Apple ‘Hide My Email’ Vulnerability Reveals Peoples’ Real Email Addresses
▲ 1.0k r/Simplelogin+1 crossposts

Apple ‘Hide My Email’ Vulnerability Reveals Peoples’ Real Email Addresses

A vulnerability in Apple’s “Hide My Email” tool lets almost anyone discover a person’s real email address that is supposed to be hidden by the feature, and Apple has failed to fix it for more than a year, according to a security researcher and 404 Media’s own tests.

404media.co
u/eve-collins — 4 days ago

For my US fellow traders. How do you do it?

It looks like Polymarket is doing everything to stop you from trading if you're based in US. I was able to do it via a VPN setup on one of the big cloud providers. It worked for a while but then stopped. It looks like they might be blocking traders that are coming from cloud providers like AWS or DigitalOcean.

For those of you that are in US - how do you folks do it?

reddit.com
u/eve-collins — 20 days ago

What is your methodology when working on boxes?

I worked on the Abducted medium linux box, and I found myself struggling with my general methodology. Below are spoilers so if you haven't worked on Abducted - stop reading here.

>!My methodology so far is mostly fingerprinting and footprinting the instance, finding which services and which versions are running, looking for CVEs for those services, then if found - look for ways to exploit them. With Abducted it was going nowhere. The Samba version is 4.6.2 which has a CVE but on this box it's not exploitable. The actual real issue is a misconfiguration that leads to a print-subsystem command injection (CVE-2026-4480). Given that this CVE is not a version specific and given there's no way to look at the Samba configuration in order to see a misconfiguration - how is one supposed to figure CVE-2026-4480 is what should be exploited? !<

>!Don't get me wrong, I really enjoyed this box and I'm not complaining, but I'm legitimately trying to understand what should be the methodology on finding these kinds of vulns. I'm sure I won't be able to pass the CPTS exam or be able to solve any hard boxes if I don't change smth in my approach. !<

Any feedback is welcome!

reddit.com
u/eve-collins — 24 days ago

I’m in!

Happy to join the club!

Where will I see the blocks once I start hitting them?

u/eve-collins — 2 months ago

The Silicon Valley reference is amazing!

So I was doing one of the machines last night and what a blast was to see it's referencing characters from the Silicon Valley show (imo one of the best shows of all times about engineers).

I won't name the box but if you did it - you know which one I'm referring to.

ps (spoiler) >!out of all of them of course Dinesh was the one to leak his credentials to a git commit hahahaha!<

reddit.com
u/eve-collins — 2 months ago