Yeah this has been a common attack since as early as I can remember. Company goe... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		ObsoleteNerd on Aug 23, 2020 \| parent \| context \| favorite \| on: Finding vulnerable Twitter accounts with expired d... Yeah this has been a common attack since as early as I can remember. Company goes bust? Wait for their domain to expire then register/catch-all and start seeing what mail you get from websites to see where there’s accounts using that domain. Also plenty of more targeted methods too.

Thorrez on Aug 24, 2020 [–]

I wonder if it would be useful to use Have I Been Pwned to find a list of accounts on websites using that domain.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact