My account was recently compromised by one of the javascript breaches. We did a ton of digging and research into the breach after it happened, and it was partially my own fault and partially due to some extreme insecurities in the Roblox public API endpoints. I was helping out a developer learn to …

If Roblox wouldn’t publish any information about endpoints, it would take a dedicated hacker (which these people are, this social engineering trick is pretty cunning after all) a whopping 10 minutes extra just leaving chrome console / any other network sniffer on and inspect network traffic to find …

Roblox Endpoint APIs Should Not Be Public

Bug Reports Website Bugs

buildthomas (buildthomas) Closed November 12, 2020, 11:25pm 11

This thread is made obsolete by these more specific topics: