"Integration Tomorrow" is a one-day conference that brings together industry leaders, experts, and professionals to discuss the latest trends and advancements in integration solutions. With technology rapidly evolving, integration plays a crucial role in enabling seamless data exchange and process...
Char49 recently discovered a security misconfiguration on a subdomain of an American multinational corporation (Top50 on the Fortune500) website: an exposed Symfony web framework debug endpoint leaking sensitive information.
In a nutshell, exposing Symfony Profile or any other web framework debug...
Char49 will be represented by our COO, David Sopas, on January 18th and 19th at Digital Privacy and Security Conference 2023. The event will take place at the Lusofona University of Porto (ULP) and David will have the opening hour on the first day at 9:45, in a talk named "Hey Amazon, we hacked y...
Photography by @Women4Cyber
If October was exciting, November was really amazing! Why? No, it wasn't for the colder and rainy days, not even for the roasted chestnuts or the delicious autumn oven meals.
First, Paulo Silva on November 9th took part at OWASP Lisboa Chapter meetup in a talk named...
This is not the first time we write about the OWASP API Security TOP 10 and it won’t be the last. On our “Hunting the OWASP API Security Top 10” article, we did a quick introduction to this OWASP project, explaining a bit our involvement and contributions to it. Because we find more and more vulne...
On June 15th, 2021 our COO David Sopas presented at C- DAYS 2021 “Taking Over Your Subdomain 101”, which you can watch on YouTube. In his talk, David explains with great detail what subdomain takeover is, how to exploit and prevent it, as well as several recent Char49 findings. In this article...
