Calif
Subscribe
Sign in
Home
Visit Calif
Archive
About
Latest
Top
Discussions
Oracle SSO, SOS
You've probably seen the news: Oracle Cloud got popped, exposing 6 million records from over 140,000 tenants.
Apr 8
•
Thai Duong
8
Share this post
Calif
Oracle SSO, SOS
Copy link
Facebook
Email
Notes
More
March 2025
YouTube Threat Modeling
Last week, we delivered our first training session with YouTube engineers on the attacker's mindset and threat modeling.
Mar 25
•
Thai Duong
9
Share this post
Calif
YouTube Threat Modeling
Copy link
Facebook
Email
Notes
More
January 2025
Calif Ski Team
In Vietnam, we have three seasons: hot, hotter, and damn hot!
Jan 2
•
Thai Duong
6
Share this post
Calif
Calif Ski Team
Copy link
Facebook
Email
Notes
More
December 2024
CVE-2024-10382: Arbitrary code execution in Android Auto and various apps
In July 2024, Google engaged Calif to audit Android Automotive OS (AAOS) and Android Auto.
Dec 18, 2024
•
Khanh
and
Linhlhq
7
Share this post
Calif
CVE-2024-10382: Arbitrary code execution in Android Auto and various apps
Copy link
Facebook
Email
Notes
More
1
November 2024
What we do when we aren't hacking you
In my last year as a teenager, I worked as an IT assistant for Mr.
Nov 30, 2024
•
Calif
3
Share this post
Calif
What we do when we aren't hacking you
Copy link
Facebook
Email
Notes
More
September 2024
Building new hospitals in Vietnam
Two years ago, when a close friend of the family (let's call him D) was sick, I took him to tour the hospitals in Saigon.
Sep 20, 2024
•
Calif
11
Share this post
Calif
Building new hospitals in Vietnam
Copy link
Facebook
Email
Notes
More
August 2024
Wormable Substack XSS
We found a stored Cross-Site Scripting (XSS) vulnerability in Substack.
Aug 12, 2024
•
Khanh
21
Share this post
Calif
Wormable Substack XSS
Copy link
Facebook
Email
Notes
More
July 2024
Type confusion attacks in ProseMirror editors
Summary
Jul 16, 2024
•
Khanh
12
Share this post
Calif
Type confusion attacks in ProseMirror editors
Copy link
Facebook
Email
Notes
More
May 2024
Dissecting LockBit v3 ransomware
We analyzed a variant of LockBit v3 ransomware, and rediscovered a bug that allows us to decrypt some data without paying the ransom. We also found a…
May 2, 2024
•
Nhân Huỳnh
,
Hoang Nguyen
, and
Thai Duong
41
Share this post
Calif
Dissecting LockBit v3 ransomware
Copy link
Facebook
Email
Notes
More
1
April 2024
Ransomware Response Strategy
Summary
Apr 11, 2024
•
Nhân Huỳnh
26
Share this post
Calif
Ransomware Response Strategy
Copy link
Facebook
Email
Notes
More
March 2024
Microsoft Exchange 2010 Arbitrary User Impersonation
Microsoft Exchange is one of the most critical assets in any organization.
Mar 5, 2024
•
Khanh
13
Share this post
Calif
Microsoft Exchange 2010 Arbitrary User Impersonation
Copy link
Facebook
Email
Notes
More
1
February 2024
A trip to the White House
Two days before the Lunar New Year 2024, I went to the White House to meet with representatives of the National Security Council (NSC) to discuss…
Feb 11, 2024
•
Calif
12
Share this post
Calif
A trip to the White House
Copy link
Facebook
Email
Notes
More
1
Share
Copy link
Facebook
Email
Notes
More
This site requires JavaScript to run correctly. Please
turn on JavaScript
or unblock scripts
