Categories
Bug Bounty
2025
The hidden attack surface - Exploiting Prompt Overrides in OpenAI and Anthropic SDKs
Thoughts That Talk Back - How ChatGPT Quietly Doxxed Your Name
Overlooked CORS Misconfiguration led to CSRF on Core Asset of Swisscom
Bypassing SMS OTP Authentication or a story behind $16.5k in bounties
