@reverseame profile picture
reverseame @reverseame

RME-DisCo research group from University of Zaragoza. Special interest on software and systems security. Link to our Telegram channel: t.me/reverseame

Joined January 2016
  • Tweets 5,599
  • Following 1
  • Followers 22,276
70 Photos and videos
After the Takedown: Excavating Abuse Infrastructure with DNS Sinkholes #DNSSinkholes #AbuseInfrastructure #PassiveDNS #TakedownAnalysis #Badbox20 disclosing.observer/2026/01/…

After the Takedown: Excavating Abuse Infrastructure with DNS Sinkholes

A methodological analysis of how DNS sinkholes preserve abuse infrastructure at the moment of takedown, enabling post-hoc reconstruction using passive DNS data.

disclosing.observer
1
878
Account Takeover in Facebook mobile app due to usage of cryptographically unsecure random number generator and XSS in Facebook JS SDK #FacebookAccountTakeover #InsecureRandomNumber #DOMXSS #MobileAppVulnerability #IframeExploitation ysamm.com/uncategorized/2026…

Account Takeover in Facebook mobile app due to usage of cryptographically unsecure random number...

Facebook Javascript SDK and Facebook plugins

ysamm.com
1
755
How I Used an Agent to Hunt Vulns #Blazelight #TerminalUI #WebNavigation #GuestPrompt #DigitalPortfolio blazelight.dev/blog/agent-vu…

blazelight.dev

I do things on the computer.

blazelight.dev
1
4
628
Leaking Meta FXAuth Token leading to 2 click Account Takeover #FXAuthLeak #AccountTakeover #RedirectFlaw #MetaSecurity #BugBounty ysamm.com/uncategorized/2026…

Leaking Meta FXAuth Token leading to 2 click Account Takeover

Introduction FXAuth is Meta’s shared authentication system used across Facebook, Instagram, and Meta (Horizon / VR). It is used by Accounts Center for account linking, re-authentication, and sensit...

ysamm.com
2
2
910
StackWarp vulnerability #StackWarp #SEVSNP #StackManipulation #StackEngineBug #PrivilegeEscalation stackwarpattack.com/#home
5
598
Instagram account takeover via Meta Pixel script abuse #InstagramHack #MetaPixelAbuse #CrossWindowMessaging #OAuthCodeTheft #BugBounty ysamm.com/uncategorized/2026…

Instagram account takeover via Meta Pixel script abuse

Introduction Meta’s web ecosystem relies on cross-window messaging between first-party websites. In many cases, the only security control enforced is an origin check validating that messages origin...

ysamm.com
1
3
443
Multiple cross-site leaks disclosing Facebook users in third-party websites #XSLVulnerability #MetaSecurity #UserIdentification #PrivacyThreat #BugBountyProgram ysamm.com/uncategorized/2026…

Multiple cross-site leaks disclosing Facebook users in third-party websites

Introduction This write-up consolidates several XS-Leak issues discovered across Meta-owned platforms, including Facebook, Workplace, Meta for Work, and internal Meta surfaces.

ysamm.com
2
494
WinBoat: Drive by Client RCE Sandbox escape. #WinBoat #RemoteCodeExecution #SandboxEscape #DriveByAttack #UnauthenticatedAPI hack.do/posts/winboat-guest-…

WinBoat: Drive by Client RCE Sandbox escape.

A remote webpage can abuse an unauthenticated guest HTTP API to compromise the Windows guest container, then feed a malicious app entry leading to Linux host code execution on click.

hack.do
2
2
505
The ServiceNow AI Vulnerability: What Went Wrong and How to Secure Your AI Agents #ServiceNowAIHack #AIAgentSecurity #LegacyAISecurity #SupplyChainRisk #AIIdentity opena2a.org/blogs/servicenow…

The ServiceNow AI Vulnerability: What Went Wrong

85% of Fortune 500 exposed. Learn how AI agents need purpose-built security, not retrofitted legacy authentication.

opena2a.org
1
1
311
CVE-2026-20965: Cymulate Research Labs Discovers Token Validation Flaw that Leads to Tenant-Wide RCE in Azure Windows Admin Center #CVE202620965 #AzureWAC #TenantRCE #CymulateResearch #TokenValidation cymulate.com/blog/cve-2026-2…

CVE-2026-20965: Cymulate Research Labs Discovers Token Validation Flaw that Leads to Tenant-Wide...

Cymulate Research Labs uncovered CVE-2026-20965, a token validation flaw in Azure Windows Admin Center enabling tenant-wide RCE and lateral movement.

cymulate.com
2
8
834
Reprompt: The Single-Click Microsoft Copilot Attack that Silently Steals Your Personal Data #MicrosoftCopilot #RepromptAttack #DataTheft #SingleClickHack #AIVulnerability varonis.com/blog/reprompt

Reprompt: The Single-Click Microsoft Copilot Attack that Silently Steals Your Personal Data

Varonis Threat Labs discovered a way to bypass Copilot’s safety controls, steal users’ darkest secrets, and evade detection.

varonis.com
2
361
Drone Hacking Part 1: Dumping Firmware and Bruteforcing ECC #DroneHacking #FirmwareDumping #NANDFlash #ECCBruteforce #IoTResearch neodyme.io/en/blog/drone_hac…

Drone Hacking Part 1: Dumping Firmware and Bruteforcing ECC

Desoldering a drone's flash chip and reconstructing the firmware from broken data.

neodyme.io
11
44
2,274
Bad Vibes: Comparing the Secure Coding Capabilities of Popular Coding Agents blog.tenzai.com/bad-vibes-co…

We analyzed the security of AI coding agents. The result: broken auth, SSRF, and missing defenses.

Tenzai researchers tested Cursor, Claude Code, Codex, Replit, and Devin. Every AI coding agent shipped vulnerable code. Here’s what broke - and why it matters.

blog.tenzai.com
460
CVE-2025-64155: Three Years of Remotely Rooting the Fortinet FortiSIEM horizon3.ai/attack-research/…

CVE-2025-64155: FortiSIEM Analysis

Horizon3.ai details CVE-2025-64155, revealing chained FortiSIEM vulnerabilities enabling remote code execution and root access, analysis of the root cause, and indicators of compromise.

horizon3.ai
1
24
112
12,701
Cybersecurity AI: A Game-Theoretic AI for Guiding Attack and Defense #CybersecurityAI #GameTheory #AIAttack #AIDefense #SecurityStrategy arxiv.org/pdf/2601.05887
1
6
1,159
Grok’s image edits spark sexualised deepfakes and regulator probes worldwide thebias.co.uk/articles/grok_…
486
WTF Are Abliterated Models? Uncensored LLMs Explained webdecoy.com/blog/wtf-are-ab…

WTF Are Abliterated Models? Uncensored LLMs Explained - WebDecoy

What abliterated means in AI models: how abliteration removes the refusal direction from LLMs, why i

webdecoy.com
2
6
773
Relaying NFS4 from inside a container #NFS4Security #ContainerPentest #NetworkRelay #RootUserRisk #DockerSwarmHack francesco.cc/posts/relaying_…
2
566
Gixy-Next: NGINX Configuration Security Scanner for Security Audits #NginxSecurity #ConfigScanner #VulnDetection #HardeningTool #GixyNext gixy.io/

Gixy-Next: NGINX Security Scanner & Configuration Checker

Open source NGINX security, hardening, and configuration compliance scanner for automating nginx.conf security audits, compliance checks, and hardening against misconfigurations

gixy.io
4
20
1,540
CVE-2025-6554: The (rabbit) Hole #CVE20256554 #V8Exploit #TheHoleLeak #TDZBypass #TypeConfusion retr0.zip/blog/cve-2025-6554…
2
7
2,010
Load more