 juin, pour la grande finale 👉wavegame.wavestone.events

Bravo à l'equipe OKBoomeirb de l’ENSEIRB-MATMECA qui remporte le challenge de #cybersecurite Wavegame 2020 épreuves Blue Wavers de Wavestone France. Félicitations

Bravo à l'équipe RSR ENSEIRB-MATMECA qui vient de remporter le #hackathon #cybersecurite #LaGirondeContreAttaque organisé par le Département de la Gironde👏👏🥳🥳. Vous êtes trop forts 😍💪...

We are super happy to welcome new ninjas in the Synacktiv family: Aeinot, @flogallium, vic, myr. We're still looking for new talents and our job offers and internships are available here: synacktiv.com/nous-rejoindre…

Croissants, red wine and high-quality offensive security talks in a wonderful place? That's all the Hexacon team is promising for October 2022. Details and Call For Papers are coming very soon... Until then, a bit more teasing for you folks: hexacon.fr #HEXACON2022

*drum roll* The Call For Papers is now open! Find all the details about your submission on cfp.hexacon.fr/hexacon-2022/c… Discover the awesome panel of experts who will review your papers ⬇️

Hexacon's website is finally out! 🍾 You can find out information about the conference, the venue or the review committee... and a little about ourselves 🥷 This isn't even its final form, more will be announced soon! hexacon.fr #HEXACON2022

The Synacktiv team shows off their remote exploit of the #Tesla Model 3. Earlier today, this research earned them $75,000 during #Pwn2Own.

If you enjoy sailing the sea, beware! Major_Tom has found a critical security vulnerability in Raft™, allowing 0-click RCE on any online player. The vendor has remained silent for 5 months, so here are the details: synacktiv.com/sites/default/…

During a security assessment, our ninja Aeinot found a parameter injection and an arbitrary file read in Dell Unisphere for PowerMax vApp, Dell VASA Provider vApp and Dell Solutions Enabler vApp. synacktiv.com/sites/default/…

After having finished their exploit in an hotel room, David B and vdehors successfully compromised the Tesla Model 3 infotainment through bluetooth and elevated their privileges to root! Combined with the previous entry, this could have been a full chain to take over the car!

CONFIRMED! Synacktiv used a heap overflow & an OOB write to exploit the Infotainment system on the Tesla. When they gave us the details, we determined they actually qualified for a Tier 2 award! They win $250,000 and 25 Master of Pwn points. 1st ever Tier 2 award. Stellar work!