In today's digital landscape, Application Programming Interfaces (APIs) serve as the connective tissue that enables seamless data and service exchanges between applications and businesses. However, with this great power comes great responsibility, as API security has become a critical concern. To ad...
This is not the first time we write about subdomain takeover and probably it won’t be the last. Every time we find a subdomain takeover we ask ourselves “How big is this (assets management) problem?”. This time we decided to answer our own question but we got caught in the rabbit hole where we met...
In the rapidly evolving landscape of information security, some conferences stand out as pivotal hubs for knowledge exchange, collaboration, and networking. One such beacon in Portugal is BSidesLisbon, the premier technical information security conference. Now in its 8th edition, this community-or...
Char49 is proud to announce that our Principal Security Researcher and Co-Leader at OWASP API Security Project, Paulo Silva, will be representing us at BSIDES AHMEDABAD 2023. He will be speaking on October 6th at this prestigious event in Ahmedabad, India, which brings together the brightest min...
"Integration Tomorrow" is a one-day conference that brings together industry leaders, experts, and professionals to discuss the latest trends and advancements in integration solutions. With technology rapidly evolving, integration plays a crucial role in enabling seamless data exchange and process...
Have you ever wondered what it feels like to own a Ferrari? We did. Not the car itself, but access to their database credentials.
Following Ferrari Responsible Disclosure Program1 Char49 discovered a vulnerability on the media.ferrari.com subdomain. The vulnerability affected a popular Wordpres...
