【Reddit】用户名密码暴力破解 https://hackerone.com/reports/1165225
【Reddit】密码重置没有速率限制会导致电子邮件枚举 https://hackerone.com/reports/1425884
【Proctorio】通用跨站脚本漏洞 https://hackerone.com/reports/1326264
【Aiven Ltd】Grafana 8.x 路径遍历漏洞 https://hackerone.com/reports/1415820
【Mail.ru】反射型XSS https://hackerone.com/reports/1379297
APPLE 邮件应用程序中的一种巧妙的网络钓鱼方法 https://jonbottarini.com/2021/12/09/dont-reply-a-clever-phishing-method-in-apples-mail-app/
APT追踪分析系列- Oceanlotus木马新版本发现及分析 https://mp.weixin.qq.com/s/Xe6kNH93IosKuyaAC5vP7Q
