How a Simple OSINT Search Gave Me Access to Critical Systems

A few months ago, I utilised OSINT to uncover secrets that provided me with access to a bank’s application database and its SMTP server, demonstrating how an attacker could impersonate the bank by sending emails on its behalf. While this write-up is ...