Jussi Metsänkylä

BugBounty is like streamlined ransomware chain with some steps missing. RW: Vunerability -> Exploit -> Encryption -> Payment -> Recovery BB: Vulnerability -> Payment Streamline the business! #BugBounty

She social engineered the full event and participated in to every single talk she wanted to hear. I really appreciate the level of dedication here! There is no one capable to keep this one down Keep on rocking!

To. That limit bugged me for a sec there. AMD did awesome work on two stages. A) avoid critical vulns that impact performance in the future B) make a CPU that is awesome in cost-effectiveness

Im pretty sure that #vulnerabilities affect the economy as @AMD was 2,87$ at 2016 and today it is over 49$. Not saying that vulns of @intel alone affected this but I'm sure they have role in it also. Vulnerabilities do changes the world, no matter what industry you reflect them

Im not really a PCI DSS expert but Im pretty sure that if your cc issued at 2013 has expiry date at 2016, it shouldn't have worked at 31.12.2019 as was actually the case with multiple cards issued by the same bank. For some reason the bank either didn't require or check the date

Se fiilis kun oma äiti on linnan juhlissa. Todella tärkeää ja ainutlaatuinen tapahtuma vanhemmalle ihmiselle. Juontaja luonnollisestikin sanoo nimen väärin moneen kertaan kättelyssä. #linnanjuhlat #yle

Had an honour to give a presentation about API security at small event at @FSecure thank you @jyrkihuhta for hosting us. It was a great event and lots of awesome stuff on windows security.

Just to console my self over having my acquisition overturned, I did buy the address xn-- http://ls8h.ga  or as we know it .ga (There are around 7 TLDs that do support emojis.)

Now I don't know if Traficom has put their marvelous regex making the check, open to the actual parties selling the domains, but I'm pretty sure they should and all of this hassle would have been avoided.

I found at least two domain name brokers that did not check the domain format in the level regulated.

So I'm not technically registering a single emoji domain, but a text string that might translate to something entirely else.

So what I did was register the name "xn-- http://ls8h.fi " and "xn-- http://ls8h.com " that is a punycode of the emoji you can see displayed in the bill I got. (Had to add space there or Twitter will also just change it to the actual emoji)

There has been a bit of interest on this topic so I figured to open it up a bit. As the current standards of domains for fi or com do not support emojis, I figured to put this in a test.

70% koko väestöstä menetti henkilötietojansa. Siinä on jo käsittämätön luku. Vaikutukset ovat helposti hyvin massiivisia vaikka henkikötiedot eivät olisikaan täydellisethttps://twitter.com/TheHackersNews/status/1151550999728779265 …