• May 18: I published details about the TeleMessage server’s vulnerability in WIRED. TLDR: if anyone on the internet loaded the URL archive.telemessage.com/management/heapdump, they would download a Java heap dump from TeleMessage’s archive server, containing plaintext chat logs, among other things.

deleted by creator

Yikes

yet another win for DDoSecrets.

Ohhhhhhh boy. There is gonna be some nasty stuff in there.