Starbucks' sub-domain takeover

On June 25 2018, the researcher Patrik Hudak reported a sub-domain takeover on Starbucks.com.

He found that svcgatewayus.starbucks.com was pointing to the Microsoft Azure platform. As Azure is a cloud provider, it is very easy to create a new bucket associated to this sub-domain and subsequently put Starbucks at risk.

If you want to read more about this bug, visit the following link: https://hackerone.com/reports/325336.
..................Content has been hidden....................

You can't read the all page of ebook, please click here login for view all page.
Reset
13.59.187.201