Bezbedan Balkan Bezbednost privatnih resursa Neadekvatno zaštićeni resursi v
Neispravna 2FA na tickets.rs

Threaded Mode
Neispravna 2FA na tickets.rs
1van Offline
Posting Freak
*****
Posts: 1,728
Threads: 664
Joined: Sep 2022
Reputation: 126
#1
12-12-2022, 03:21 PM (This post was last modified: 12-12-2022, 03:21 PM by 1van. Edit Reason: Typo. )
Quote:U procesu plaćanja pukao je proces (2-step verification) a naplaćene su karte.

Quote:Kakva je to integracija plaćanja gde pukne proces pre forme za unos security code, code stigne na sms, a novac se naplati.

Izvor: https://twitter.com/igorkostickg/status/...7072931843
Arhivirano: https://archive.ph/RFtMY
“If you think you are too small to make a difference, try sleeping with a mosquito.” - Dalai Lama XIV
Website Find
Reply
1van Offline
Posting Freak
*****
Posts: 1,728
Threads: 664
Joined: Sep 2022
Reputation: 126
#2
12-15-2022, 02:13 PM (This post was last modified: 12-15-2022, 02:14 PM by 1van. Edit Reason: Typo. )
Zanimljivo je i da im mejlovi stižu u SPAM na GMail, zbog "DKIM: Body Hash Did Not Verify". DKIM, SPF i DMARC su im podešeni dobro, i Google kaže da su PASS.

Što može da znači (ako nisu kompromitovani) da im treća strana (Sendinblue SAS / sendinblue.com) ne potpisuje lepo mejlove, ili da im ubacuje dodatni sadržaj. Ako neko ima više iskustva sa ovim slučajevima, molim Vas dopišite komentar.

[Image: attachment.php?aid=329]


Attached Files Image(s)
   
“If you think you are too small to make a difference, try sleeping with a mosquito.” - Dalai Lama XIV
Website Find
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)