Is my TOTP key secure on a free hosting provider server with FTP and .htaccess restrictions?

I’m hosting a website on a free hosting provider server that uses PHP for OTP-based authentication. Here’s how it works:

If an unregistered IP address visits the site, it shows an "Unauthorized" message.

For registered IPs, the… Continue reading Is my TOTP key secure on a free hosting provider server with FTP and .htaccess restrictions?

CrushFTP zero-day exploited by attackers, upgrade immediately! (CVE-2024-4040)

A vulnerability (CVE-2024-4040) in enterprise file transfer solution CrushFTP is being exploited by attackers in a targeted fashion, according to Crowdstrike. The vulnerability allows attackers to escape their virtual file system and download system fi… Continue reading CrushFTP zero-day exploited by attackers, upgrade immediately! (CVE-2024-4040)