o que a mídia não contou sobre o alerta misantropia
In the early hours of the morning that Brazil was celebrating its victory against Haiti, someone broke into the government's Civil Defense emergency alert system. It didn't require sophisticated hacking. It required Google and boredom. 30 million Brazilians received the misanthropy alert at 1 AM. The media covered WHAT happened. Nobody explained HOW it was possible. In this video I dismantle the engineering behind the Civil Defense hack: credential stuffing, a system without MFA, a territorial restriction that didn't work on the backend, and 600 passwords circulating. And the reason why this will happen again. ⭐ Become a channel member: / @manodeyvin 📸 Instagram: / manodeyvin 📌 Haircut channel: / @cortesdomanoofc ━━━━━━━━━━━━━━━━━━━━━━━━━━━━ ⏱ CHAPTERS ━━━━━━━━━━━━━━━━━━━━━━━━━━━━ 0:00 – Misanthropy alert: 30 million Brazilians awake in the middle of the night 0:48 – How the Civil Defense hack happened (timeline of the attack) 2:29 – What is IDAP: the government's emergency alert system 3:01 – Mistake 1: login and password with mathematical captcha to protect the national system 5:58 – Credential stuffing: the technique the hacker used to enter 7:34 – What should exist: MFA, hardware key and why captcha isn't security 11:43 – Mistake 2: territorial restriction that didn't work in backend 12:04 – Hesitation 3: 600 users without access control 13:17 – The solution: RBAC and ABAC explained without beating around the bush 17:11 – Did the government know? Security regulations that exist and nobody followed 18:39 – SIPNI, CADSUS and SISREGIII: what if misanthropy was only the least of the problems? 19:25 – The cry wolf effect: why the next alert could cost lives 21:13 – Conclusion: how long will it take the government to fix this? ━━━━━━━━━━━━━━━━━━━━━━━━━━━━ 🔗 SOURCES ━━━━━━━━━━━━━━━━━━━━━━━━━━━━ Interview with @mizantropiaz (TecMundo): https://www.tecmundo.com.br/seguranca... Government suspects coordinated attack (Poder360): https://www.poder360.com.br/poder-seg... Agent accounts used in the attack (NSC Total): https://www.nsctotal.com.br/noticias/... Vulnerability of the IDAP system (Gazeta do (People): https://www.gazetadopovo.com.br/brasi... Civil Defense confirms invasion (Brasil 247): https://www.brasil247.com/brasil/defe... False Civil Defense alert of 2026 (Wikipedia): https://pt.wikipedia.org/wiki/Alerta_... --------- 📧 Need recommendations for Pentesters / Senior Devs? Contact me: [email protected]
Trump signs executive order to invest in quantum computing that will make Moore's Law possible
MONARK: WHY GLOBO REVEALED HIS ABIN SECRET | Fala Glauber
SACANI ANSWERS: IS AI ALREADY BEYOND HUMAN CONTROL? (And is that a problem) | Além da Ciência #22
IS THE STEAM MACHINE DOOMED?
Meta: What's going on?
Trump negotiates END OF CONFLICT with Iran.
Why Your Windows PC is Slow? Clear Hidden RAM Cache in Seconds (Official Method)
I went on the Mamãe Falei podcast and defended Nando Moura
The most embarrassing AI prompt of the year! "MEGA BRAIN"
The market for IT interns and Junior devs is dead
ENTENDA A MÁFIA DOS NAVEGADORES DE INTERNET - Maicon react
Garotinho x Rubão - A História Política do Rio de Janeiro - Podcast 3 Irmãos #1003
um dev do roxinho fez merda.
Valve Steam Machine Review: GPU & CPU Benchmarks, SteamOS Test, Thermals, Noise, and Price
O Ataque Misantropia Esconde a Sociedade da Caixa-Preta
MIT Just Revealed the AI Bubble's Fatal Flaw
A YouTuber did what OpenAI wouldn't.
Como encontrar boas ações na bolsa de valores?
![🚨🚨 City hall AI cost 500k [allegedly] - MANO RAGE SHOW #EP254](https://i.ytimg.com/vi/eBTRKS5i_xM/hqdefault.jpg?sqp=-oaymwEjCNACELwBSFryq4qpAxUIARUAAAAAGAElAADIQj0AgKJDeAE=&rs=AOn4CLBT2KPDlu0X43uyKpb2iDWoVFciNQ)
🚨🚨 City hall AI cost 500k [allegedly] - MANO RAGE SHOW #EP254
