Calif
Subscribe
Sign in
Home
Visit Calif
Archive
About
Latest
Top
Discussions
Partnering with Google to Strengthen Open-Source Crypto: An Mbed TLS Security Audit
By Linh Le and Ngan Nguyen
Jul 5
5
Share this post
Calif
Partnering with Google to Strengthen Open-Source Crypto: An Mbed TLS Security Audit
Copy link
Facebook
Email
Notes
More
April 2025
Oracle SSO, SOS
You've probably seen the news: Oracle Cloud got popped, exposing 6 million records from over 140,000 tenants.
Apr 8
•
Thai Duong
9
Share this post
Calif
Oracle SSO, SOS
Copy link
Facebook
Email
Notes
More
1
March 2025
YouTube Threat Modeling
Last week, we delivered our first training session with YouTube engineers on the attacker's mindset and threat modeling.
Mar 25
•
Thai Duong
9
Share this post
Calif
YouTube Threat Modeling
Copy link
Facebook
Email
Notes
More
January 2025
Calif Ski Team
In Vietnam, we have three seasons: hot, hotter, and damn hot!
Jan 2
•
Thai Duong
6
Share this post
Calif
Calif Ski Team
Copy link
Facebook
Email
Notes
More
December 2024
CVE-2024-10382: Arbitrary code execution in Android Auto and various apps
In July 2024, Google engaged Calif to audit Android Automotive OS (AAOS) and Android Auto.
Dec 18, 2024
•
Khanh
and
Linhlhq
7
Share this post
Calif
CVE-2024-10382: Arbitrary code execution in Android Auto and various apps
Copy link
Facebook
Email
Notes
More
2
November 2024
What we do when we aren't hacking you
In my last year as a teenager, I worked as an IT assistant for Mr.
Nov 30, 2024
•
Calif
3
Share this post
Calif
What we do when we aren't hacking you
Copy link
Facebook
Email
Notes
More
September 2024
Building new hospitals in Vietnam
Two years ago, when a close friend of the family (let's call him D) was sick, I took him to tour the hospitals in Saigon.
Sep 20, 2024
•
Calif
11
Share this post
Calif
Building new hospitals in Vietnam
Copy link
Facebook
Email
Notes
More
August 2024
Wormable Substack XSS
We found a stored Cross-Site Scripting (XSS) vulnerability in Substack.
Aug 12, 2024
•
Khanh
21
Share this post
Calif
Wormable Substack XSS
Copy link
Facebook
Email
Notes
More
July 2024
Type confusion attacks in ProseMirror editors
Summary
Jul 16, 2024
•
Khanh
12
Share this post
Calif
Type confusion attacks in ProseMirror editors
Copy link
Facebook
Email
Notes
More
May 2024
Dissecting LockBit v3 ransomware
We analyzed a variant of LockBit v3 ransomware, and rediscovered a bug that allows us to decrypt some data without paying the ransom. We also found a…
May 2, 2024
•
Nhân Huỳnh
,
Hoang Nguyen
, and
Thai Duong
42
Share this post
Calif
Dissecting LockBit v3 ransomware
Copy link
Facebook
Email
Notes
More
1
April 2024
Ransomware Response Strategy
Summary
Apr 11, 2024
•
Nhân Huỳnh
27
Share this post
Calif
Ransomware Response Strategy
Copy link
Facebook
Email
Notes
More
March 2024
Microsoft Exchange 2010 Arbitrary User Impersonation
Microsoft Exchange is one of the most critical assets in any organization.
Mar 5, 2024
•
Khanh
14
Share this post
Calif
Microsoft Exchange 2010 Arbitrary User Impersonation
Copy link
Facebook
Email
Notes
More
1
Share
Copy link
Facebook
Email
Notes
More
This site requires JavaScript to run correctly. Please
turn on JavaScript
or unblock scripts