このサイトを動かすGhostテーマのアップデート
このサイトで使用されているOSS Ghostテーマにいくつかの改良を加えました。具体的には、画像キャプションのサポート強化と、サイトの投稿をMastodonユーザー名に帰属させる機能を追加しています。これらの変更はGitLabで公開されています。
関連記事
A security researcher discovered that IPv6's massive address space combined with a botguard bypass could expose any Google user's phone number. The vulnerability allowed attackers to potentially leak phone numbers through systematic enumeration of IPv6 addresses.
A security vulnerability allowed attackers to obtain any Google user's phone number by exploiting IPv6's address space and bypassing botguard protections. The flaw exposed phone numbers through rate limit manipulation and infrastructure weaknesses.
DDoSecrets has released 410 GB of heap dump data obtained from a hack of TeleMessage's archive server. The data includes information from the company's customers, which reportedly include law enforcement agencies and financial institutions.
A new phishing-as-a-service called Starkiller uses disguised links to load real login pages from target brands. It acts as a relay between victims and legitimate sites, forwarding usernames, passwords, and MFA codes to bypass security measures.
An analysis of the Android Telegram client Telega found that it routes network traffic through a Man-in-the-Middle (MitM) infrastructure located in Russia, raising serious security and privacy concerns for users.