Latest Tech News

Stay updated with the latest in technology, AI, cybersecurity, and more

Filtered by: jwt Clear Filter

DrawAFish.com Postmortem

news.ycombinator.com Alden Hallak 2025-08-19 07:10:22

DrawAFish.com TL;DR: Incident Duration: ~6 hours (2AM–8AM EST) ~6 hours (2AM–8AM EST) Impact: Username vandalism (slurs) Offensive fish approved / safe fish removed Root Causes: Legacy 6-digit admin password exposed in past data breach Username update API lacked authentication JWT not tied to specific user Mitigation: Manual reversal of mod actions, fixed authorization logic, backups reviewed Manual reversal of mod actions, fixed authorization logic, backups reviewed Takeaway: hwoopsy dais

Topics: code fish jwt password username
Read More
Shop Amazon

Drawafish.com Postmortem: Whoops

news.ycombinator.com Alden Hallak 2025-08-19 22:10:22

DrawAFish.com TL;DR: Incident Duration: ~6 hours (2AM–8AM EST) ~6 hours (2AM–8AM EST) Impact: Username vandalism (slurs) Offensive fish approved / safe fish removed Root Causes: Legacy 6-digit admin password exposed in past data breach Username update API lacked authentication JWT not tied to specific user Mitigation: Manual reversal of mod actions, fixed authorization logic, backups reviewed Manual reversal of mod actions, fixed authorization logic, backups reviewed Takeaway: hwoopsy dais

Topics: code fish jwt password username
Read More
Shop Amazon

Self-Signed JWTs

news.ycombinator.com Unknown 2025-08-21 08:27:59

2025-08-01 Get a load of this (totally normalized) BS. "We have just the offering for you! Visit our website. Create an account. Verify your email. Create a project. Add your credit card. Go to settings. Create an API key. Add it to your password manager. Drop it in your .env file. Download our SDK. Import it. Pass your env var in. Never share your API key. Make sure you never commit it to source control. On the client, we have a React SDK. Make sure you use your publishable key for that. For

Topics: api create developer jwt key
Read More
Shop Amazon
Trending Topics
Hot Now
ai 2236 apple 1622 new 1348 content 1121 google 1045
Popular
like 941 company 846 zdnet 773 app 747 amazon 733 said 682 data 646 does 635 reviews 625 editorial 608
Emerging
samsung 577 pro 564 day 541 game 530 phone 516 android 492 just 488 galaxy 452 prime 450 iphone 447
About GoKawiil

GoKawiil is a project by nerdhub.co that curates technology news from trusted sources. We built this site to provide a cleaner, more mobile-friendly experience without intrusive ads or heavy JavaScript.

Privacy

Your privacy matters. GoKawiil doesn't use Google Analytics or Facebook Pixel. The only tracking occurs through affiliate links to Amazon.

Advertising

Interested in advertising? Contact us at [email protected]