July 9, 2024
July 9, 2024
Reverse Engineering TicketMaster's Rotating Barcodes (SafeTix)
Reverse Engineering TicketMaster's Rotating Barcodes (SafeTix)
“Screenshots won’t get you in”, but Chrome DevTools will. Click here to skip the rant and go straight to the nerdy stuff. I recently purchased tickets to a concert from TicketMaster. If they had issue
Or, I guess, another way to view it:
This is wild: Ticketmaster introduced 'non-transferrable' tickets, so resales would have to happen on its own platform (further monopolization). Now scalpers have worked with hackers to reverse engineer the barcodes, makes them transferrable https://t.co/VYqFPKrnz8
— Joseph Cox (@josephfcox) July 8, 2024
Enjoying the implication here that @ciaranmartinoxf has just issued a chilling threat to the government pic.twitter.com/HzK1OBCpO9
— Shashank Joshi (@shashj) July 9, 2024
"At the hearing, the Individual testified that he still was not sure who he had been talking to online but when asked did not rule out that it could have been the actress."https://t.co/1oXii1sTg5
— Matthew Gault (@mjgault) July 8, 2024
Mirror of yesterday’s story, since the host is unreliable:
https://archive.ph/2024.07.06-054722/https://theins.press/en/politics/272870https://marc.info/?l=oss-security&m=172045570013195&w=2
Crypto folks (hopefully) already know that Lazarus is one of the most prevalent threat actors targeting this industry.
— Tay 💖 (@tayvano_) July 8, 2024
They rekt more people, companies, protocols than anyone else.
But it's good to know exactly how they get in. Bc another smart contract audit won't save you. pic.twitter.com/8dqdF3HQIv
'...“few DO case officers ever recruit anyone. It's an extremely rare event. A CIA survey, covering the three decades prior to 1985 concluded that less than 5% of DO case officers recruited someone capable of producing protected, significant information”' https://t.co/W3yUh4KSfh
— Shashank Joshi (@shashj) July 8, 2024
— Nefarious Bits 🏳️🌈 (@BitsHammer) July 7, 2024
Funny to see them trying to hide and me simply detecting the method they use to hide their malicious payload
— Florian Roth (@cyb3rops) July 8, 2024
P.S.: probably some MSF payload but I don't really give af
P.P.S.: don't even try to triple base64 encode it bc I would still detect that craphttps://t.co/HNDbMumP4l pic.twitter.com/PCNksEDrK4
Loved this chat between @thegrugq and @tomatospy on @riskydotbiz about how bureaucracies deal with cyber top guns, inspired by China's elite hackers. This topic definitely deserves a deeper dive.
— Eugenio Benincasa (@eubenincasa) July 9, 2024
Podcast link: https://t.co/yfzexQBsQT pic.twitter.com/1rh6OAaYQw
Guide To Attending a Launch
