We found a leading Web3 project unintentionally exposed Redis credentials. Initially got dismissed due to limited impact (Redis v6.2, no RCE exploit), we escalated this into a full cloud takeover by building our own RCE exploit for Redis 6.2.11
Details in 馃У


