Scott's Blog
Random mumblings of a Global SE

Latest

Aug
29

Major Boost Mobile Website Vulnerability (BOLA)

Dish Network is the 4th largest mobile provider in the US, with around 8.5 million customers - the majority
6 min read
Jan
26

How Not to Handle a Security Breach

A few months ago I wrote about how I had gained access to 82 separate hotel IPTV systems within an
4 min read
Dec
02

Hacking 82 Hotel TV Systems in 82 Minutes or Less

Security is hard to get right, there's no question about that.  But sometimes you come across things that
6 min read
Jun
06

XtremIO X2 Snapshots - REST API

(If you're not familiar with the XtremIO REST API I'd suggest first reading my posts on
2 min read
Jun
05

XtremIO X2 Snapshots

I've written previously about using snapshots on XtremIO, however things have changed a little with XtremIO X2 so
4 min read
May
28

United Airlines Bug Bounty Program

Around 4 years ago United Airlines launched a "Bug Bounty" program. Bug bounty programs are becoming more and
7 min read
Feb
21

United Airlines Mileage Plus/Points.com Information Disclosure

(Update: Less than 24 hours after posting this blog entry United Airlines fixed the problem described, and a password is
3 min read
Oct
17

Snapshot Changes in XtremIO X2

I've written previously about how Snapshots (and snapshot refresh) works in XtremIO. With XtremIO X2 we changed the way a few of the snapshot-related concepts work in order to simplify things, as well as to add some additional use cases that were not possible previously.
5 min read
Jun
05

Querying Performance Data from the XtremIO REST API

(If you're not already famaliar with using the XtremIO REST API, then I'd suggest reading my
9 min read
Apr
24

XtremIO X1 and VMware - APD v’s PDL

In general, when a Storage Controller is shutting down for any reason, XtremIO X1 will send a "Logical Unit
4 min read