Random Robbie

🚨NEW: Armed police have mistakenly surrounded a man in Salford after believing he was a suicide bomber He was in an outdoor gym wearing a weighted vest

@caffyhank its a fake as always.

Fuckinhell John I’d say you was more of a pervert than me watching me through your camera

the immortal man was terrible

The peaky blinders film is meh it's started so much like the Russians getting involved in the last season a bit of a mess

Eid Mubarak, don't be a dick have a good Eid and ensure if you have a fast car your not going to be the mosque tit who wraps the car into a lamppost this year.

My car wants me to go motorbike off roading again!

@njcve_ Triage about to get bigger

There was 700 reports between 2 of my submissions, just 4 hours apart on hackerone. This isn't sustainable.

@monkehack I was thinking of a browser exploit to get started and then hopefully get a shell Vis that

@Random_Robbie Didn’t really dig into it yet. It’s quite locked down by default iirc

Any hardware hackers hacked the Facebook portal yet? Seeing it's EOL

@monkehack How did you get on?

@Random_Robbie I bought one like 2 years ago when it was already obsolete, for this purpose lol

@lennaert89 The problem I have is deciding which is worthy. Blind ssrf for me only report when you can at least probe and tell the difference. Some others I'm always like meh I dunno if it's with while

@Random_Robbie Nothing wrong with reporting good mediums

I've come to realise that instead of trying to have a bar of 7.3 CVVS I can report 5.3's a clean up all the smaller bountys

@DataChaz Any one who kept data from the shai hulud attack can vouch.

@Random_Robbie proofs?

With Voicebox, @ElevenLabs just lost its moat. → Powered by Alibaba's Qwen3-TTS for near-perfect cloning → Ships with a DAW-like "Stories Editor" → No cloud, runs locally on your machine 100% Open Source. 100% Local. Link to repo in 🧵↓

@DataChaz @ElevenLabs Elevenlabs pretty much is using openai. I reported an issue a while back after a supplychain attack and pretty much all their Dev keys were openai

@Random_Robbie @ElevenLabs what do you mean?

@iangcarroll Wouldn't it be the app when logged in it pings back to it or when they detect a new device from app sign in?

Capital One bans you from using your points for up to an entire month if you get a new device (IMEI) or carrier, and there is no workaround. One of the worst fraud rules I have ever seen and it has been this way for over a year now. Why can they even detect this?

@yeswehack Xml-rpc.php exposed

Which type of bug do you enjoy hunting the most? 👇 #BugBountyTips

The wages and it's work from home!

@our_jesse Them wages are great!

Smear test on Teams, anyone?

@drkshdw47 If it's Indian based expect a dupe.

Almost donde!! #bugbounty #yeswehack