Y
Hacker News
new
|
ask
|
show
|
jobs
by
k1kingy
4480 days ago
Basically yes. As he did, he managed to get the API key by doing a TCP dump.
From there he was able to use the key to get the users and plaintext passwords. Very much wtf.