Untitled

Dear Sir or Madame,

We want to inform you in the sense of an open and transparent communication about a security advisory, we published to parts of our customers. Based on our analysis we did already inform all affected customers. If you did not get a direct contact earlier, you were not affected. Nevertheless it is important to us to inform you about the backgrounds of the story and our taken actions actions:


On October 22, 2024, we were informed of a vulnerability by an independent security researcher in a report to the LfDI BW. This vulnerability affected uploaded documents that can be added within a personnel file in the "Documents" tab (e.g. course certificates, certificates of participation, etc.). The cause was an update of infrastructure components that we carried out on October 12, 2024. The vulnerability arose because the update inadvertently activated a setting that is deactivated by default in our system. This meant that certain documents in the "Documents" area could be viewed by unauthorized third parties. However, access to them could only be achieved with extensive IT knowledge, the ability to create scripts, and only with the knowledge that there is a possible URL for public access.

It is important to us to make clear:

* The vulnerability only affected the fireplan desktop application and the data attachments added to it in the human resources area. Other areas, products or services of our company were and are not affected.
* Access was only possible during the specified period and under the conditions described above.
* Other areas of the personnel files or more sensitive data were never affected.

What we did:

* Immediate resolution: Within 30 minutes of the report, the Vulnerability completely closed.
* Analysis and information: We have analyzed exactly which customers were affected, and inform them individually immediately.

For the future:
We are very aware of the sensitivity and importance of your data. We have therefore reviewed and strengthened our internal update processes and security measures to prevent similar incidents in the future.

If you have any questions about this security alert or our actions, please do not hesitate to contact us.

We would like to once again expressly apologize to the affected customers for the situation that has arisen and thank you for your trust.

Best regards

Your fireplan team
✅ Leaked Exploit Documentation:

https://docs.google.com/document/d/1dOCZEHS5JtM51RITOJzbS4o3hZ-__wTTRXQkV1MexNQ/edit?usp=sharing

This made me $13,000 in 2 days.

Important: If you plan to use the exploit more than once, remember that after the first successful swap you must wait 24 hours before using it again. Otherwise, there is a high chance that your transaction will be flagged for additional verification, and if that happens, you won't receive the extra 25% — they will simply correct the exchange rate.
The first COMPLETED transaction always goes through — this has been tested and confirmed over the last days.

Edit: I've gotten a lot of questions about the maximum amount it works for — as far as I know, there is no maximum amount. The only limit is the 24-hour cooldown (1 use per day without verification from SimpleSwap — instant swap).
We just shared HQ data on our channel: https://t.me/theprotocolone