R2S was a painful one, but Lachlan was a dream of a security researcher to partner with. Not just from a responsible disclosure POV, but things like hopping on multiple calls with Meta and our team to help us validate remediations. Thank you Lachlan for helping make the internet safer (and great job on figuring out this 'labyrinth' of a vulnerability)
sam1r 32 minutes ago [-]
>> Amazingly, despite being a weekend, the Meta team triaged, reproduced, and confirmed my submission in around 17 hours.
Incredible. Realize what you have done from start to finish (with confirmation) in < 24 hours.
simonreiff 54 minutes ago [-]
What a great write-up. Thanks for sharing how you found this fascinating vulnerability and exploit.
keyle 2 hours ago [-]
Nice read!
I love the "we are so back" vs. "it's so over" graph. Defines so much of this type of work. "Wow? ... nah... WOW?! ... nah..."
Rendered at 02:36:28 GMT+0000 (Coordinated Universal Time) with Vercel.
Incredible. Realize what you have done from start to finish (with confirmation) in < 24 hours.
I love the "we are so back" vs. "it's so over" graph. Defines so much of this type of work. "Wow? ... nah... WOW?! ... nah..."