Using YouTube to steal your files

by breakingcupson 9/21/2024, 10:18:31 AM with 9 comments
  • by Goofy_Coyoteon 9/23/2024, 10:03:27 PM

    Absolutely loved everything about this.

    The attack, the explanation, the webpage, the writing.

    It’s an easy 10.

    Huge thanks for writing your whole thought process, including things that you tried and didn’t work.

    I’m going to use this post as an example for how a great writeup should be done.

  • by rozabon 9/22/2024, 10:04:43 AM

    Would like to highlight that this webpage, interactive 'screenshots' and all, is 31kb

  • by pcthrowawayon 9/21/2024, 9:00:12 PM

    Weird to see so little traction on this novel attack.

    Honestly, considering this allows anyone to access anyone else's private drive files, I would have expected the payout to be much higher

  • by 0dayzon 9/22/2024, 6:21:29 AM

    One major reason I either only watch Youtube on no account or dedicated Youtube Google account.

  • by ravishar313on 9/23/2024, 8:45:05 AM

    This was so good. Never thought things so trivial can be made into such attacks.

  • by nullcon 9/22/2024, 9:10:18 AM

    How can you tell if your root folder has been shared this way? Doesn't look like the root folder's sharing settings are accessible via the normal UI.

  • by marvina2on 10/4/2024, 9:30:34 AM

    Incredible research

  • by Jerrrryon 9/23/2024, 12:47:14 PM

    This was impressive beyond what I can ingest before a full pot of coffee.

    Bravo

  • by spatterl1ghton 9/22/2024, 7:34:58 PM

    this is awesome! loved the read