Danial Asaria
Danial Asaria
@danialasaria
Jul 23 10 months ago 6 tweets Read on X
AI Summary

A developer used just 15 lines of Python to find and access sensitive info on top launched sites, including debt, home addresses, and API keys, in under an hour. They reported it, emphasizing the need to be careful about who you trust with your data. It’s a warning to stay alert and protect your info online.

I just hacked multiple 'top launched' sites

Wait—what?

In less time than it took me to finish my lunch (47 mins), I extracted from live production apps:
💰Personal debt amounts
🏠Home Addresses
🗝️API keys (admin access)
🔥Spicy Prompts

Screenshots in thread 🧵

Not as a hacker - as a curious dev with 15 lines of Python.

This isn't a breach story (I reported it), this is a wake-up call.

Be cautious which 'vibe coder' you trust with your personal data.

API Keys

Tweet image 1

Personal Expenses

Tweet image 1

Spicy Prompts

Tweet image 1

Spicier Prompts

Tweet image 1

Missing some Tweet in this thread? You can try to Update

Unroll Another Thread

Convert any Twitter threads to an easy-to-read article instantly

Have you tried our Twitter bot?

You can now unroll any thread without leaving Twitter/X. Here's how to use our Twitter bot to do it.

  • Give us a follow on Twitter. follow us
  • Drop a comment, mentioning us @unrollnow on the thread you want to Unroll.
  • Wait For Some Time, We will reply to your comment with Unroll Link.
UnrollNow Twitter Bot

Tweet Analytics

View on X
Please note: the data and statistics on this page were last updated 10 months ago
Modal Image
0:00 / 0:00