It’s that time of year again, change all passwords, view your logs, if you feel something is funny - investigate and wipe #itstimetowipe

Looking for a daily dose of security knowledge? Head over to the HackerOne BrightTALK channel for some great on-demand content. Coming up tomorrow at 9 a.m. PT, catch our latest discussion with Chris Evans, Maddie Stone, and Rotem Bar. 🙌 ow.ly/5PfM50MmbnU

🔥 Attention all #opensource developers: If you're using "jsonwebtoken" library in your projects, you need to take urgent action. A high-severity security flaw [ CVE-2022-23529] has been discovered, leading to RCE attacks: thehackernews.com/2023/01/critic… #cybersecurity

Quick tip!! Run "git --version". if version <= v2.30.6, v2.31.5, v2.32.4, v2.33.5, v2.34.5, v2.35.5, v2.36.3, v2.37.4, v2.38.2, v2.39.0 you are #vulnerable. Upgrade and repeat in every system you own.. #production #cicd #desktop #fridge #lightbulb x41-dsec.de/security/resea…

Are you a bug hunter? I'm hosting a bug bounty meetup and in the invitation I always put in weird questions or answers.. About 10% mentioned they are coming for food and friends which I totally agree with. Meetups are to meet new cool minded friends. What do you think? #BugBounty

Any friends going to #KubeCon? Let’s meet up and talk some cloud security

Found a cool #database at #kubecon planetscaledata

#KubeCon Palo Alto Networks Let's meetup and don't forget to ask me about our party tonight ;)

Best swag award in #kubecon goes to goFireflyio!!!

Did today some live CUE learning and development. Hopefully soon you will see another #OSS using CUE

Selfie with my new friend #KubeCon

a wild Sharone Revah Zitzman 🎗️💙🇮🇱 appeared

I found a wild cje!!! bugcrowd

Another achievement unlocked! ✅ meeting cje from bugcrowd

The results are in! 📊 The four teams moving on to Round 4 of the #AmbassadorWorldCup are #TeamParis🇫🇷, #TeamIsrael 🇮🇱, #TeamNepal🇳🇵, and #TeamSpain!🇪🇸 Congratulations to all AWC teams for the incredible teamwork and effort put into protecting our AWC partners. 🙌

Come read how I found plain-text credentials of open source projects owned by Microsoft & GitHub that were leaked by the Azure CLI itself. My new blog on critical #bugbounty reports, and a new CVE-2023-36052. paloaltonetworks.com/blog/prisma-cl…

My new zoom background

Thank you HackerOne for creating this awesome community of hackers. Happy to join the Ambassador program and help bringing hackers together from all the different countries

Unlock the secrets of using internal data effortlessly in your bug hunting! Join my workshop at Bug Bounty Village Learn how to maximize valuable data and perform interactive testing. Perfect for AppSec testers and bug hunters. Bring your laptop and join me at Aug 10th, 10:00 am

Don't miss "Leveraging Internal Systems for Enhanced Bug Bounty Success" by Rotem Bar (Rotem Bar)! 📅 Saturday, Aug 10 ⏰ 10:00 AM 📍 Bug Bounty Village Classroom, Room W215 #BugBounty #DEFCON