This blog is a real single-page application with no server code or database. It's refreshingly easy to work with.
I'm preparing a series of posts where I'm disclosing several security vulnerabilities that I discovered the spring and summer of 2017.
Using only the plate number of a Norwegian car you can find the name, address, Social Security number, etc. of the owners.
That a service is heavily gated doesn't mean that your information is safe. I'm taking it down a notch this week; this is not a severe case, but an OK reminder for us developers on how we protect our resources and to never trust the client.
One of the "digital mailbox" services used by more than 400 central and local Norwegian government agencies to send mail, was leaking IP addresses and full names.
My smart home isn't all smart. When it comes to security it's pretty dumb.
In 2017 you don't see that many sites running PHP, but recently I stumbled on this site of classical PHP vulnerabilities.
I thought I could have this blog as a real single-page application with no server code. That sort of worked. If it only hadn't been for the previews.
I'm sure you expect your bank accounts to be safe from prying eyes. For a while other customers knowing my bank account number could check my account balance.