Tuesday, June 30, 2026
Daybreak: Tools for securing every organization in the world — OpenAI's push to give under-resourced security teams AI-assisted tooling for detection and defense.
Read more →FREE Resources – Dawid Czagan — A curated set of free training materials for web and application security practitioners.
Read more →Agentic RE: Automating Reverse Engineering & Vulnerability Research with AI — A DEF CON training on using AI agents to speed up binary reverse engineering and vuln discovery.
Read more →Reversing Apple Patches — An Objective by the Sea talk on reverse engineering Apple's security patches to find what they actually fix.
Read more →Test patches submitted for Mythos — A writeup testing FreeBSD local patches against an open-weight model in the Mythos research line.
Read more →Monday, June 29, 2026
AI Security Newsletter — June 2026 — A monthly roundup of AI-specific security threats, tooling, and research.
Read more →Claude-Red — An open-source red-teaming toolkit for probing Claude and other LLMs for unsafe behavior.
Read more →Malware Analysis Course — A free, structured curriculum for learning reverse engineering and malware analysis fundamentals.
Read more →Saturday, June 27, 2026
Brutecat: Hacking Google with AI — A researcher's thread on using AI-assisted techniques to find and chain bugs in Google products.
Read more →claude-bug-bounty — A community-run bug bounty program focused on finding safety and security issues in Claude-powered agents.
Read more →Cyber Brief Templates for Decision-Makers — Lenny Zeltser's reusable templates for communicating security incidents and risk to executives clearly.
Read more →Needle in the Haystack: LLMs for Vulnerability Research — An exploration of how well LLMs can surface real vulnerabilities buried in large codebases.
Read more →AIRecon Penetration Testing Tool — A new AI-assisted reconnaissance tool aimed at speeding up the early phases of penetration tests.
Read more →Salesforce Data Thefts via Klue App Compromise — Attackers used a compromised third-party Salesforce app (Klue) to exfiltrate customer data across multiple tenants.
Read more →Huntress Klue Breach Investigation — Huntress's own incident-response deep dive into the Klue app supply-chain breach and its blast radius.
Read more →Autonomous Vulnerability Hunting with MCP — A look at using the Model Context Protocol to let AI agents autonomously chain tools and hunt for vulnerabilities.
Read more →The Notion of a Honeypot Persona — Lenny Zeltser on designing believable fake personas to lure and study attackers.
Read more →Awesome Cybersecurity Agentic AI — A curated list of tools, papers, and projects at the intersection of agentic AI and offensive/defensive security.
Read more →Malware Analysis Report Template — A reusable template for writing clear, consistent malware analysis reports.
Read more →How I Use Every Claude Code Feature as a Security Engineer — A practitioner's tour of mapping every Claude Code capability onto real security engineering workflows.
Read more →Month of AI Bugs — A public disclosure initiative publishing one AI-related security bug per day for a month.
Read more →Pentest Copilot — An AI copilot that assists penetration testers with recon, exploitation guidance, and reporting.
Read more →Thursday, June 25, 2026
The Blueprint of a North Korean Attack on Open-Source — A breakdown of DPRK-linked tactics for infiltrating and compromising open-source supply chains.
Read more →Skills lie. We stop that. — A scanner built to detect malicious or misrepresented behavior hidden inside AI agent "skills" before they run.
Read more →Tuesday, June 23, 2026
Novo Nordisk Breach: How a Leaked GitHub Token Exposed the Exact Ozempic Formula — Researchers detail how an exposed credential in a public repo led to sensitive pharmaceutical IP leaking.
Read more →Visa Vulnerability Agentic Harness — Visa's open-source harness for using AI agents to hunt vulnerabilities in its own codebase.
Read more →Monday, June 15, 2026
How It Works — Aryon Security explains its approach to automated cloud identity and access risk reduction.
Read more →A Piece of the Pi — Pi Security shares an inside look at its AI-driven security engineering approach.
Read more →AI Security Agent for Log Triage, Recon & Audits — A tool pitching autonomous AI agents for routine security operations work like log triage and recon.
Read more →Friday, June 12, 2026
Watch the Wiz Code Product Demo — A recorded walkthrough of Wiz's code security scanning product for catching vulnerabilities pre-deployment.
Read more →Thursday, June 11, 2026
How to Secure AI Agents with Zero Trust — An ebook applying zero-trust principles — least privilege, continuous verification — to autonomous AI agent deployments.
Read more →Open Source Security Scorecard — OpenSSF's automated tool that scores open-source projects on security best practices to help consumers assess supply-chain risk.
Read more →Cyber Security Guidance Material — HHS's official cybersecurity guidance for healthcare organizations handling HIPAA-covered data.
Read more →Why I'm Joining Wiz — A security researcher's reflection on why he's joining the cloud security company Wiz.
Read more →Wednesday, June 10, 2026
One-Character Linux Kernel Flaw Enables Local Root Access — A single-character typo in kernel code is shown to enable full local privilege escalation, with public exploits now circulating.
Read more →The sorry state of skill distribution — Trail of Bits examines how loosely-vetted "agent skills" are distributed and why that's a supply-chain risk waiting to happen.
Read more →Apple Passwords Can Now Automatically Fix Weak and Compromised Passwords With Agentic AI — Apple's Passwords app gains an agentic feature that detects and rotates weak or breached credentials automatically.
Read more →Monday, June 1, 2026
Introducing Breach Bums: A Cybersecurity Book Club — A new community book club dissecting security literature and breach case studies together.
Read more →Friday, May 29, 2026
Stored XSS to Account Takeover: CVE-2026-41241 in pretalx — A disclosed high-severity stored XSS in the open-source conference platform that chains to full account takeover.
Read more →Thursday, May 28, 2026
I AUTOMATED a Penetration Test!? — A demo of chaining AI agents to run recon, exploitation, and reporting for a pentest end-to-end.
Read more →Wednesday, May 27, 2026
Automating Security Operations with AI: Triaging Renovate PRs — A practical walkthrough of using an LLM to triage and approve low-risk dependency-update pull requests safely.
Read more →Charter confirms data breach after ShinyHunters extortion threat — The telecom confirms customer data was accessed after the extortion group threatened to leak it.
Read more →Monday, May 25, 2026
Google leaks details for Chromium bug that can turn browsers into bots — Premature disclosure of a Chromium flaw that could be weaponized to hijack browsers into a botnet.
Read more →sfr-development/WonderSuite-Ai-Bug-Bounty
Read more →Friday, May 22, 2026
How a single image takes control of a Mac — Kaspersky details a real-world exiftool exploit chain that achieves code execution via a crafted image file.
Read more →Verizon DBIR 2026 — Verizon's annual breach report finds vulnerability exploitation has overtaken stolen credentials as the top initial access vector.
Read more →Microsoft Open-Sources RAMPART and Clarity — Two new open-source tools from Microsoft aimed at hardening AI agents against prompt injection and unsafe tool use during development.
Read more →Thursday, May 21, 2026
Adversaries Leverage AI for Vulnerability Exploitation, Augmented Operations, and Initial Access — Explore GTIG's 2026 report on how adversaries leverage AI for zero day exploits, autonomous malware, and industrial scale cyber operations.
Read more →Hackers accessed BWH Hotels reservation system for months — BWH Hotels says hackers accessed guest reservation data, including names and contacts, for over six months across multiple hotel brands.
Read more →cyber_rss — A curated list of security-focused RSS feeds for staying current on vulnerabilities and threat intel.
Read more →Project Glasswing: what Mythos showed us — Cloudflare's findings on how frontier AI models are already being used to accelerate offensive cyber operations.
Read more →Claude-BugHunter — A Claude Code skill bundle packaging 574+ disclosed bug-bounty patterns across 24 vulnerability classes for automated bug hunting.
Read more →Sunday, May 17, 2026
Adversaries Leverage AI for Vulnerability Exploitation, Augmented Operations, and Initial Access — Explore GTIG's 2026 report on how adversaries leverage AI for zero day exploits, autonomous malware, and industrial scale cyber operations.
Read more →Hackers accessed BWH Hotels reservation system for months — BWH Hotels says hackers accessed guest reservation data, including names and contacts, for over six months across multiple hotel brands.
Read more →Friday, May 8, 2026
Edtech Firm Instructure Discloses Data Breach Amid Hacker Leak Threats — Edtech company Instructure says names, email addresses, ID numbers, and messages were stolen in a cyberattack.
Read more →Seven Queries to Audit the Sentinel Detections Your SOC May Have Missed. — More
Read more →Anthropic Mythos shaping up as nothingburger — Hackpocalypse deferred
Read more →CTFs in the AI Era — The Include Security team attended the BSides 2026 CTF competition and observed how effective frontier models have become at solving a variety of CTF challenges. Our team gives a first hand account of how the winning strategy has recently shifted to prioritizing efficient solve times and orchestration pipelines that can combine the speed of lighter weight models on easier challenges with a heavy hitting model's reasoning capabilities. We also highlight why the success of LLMs in CTFs does not translate as effectively in the arena of professional security assessments.
Read more →Introducing AIMap: Security Testing For AI Agent Infrastructure — AIMap is Bishop Fox's open source tool for discovering and testing exposed AI infrastructure, giving defenders the visibility attackers already have.
Read more →Sunday, April 19, 2026
FBI Recovers Deleted Signal Messages Through iPhone Notifications — Signal messages may persist in iPhone notification data, enabling FBI access even after deletion, a court case reveals. Here's how to disable this!
Read more →Google rolls out Gmail end-to-end encryption on mobile devices — Google says Gmail end to end encryption (E2EE) is now available on all Android and iOS devices, allowing enterprise users to read and compose emails without additional tools.
Read more →I've Completely Changed How I Work — Sharing the motivation, approaches, and what it means for the future of staff engineering
Read more →Sunday, April 5, 2026
Securing AI agents: the defining cybersecurity challenge of 2026 — The agentic workforce is pushing CISOs to reimagine the security stack as they navigate an evolving threat landscape.
Read more →Pentesting a pentest agent - Here’s what I’ve found in AWS Security Agent — Richard’s blogs on Cloud Security
Read more →Designing AI agents to resist prompt injection — How ChatGPT defends against prompt injection and social engineering by constraining risky actions and protecting sensitive data in agent workflows.
Read more →Security Analysis of the Official White House iOS App — We reverse engineered the official White House iOS app (gov.whitehouse.app) and found concerning security and privacy issues, including a Russian origin company executing live JavaScript, GPS tracking with a false privacy manifest, and minimal security hardening.
Read more →Sunday, March 22, 2026
FancyBear Exposed: Major OPSEC Blunder Inside Russian Espionage Ops — Exemplar security report
Read more →Everyone is finding vulns. The hard part is proving them. — ProjectDiscovery Blog — LLMs are a genuine leap forward for vulnerability discovery. Anthropic reported 500+ zero days from Opus 4.6 and OpenAI's Codex Security discovered 14 CVEs across projects like OpenSSH and GnuTLS. If you've experimented with LLMs for security testing, you've probably been impressed too.
Read more →Twenty Years of Cloud Security Research | Wiz Blog — This post will look at the past 20 years of cloud security research, separating the two decades into eras with important milestones defined that resulted in the change of one era to the next.
Read more →Thursday, March 12, 2026
A Race Within A Race: Exploiting CVE-2025-38617 in Linux Packet Sockets
Read more →LTR101 - Getting into Industry in 2026
Read more →Kali & LLM: Completely local with Ollama & 5ire | Kali Linux Blog
Read more →AI Security Handbook — must review!!
Read more →Your AI Copilot Is the Newest Attack Surface | Barrack AI
Read more →Community-powered security with AI: an open source framework for security research
Read more →Sunday, March 8, 2026
New LexisNexis Data Breach Confirmed After Hackers Leak Files
Read more →Rare Not Random — Using tokenizer to find secrets! Great idea
Read more →Friday, March 6, 2026
Google addresses actively exploited Qualcomm zero-day in fresh batch of 129 Android vulnerabilities
Read more →Google API Keys Weren't Secrets. But then Gemini Changed the Rules. ◆ Truffle Security Co.
Read more →Building an AI Vishing Solution in 7 Days
Read more →Dutch cops back Odido as ShinyHunters leaks continue
Read more →1Password | AlphaSOC
Read more →Friday, February 27, 2026
TetrisBench pits LLMs against Tetris in a novel benchmark that illuminates AI capabilities and competitive coding—an intriguing lens on AI model performance that could extend to security automation use cases.
Read more →Analysis argues that OpenClaw's security weaknesses stem from fundamental architectural decisions rather than implementation flaws, offering a framework for evaluating secure AI agent design.
Read more →The Open Compliance Trust Exchange Protocol introduces a verifiable compliance framework, enabling organizations to demonstrate regulatory adherence through cryptographic proofs and standardized trust signals.
Read more →Anthropic publishes research on detecting and preventing model distillation attacks, where adversaries extract a model's capabilities by repeatedly querying it to train a smaller, unauthorized replica.
Read more →A security researcher remotely accessed thousands of DJI Romo robovacs due to critical MQTT protocol vulnerabilities, exposing users to unauthorized camera access and remote control of home devices.
Read more →A researcher leverages AI-assisted fuzzing to discover over 100 Linux kernel bugs in 30 days, demonstrating how agentic AI can dramatically accelerate vulnerability discovery at the OS level.
Read more →Qualys releases a comprehensive 2026 guide on cloud credential misuse, detailing how attackers exploit legitimate security tools to compromise cloud environments with detection and prevention strategies.
Read more →CarGurus discloses a data breach affecting 12.5 million user accounts, highlighting ongoing vulnerabilities in automotive marketplace platforms and the importance of robust data protection measures.
Read more →Security researchers uncover vulnerabilities in Anthropic's Claude Code CLI tool that could expose developers' machines to unauthorized access, raising concerns about AI coding assistant security.
Read more →Friday, February 20, 2026
Aisle Security researchers demonstrate responsible AI vulnerability disclosure, detailing what effective AI security research methodology looks like in practice.
Read more →Security researcher Connor McGarr reveals a privilege escalation technique in Windows via ETW's SecurityTrace flag, exposing nuanced internals of Windows privilege management.
Read more →Researchers discover that Claude's internal refusal 'magic string' can be exploited to disrupt LLM-powered workflows, highlighting a novel AI denial-of-service attack vector.
Read more →Coinbase details how it uses Multi-Party Computation (MPC) encryption to protect personally identifiable information, offering a technical deep dive into consumer data security.
Read more →Proofpoint acquires Acuvity to address emerging security risks posed by agentic AI systems, expanding its enterprise security portfolio.
Read more →Palo Alto Networks acquires Koi Security to strengthen its agentic AI endpoint protection capabilities as AI-driven threats accelerate.
Read more →Reports reveal a senior Saudi official implicated in a Twitter espionage plot is included in the delegation accompanying Crown Prince Mohammed bin Salman on a US visit.
Read more →Friday, February 6, 2026
Upwind secures $250 million in funding to expand its cloud security platform and customer capabilities
Read more →fwd:cloudsec North America 2026 conference opens its call for papers for cloud security practitioners
Read more →Friday, January 30, 2026
Claroty secures $150 million in Series F funding to advance protection of mission-critical infrastructure
Read more →Objective-See publishes comprehensive analysis of Mac malware discovered in 2025
Read more →Analysis of how LLMs are industrializing exploit generation and its implications for security
Read more →Trail of Bits releases Burp Suite project parser skill for security testing automation
Read more →Daniel Miessler's Personal AI Infrastructure includes reconnaissance skill pack for security research
Read more →AWS discovers that automated reasoning improves system efficiency and maintainability in security applications
Read more →Friday, January 16, 2026
Claude Cowork Exfiltrates Files
Read more →Superhuman AI Exfiltrates Emails
Read more →Cybersecurity Firms Secured $14 Billion in Funding in 2025: Analysis funding.
Read more →AWS Ends SSE-C Encryption, and a Ransomware Vector | CSA
Read more →The Cloud-Native Detection Engineering Handbook for cloud class.
Read more →Cybersecurity Changes I Expect in 2026
Read more →ESXi Exploitation in the Wild
Read more →Wednesday, January 14, 2026
CrowdStrike acquires just-in-time access startup SGNL for $740M
Read more →Tuesday, January 6, 2026
Cybersecurity skills matter more than headcount in the AI era
Read more →Wednesday, December 31, 2025
DROP - Launching January 1
Read more →Wednesday, December 24, 2025
how to hack discord, vercel and more with one easy trick - eva's site
Read more →Modernizing LinkedIn’s Static Application Security Testing Capabilities to protect our members SAST with CodeQL at LinkedIn
Read more →Anna’s Archive: LibGen (Library Genesis), Sci-Hub, Z-Library in one place - Anna’s Archive Anna's Archive Backed up Spotify!
Read more →Sunday, December 21, 2025
Holiday Hack Cybersecurity Challenge 2025 SANS Holiday Hack!
Read more →Winning the AI Cyber Race: Verifiability is All You Need
Read more →Over 300,000 Individuals Impacted by Vitas Hospice Data Breach
Read more →A look at an Android ITW DNG exploit - Project Zero Google Zero technical note on Android DNG exploit.
Read more →Wednesday, December 17, 2025
InfoSecMap – Mapping out the best InfoSec events & groups!
Read more →Monday, December 15, 2025
Automation of the NIST Cryptographic Module Validation Program — Automated Cryptographic Module Validation Project documentation Keith Hodo worked on this.
Read more →gadievron/raptor: Raptor turns Claude Code into a general-purpose AI offensive/defensive security agent. By using Claude.md and creating rules, sub-agents, and skills, and orchestrating security tool usage, we configure the agent for adversarial thinking, and perform research or attack/defense operations. Raptor turns Claude Code into a general-purpose AI offensive/defensive security agent.
Read more →How We Caught Lazarus's IT Workers Scheme Live on Camera React vulnerability
Read more →CaMeL CaMeL, a capability-based system that stops LLM prompt injections
Read more →Building Your Personal AI Infrastructure with Daniel Miessler Personal AI Agents.
Read more →React2Shell (CVE-2025-55182): Critical React Vulnerability | Wiz Blog Evaluate this for Startree
Read more →LinkPro: eBPF rootkit analysis How to do security analysis
Read more →Why the MITRE ATT&CK Framework Actually Works Introduction to MITRE framework
Read more →Monday, December 8, 2025
Bipartisan health care cybersecurity legislation returns to address a cornucopia of issues New Bill for Cybersecurity in Healthcare.
Read more →Thursday, December 4, 2025
Sha1-Hulud 2.0 Supply Chain Attack: 25K+ Repos Exposed | Wiz Blog Part 2
Read more →Sha1-Hulud 2.0 Supply Chain Attack: 25K+ Repos Exposed | Wiz Blog Part 2
Read more →Researchers Capture Lazarus APT's Remote-Worker Scheme Live on Camera Peak at an APT Cholima kit!
Read more →Sunday, November 30, 2025
System Administrators Advent Calendar
Read more →Wednesday, November 26, 2025
Appliance like virtualization
Read more →Tuesday, November 25, 2025
0x90n/InfoSec-Black-Friday: All the deals for InfoSec related software/tools this Black Friday BlackFriday deals
Read more →A Reverse Engineer’s Anatomy of the macOS Boot Chain & Security Architecture interesting to ask LLM to summarize.
Read more →Monday, November 24, 2025
From code to boardroom: A GenAI GRC approach to supply chain risk
Read more →Saturday, November 22, 2025
eLearning Platform
Read more →IMDS Abused: Hunting Rare Behaviors to Uncover Exploits | Wiz Blog IMDS Hunting
Read more →Tuesday, November 18, 2025
From tasks to systems: A practical playbook for operationalizing AI Consider offering an AI Operators Bootcamp to Sentant, etal.
Read more →Friday, November 14, 2025
Weekly CISO Intelligence Briefing: November 6 - 12, 2025 Super detailed report -- part of which can be used in my annual security report
Read more →What Keeps me up at Night Good for year end recap.
Read more →OWASP Top 10 LLM Security Risks with Mitigation LLM OWASP TOP 10
Read more →jacobdjwilson/awesome-annual-security-reports: A curated list of annual cyber security reports Year END Security Reports
Read more →2025 SANS CloudSecNext Summit
Read more →How Cloudflare’s client-side security made the npm supply chain attack a non-event
Read more →WTF is ... - AI-Native SAST? Write a blog on this.
Read more →Hacking with AI SASTs: An overview of ‘AI Security Engineers’ / ‘LLM Security Scanners’ for Penetration Testers and Security Teams Write a blog on this
Read more →GTIG AI Threat Tracker: Advances in Threat Actor Usage of AI Tools | Google Cloud Blog AI Security Threat Intel
Read more →Amazon discovers APT exploiting Cisco and Citrix zero-days [[41.Q3 CIS53]] Deploying Honeypot -- the whys?
Read more →The-Art-of-Hacking/h4cker: This repository is primarily maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, digital forensics and incident response (DFIR), artificial intelligence security, vulnerability research, exploit development, reverse engineering, and more.
Read more →Visualize Security Attacks
Read more →Wednesday, November 12, 2025
Gray Swan Best AI Security Arena.
Read more →Fantastic Bugs [[41.Q3 CIS53]] CMU CyLab Courses
Read more →25 crazy software bugs explained
Read more →Tuesday, November 11, 2025
ATT&CK v18: Detection Strategies, More Adversary Insights, MITRE attack 18 and whats new blog?
Read more →MITRE ATT&CKcon - ATT&CKcon 6.0 | MITRE ATT&CK® Use content from MITRE ATT&CKcon to present in [[41.Q3 CIS53]] class
Read more →FlowViz - Visualize Attack Flows Interesting tool for visualizing an attack!
Read more →Linux Containers - Incus - Introduction NG Linux Container.
Read more →SECFORCE/LLMGoat: This project is a deliberately vulnerable environment to learn about LLM-specific risks based on the OWASP Top 10 for LLM Applications.
Read more →Early Warning Honey Tokens: Give Adversaries Options | DeceptIQ Honey Pot company, super interesting. Include this in the [[41.Q3 CIS53]] class honeypot project.
Read more →Implementing the Etherhiding technique
Read more →Monday, November 10, 2025
AI Trust Paradox: Overcome Fear Auto Cyber Remediation
Read more →Friday, November 7, 2025
Windows Internals: Secure Calls - The Bridge Between The NT Kernel and Secure Kernel Art of breaking in with Assembly.
Read more →Google Uncovers PROMPTFLUX Malware That Uses Gemini AI to Rewrite Its Code Hourly AIbot writing itself to be a malware with prompts!
Read more →CyberSOCEval: Benchmarking LLMs Capabilities for Malware Analysis and Threat Intelligence Reasoning | Research - AI at Meta SOCEval dataset
Read more →Wednesday, November 5, 2025
Security Leadership Master Class 1 : Leveling up your leadership
Read more →Defeating KASLR by Doing Nothing at All
Read more →Dot Com Press [[CIS-53]]
Read more →Using Ghidra to patch my keyboard's firmware
Read more →A Defender's Guide to Privileged Account Monitoring | Google Cloud Blog PAM management - use AI to summarize this article and immediate applicability for a startup.
Read more →Claude Pirate: Abusing Anthropic's File API For Data Exfiltration · Embrace The Red Learn about this trick.
Read more →VPNs from Cisco and Citrix Riskiest Products for Ransomware: At-Bay Rankings Report
Read more →Detections as Code in DataDog: How I Built an MVP for a Small Team Do this with Elastic
Read more →The 18 CIS Controls Main CIS Controls
Read more →Cryptography behind electronic passports
Read more →Monday, November 3, 2025
A Friendly Tour of Process Memory on Linux
Read more →Friday, October 31, 2025
CyberSecEval 4 | CyberSecEval 4 CyberSecEval 4
Read more →SSH LLM Honeypot caught a real threat actor | AI deception platform [[41.Q3 CIS53]]
Read more →Hacking with AI SASTs: An overview of ‘AI Security Engineers’ / ‘LLM Security Scanners’ for Penetration Testers and Security Teams Try Zeropath AI
Read more →Tuesday, October 28, 2025
BALDUR. - Security Consultancy Using this make a tutorial for how not to do security with VibeCoding
Read more →Mistakes I see engineers making in their code reviews Incorporate this in code-review skill!
Read more →Monday, October 27, 2025
OpenAI Atlas Omnibox Prompt Injection: URLs That Become Jailbreaks Here comes Atlas vulenrabilities.
Read more →Maximizing the Value of Indicators of Compromise and Reimagining Their Role in Modern Detection [[CIS-53]] Detection IoCs.
Read more →Using LLMs as a reverse engineering sidekick Make this to a skill.
Read more →Thursday, October 23, 2025
AICM Implementation & Auditing Guidelines (Frameworks)
Read more →STAR for AI FAQ
Read more →Next.js Security Testing Guide for Bug Hunters and Pentesters
Read more →0xflux/Wyrm: The dragon in the dark. A red team post exploitation framework for testing security controls during red team assessments. An open-source, Rust-based post-exploitation red team framework designed to compete with tools like Cobalt Strike, Mythic, and Sliver, featuring: custom below-TLS encryption to defeat perimeter inspection tools, anti-sandbox techniques, dynamic payload generation, IOC encryption to assist in anti-analysis and anti-YARA hardening, and more.
Read more →SSH LLM Honeypot caught a real threat actor | AI deception platform walks through how the LLM-powered honeypot Beelzebub (GitHub) can trick a threat actor into revealing their tactics and infrastructure. Mario configured an SSH-based honeypot and observed the threat actor downloading several binaries
Read more →0x4D31/galah: Galah: An LLM-powered web honeypot. I think this idea is very promising- LLMs can simulate high quality deception environments that can be programmatically monitored so high quality TTPs can be automatically extracted.
Read more →AI Gated Loader: Teaching Code to Decide Before It Acts SpectreOps’ John Wotton introduces the idea of “AI gated loaders”, a new approach to shellcode execution that collects telemetry
Read more →ICE bought vehicles equipped with fake cell towers to spy on phones ICE tapping in to user phones.
Read more →ICE, Secret Service, Navy All Had Access to Flock's Nationwide Network of Cameras
Read more →It Takes Only 250 Documents to Poison Any AI Model
Read more →Prompt injection to RCE in AI agents
Read more →State of Cloud Security
Read more →Unlocking free WiFi on British Airways SNI Loophole
Read more →U.S. and U.K. Take Largest Action Ever Targeting Cybercriminal Networks in Southeast Asia Prince Group taken down with its Crypto.
Read more →Tuesday, October 21, 2025
**MCP Snitch monitors and blocks sketchy AI tool calls before they access your files** Adversis built a macOS app that sits between Claude or Cursor and MCP servers, using AI to flag when tools try touching SSH keys or system directories.
Read more →**MCP Snitch monitors and blocks sketchy AI tool calls before they access your files** Adversis built a macOS app that sits between Claude or Cursor and MCP servers, using AI to flag when tools try touching SSH keys or system directories.
Read more →Friday, October 17, 2025
Opportunity Austin – Experience Economic Adrenaline Partner Organization
Read more →Wednesday, October 15, 2025
Link
Read more →Tuesday, October 14, 2025
Apple now offers $2 million for zero-click RCE vulnerabilities
Read more →China Hackers Use Velociraptor IR Tool for Ransomware Velociraptor binary and specified a C2 server in the configuration file.
Read more →Friday, October 10, 2025
Startup Security: Ratios and a 24-Month Hiring Plan Tad Whitaker shares the results of his research in how companies staff security teams, based on interviews with CISOs at companies like Datadog, HashiCorp, Github, Segment, Optimizely, etc. In general, he recommends a 1:40 security:Full Time Employee (FTE) ratio and 1:100 IT:FTE. GitHub had a 1:40 ratio, GitLab 1:24.
Read more →SOC 2 is dead, long live SOC 2!
Read more →Broken Authorization in APIs: Introducing Autoswagger How does auto-swagger work?
Read more →Apple PCC is the future of consumer cloud computing we all deserve They spent a surprising amount of time boasting about how they architected a secure-by-design (SbD) and private-by-design (PbD) cloud computing architecture for Apple Intelligence.
Read more →Wednesday, October 8, 2025
Docker makes Hardened Images Catalog affordable for small businesses [[MSSP]]
Read more →Tuesday, October 7, 2025
Link
Read more →Link
Read more →Link
Read more →Link
Read more →The Trinity of Chaos ransomware group, associated with Lapsus$, Scattered Spider, and ShinyHunters, launched a TOR leak site exposing 39 major firms, including Google, Cisco, and Stellantis, after exploiting Salesforce vulnerabilities via vishing and stolen OAuth tokens, threatening to release over 1.5 billion records if ransoms aren't paid.
Read more →Hacker-Powered Security Report - 9th Edition AI isn’t a future trend in pentesting, it’s the new normal.
Read more →MCP Tools: Attack Vectors and Defense Recommendations for Autonomous Agents — Elastic Security Labs
Read more →IMDS Abused: Hunting Rare Behaviors to Uncover Exploits | Wiz Blog Using the same technique, we identified a Server-Side Request Forgery (SSRF) vulnerability being abused in another widely used application: ClickHouse.
Read more →SPQA: The AI-based Architecture That'll Replace Most Existing Software Attackers will have the advantage for 3-5 years. For less-advanced defender teams, this will take much longer. After that point, AI/SPQA (State, Policy, Questions, Action) will have the additional internal context to give Defenders the advantage.
Read more →How I Block All 26 Million Of Your Curl Requests FoxMoss demonstrates building a packet filter that fingerprints and blocks TLS connections at the kernel level. The approach uses XDP (Express Data Path) and eBPF to identify clients by their TLS cipher suites, achieving speeds that can handle 26 million packets per second on consumer hardware.
Read more →How I Block All 26 Million Of Your Curl Requests FoxMoss demonstrates building a packet filter that fingerprints and blocks TLS connections at the kernel level. The approach uses XDP (Express Data Path) and eBPF to identify clients by their TLS cipher suites, achieving speeds that can handle 26 million packets per second on consumer hardware.
Read more →Saturday, October 4, 2025
CloudFox Workshop: Cloud Enumeration for Penetration Testing [[data/content/2025/Lib13]] Cloud Pentesting.
Read more →Thursday, October 2, 2025
Wrap Up: The Month of AI Bugs · Embrace The Red
Read more →Hacking with AI SASTs: An overview of ‘AI Security Engineers’ / ‘LLM Security Scanners’ for Penetration Testers and Security Teams
Read more →CISA 2015 cyber threat info-sharing law lapses amid government shutdown
Read more →State of Cyber Q3 2025
Read more →CISA Sounds Alarm on Critical Sudo Flaw Actively Exploited in Linux and Unix Systems
Read more →China-linked hackers use ‘BRICKSTORM’ backdoor to steal IP BRICKSTORM - explainer
Read more →Building an AWS GuardDuty Alert Triage Agent
Read more →Tuesday, September 30, 2025
Essentials for Building Cybersecurity from this blog
Read more →Essentials for Building Cybersecurity from this blog
Read more →Live Demo: Claude Code autonomously investigates Cobalt Strike infection via LimaCharlie MCP
Read more →Monday, September 29, 2025
Obot MCP Gateway MCP Gateway
Read more →Advanced Cyberchef Techniques - Defeating Nanocore Obfuscation With Math and Flow Control
Read more →Sunday, September 28, 2025
SuperMicro Hack
Read more →Saturday, September 27, 2025
Good CISO / Bad CISO
Read more →Pokemon fans call on creators to sue the US govt for “gotta catch ‘em all” ICE propaganda
Read more →When LLMs autonomously attack
Read more →Fall 2025 NCL 101: Everything you need to know About the NCL
Read more →Meet ShadowLeak: ‘Impossible to detect’ data theft using AI
Read more →Agenda - HOU.SEC.CON. 2025
Read more →danielmiessler/PAI: Personal AI Infrastructure for upgrading humans.
Read more →Samsung patches zero-day security flaw used to hack into its customers' phones
Read more →Global Peace Index Map » The Most & Least Peaceful Countries
Read more →Wednesday, September 24, 2025
Gamma Example pitch-deck
Read more →PromptArmor Prompt Armor
Read more →Intelligent Automation Powered by Legion Workforce Management Platform Great meeting with Legion
Read more →Monday, September 22, 2025
for Fully Homomorphic Encryption]
Read more →Thursday, September 18, 2025
What Makes System calls expensive - system research
Read more →Novel way to exfiltrate - security researcher
Read more →Cloud Security Cheatsheet - cloud security [[CIS-52]]
Read more →AI Security end to end - hot startup - hot startup
Read more →SOC Analyst automation - AI Startup - hot startup
Read more →How to Work With AI Agents Future is prompt-less
Read more →State of AI Security. September 18, 2025
Read more →Wednesday, September 17, 2025
How Container Filesystem Works: Building a Docker-like Container From Scratch
Read more →Binary Exploitation 101
Read more →Tuesday, September 16, 2025
ctrl/tinycolor and 40+ NPM Packages Compromised - StepSecurity
Read more →Monday, September 15, 2025
What I Learned From Getting Rejected by Amazon: A Security Engineer’s Interview Experience Cloud Security Interviews.
Read more →600 GB of Alleged Great Firewall of China Data Published in Largest Leak Yet
Read more →Tuesday, September 9, 2025
Panopticlick 3.0
Read more →CS6038-Malware-Analysis by snus
Read more →Qantas cuts executive bonuses by 15% after a July data breach
Read more →Blog - Memory Integrity Enforcement: A complete vision for memory safety in Apple devices - Apple Security Research
Read more →Claude Code Security Prompt
Read more →Security Prompt
Read more →Security news - Kai
Read more →AI Cuts vCISO Workload by 68% as Demand Skyrockets, New Report Finds
Read more →Kryptos - Wikipedia Puzzles
Read more →2025 NICE PRESENTER LINE UP
Read more →Saturday, September 6, 2025
Inside the Kimsuky Leak: How the “Kim” Dump Exposed North Korea’s Credential Theft Playbook Tools of trade.
Read more →Mixeway/Flow: Repository containing source code of MixewayFlow service that is Swiss army knife for DevSecOps Teams
Read more →Music to Break Models By
Read more →CrowdStrike to Acquire Onum to Transform the Agentic SOC
Read more →Tuesday, September 2, 2025
Behind the Coinbase breach: Bribery emerges as enterprise threat
Read more →AWS Detection Engineering: Mastering Log Sources for Threat Detection [[CIS-52]]
Read more →CVSS is Built for Code, Not AI Agents. Now AIVSS Closes the Gap
Read more →AIVSS Call for Contribution!
Read more →The unexpected productivity boost of Rust
Read more →Intent Over Tactics: A CISO's Guide to Protecting Your Crown Jewels Identify your Crown Jewels
Read more →A puzzle to solve
Read more →Security jobboards
Read more →Hackers want Google to fire its security researchers
Read more →Friday, August 29, 2025
A CISO’s Guide to Vetting AI Security Vendors
Read more →Tuesday, August 26, 2025
Docker Fixes CVE-2025-9074, Critical Container Escape Vulnerability With CVSS Score 9.3 Good example of a CVE
Read more →Farmers Insurance Data Breach Impacts Over 1 Million People
Read more →Monday, August 25, 2025
Do Claude Code Security Reviews Pass Vibe Check
Read more →FACADE High-Precision Insider Threat Detection Using Contrastive Learning | Black Hat USE 25 talk
Read more →"Scamlexity": When Agentic AI Browsers Get Scammed
Read more →Phishing Emails Are Now Aimed at Users and AI Defenses
Read more →Saturday, August 23, 2025
SpyVPN: The Google-Featured VPN That Secretly Captures Your Screen | Koi Blog
Read more →How I Hacked McDonald's (Their Security Contact Was Harder to Find Than Their Secret Sauce Recipe)
Read more →New zero-day startup offers $20 million for tools that can hack any smartphone
Read more →Wednesday, August 20, 2025
Malware analysis on AWS: Setting up a secure environment
Read more →Black Hat 2025: Latest news and insights Blackhat news.
Read more →Tuesday, August 19, 2025
usestrix/strix: ✨ Open-source AI hackers for your apps 👨🏻💻 AI Pentester.
Read more →Russia hacked and took control of a Norwegian dam, police chief claims — released over 1,900,000 gallons of water before attack was noticed
Read more →Monday, August 18, 2025
BaxBench: Can LLMs Generate Secure and Correct Backends? Model ranking for correctness and security.
Read more →Securing Agents with Rules - Invariant Documentation
Read more →Friday, August 15, 2025
Proxmox/Install Arch Linux as a guest - ArchWiki Omarchy Install
Read more →🚪How Wesley & Victor's security app was acquired by Bubble
Read more →Thursday, August 14, 2025
Stablecoin Wars With Stripe And Circle Racing To Control Payments
Read more →Lessons learned building an AI hacker | AI Cyber Challenge
Read more →Wednesday, August 13, 2025
SplxAI: Continuous Red Teaming for AI Assistants and Agentic Workflows
Read more →Miscreants | Design + Cybersecurity
Read more →GPT-5 Under Fire: Red Teaming OpenAI’s Latest Model Reveals Surprising Weaknesses | SplxAI Blog
Read more →AIxCC Competition Archive | AIxCC Competition Archive
Read more →We replaced passwords with something worse | Blog - Daniel Huang Onetime password.
Read more →How I ended up writing Gleam for a living - Isaac Harris-Holt | Code BEAM Lite STO 2025 Gleam programming language.
Read more →KrebsOnSecurity in New ‘Most Wanted’ HBO Max Series
Read more →Tuesday, August 12, 2025
Will Secure AI Be the Hottest Career Path in Cybersecurity?
Read more →Monday, August 11, 2025
Simplify access reviews with Trelica by 1Password | 1Password
Read more →'The Wiz effect': North American VCs crowd into Israel's cybersecurity scene
Read more →How Much Capital Does It Take for a Cybersecurity Company to Go Public?
Read more →My Lethal Trifecta talk at the Bay Area AI Security Meetup
Read more →Thursday, August 7, 2025
CVE-2025-547954/54795: Claude InversePrompt Vulnerability
Read more →OpenAI GPT OSS 20B Red Teaming Competition
Read more →BlackHat 2025 Cybersecurity Threat Detection - Juliet Sai LinkedIn
Read more →Claude AI Twitter - Code Block Prompt Command
Read more →DefCon Security Research Tweet
Read more →GPT OSS Security Analysis - Simon Willison
Read more →Tuesday, August 5, 2025
Aim Labs | CurXecute Blogpost
Read more →💰 Security, Funded - Back in Black(jack) $VRNS is a BULL!!
Read more →Vibe Coding Conundrums
Read more →A summer of security: empowering cyber defenders with AI Auto Security Agents!
Read more →Breaking NVIDIA Triton: CVE-2025-23319 - A Vulnerability Chain Leading to AI Server Takeover | Wiz Blog
Read more →Friday, August 1, 2025
Printing a Book at Home with Minimal Equipment
Read more →Rolling Out AI Coding Assistants: How Drata Did It
Read more →Kali Linux can now run in Apple containers on macOS systems
Read more →AI and the Democratization of Cybercrime
Read more →China’s Covert Capabilities | Silk Spun From Hafnium Hafnium
Read more →Thursday, July 31, 2025
CyberArk Acquired By Palo Alto Networks for $25 Billion
Read more →Wednesday, July 30, 2025
A Standard for Human-Centered Investigation Playbooks | Chris Sanders
Read more →BlinkOps secures $50M for its micro agent cyber platform
Read more →Link
Read more →Tuesday, July 29, 2025
AI Chat for Security Investigations | RunReveal Blog
Read more →The Hidden Downsides of Staff Engineering: Opaqueness and Uncertainty
Read more →Monday, July 28, 2025
Open Source Sustainability Fund | HeroDevs End of Life Open Source software patches!
Read more →Haicker AI Pentester Integrated with Github.
Read more →Reflecting on Building Resilience by Design | CrowdStrike Crowdstrike Deploys a chief resilience officer!
Read more →Dating safety app Tea breached, exposing 72,000 user images
Read more →AI and Secure Code Generation
Read more →How we Rooted Copilot Actionable use of scripts to elevate privileges
Read more →Sunday, July 27, 2025
Checking in on the 2025 Cyber 150
Read more →Thread by @dhh A case for verifiable cloud systems
Read more →Google Cloud Security is at Black Hat
Read more →Saturday, July 26, 2025
Best infosec-related long reads for the week of 7/19/25
Read more →Friday, July 25, 2025
AWS - Stratus Red Team
Read more →Cyber Deception Maturity Model: Complete Assessment Framework | Deceptiq
Read more →Thursday, July 24, 2025
Indian crypto exchange CoinDCX confirms $44M stolen during hack
Read more →Tuesday, July 22, 2025
Anne Arundel Dermatology data breach impacts 1.9 million people
Read more →NVIDIAScape - NVIDIA AI Vulnerability (CVE-2025-23266) | Wiz Blog
Read more →Cybersecurity startup Deep Algorithm raises Rs 10.8 Cr in seed round
Read more →Introducing Cogent: AI Agents for Vulnerability Management AI Agents
Read more →The First Security Hire Rule of Thumb
Read more →A summer of security: empowering cyber defenders with AI Google Secure AI
Read more →Saturday, July 19, 2025
Lessons Learned From McDonald's Big AI Flub Basic security failure -- Authentication bypass via default credentials, Authorization flaws allowing cross-account data access, Poor account lifecycle management (dormant 2019 test accounts still active), Insecure direct object references (manipulable applicant IDs), Lack of access monitoring and alerting. Original write-up.
Read more →Lessons Learned From McDonald's Big AI Flub Basic security failure -- Authentication bypass via default credentials, Authorization flaws allowing cross-account data access, Poor account lifecycle management (dormant 2019 test accounts still active), Insecure direct object references (manipulable applicant IDs), Lack of access monitoring and alerting. Original write-up.
Read more →Thursday, July 17, 2025
Palantir Security with Markings
Read more →MindFort: Autonomous Security Agents
Read more →Cotool: AI Agents for Security Operations Teams Detection Engineering yc
Read more →Google Gemini AI Bug Allows Invisible, Malicious Prompts
Read more →The FIPS 140-3 Go Cryptographic Module - The Go Programming Language
Read more →Tuesday, July 15, 2025
Grok-4 Falls to a Jailbreak Two Days After Its Release
Read more →Data security startup Virtru raises $50M in funding
Read more →Friday, July 11, 2025
Millions of Cars Exposed to Remote Hacking via PerfektBlue Attack
Read more →Wednesday, July 9, 2025
Fine-Tuning a Small Language Model for Secrets Detection | Wiz Blog
Read more →Starlink-powered drone narco-sub intercepted by Colombian Navy — boat was converted into a drone for uncrewed smuggling
Read more →Monday, July 7, 2025
Rules file from Wiz.
Read more →Secure Vibe Coding Guide | Become a Citizen Developer | CSA
Read more →LevelBlue to Acquire Trustwave, Becoming Largest Pure-Play Managed Security Services Provider
Read more →Saturday, July 5, 2025
Creating Security Team Permissions in IAM Identity Center
Read more →Tuesday, July 1, 2025
XBOW 75M Series B,
Read more →Monday, June 30, 2025
Bluetooth flaws could let hackers spy through your microphone BT pwned.
Read more →Building effective security OKRs Simple OKRs for Security Teams.
Read more →Qilin Ransomware Attack on NHS Causes Patient Death in the UK Hacks causing human impact.
Read more →Tuesday, June 24, 2025
antgroup/CloudRec: CloudRec is an open source multi-cloud security posture management (CSPM) platform designed to help organizations improve the security of their cloud environments. CloudRec is an open source multi-cloud security posture management (CSPM) platform designed to help organizations improve the security of their cloud environments.
Read more →Mitigating prompt injection attacks with a layered defense strategy
Read more →Monday, June 23, 2025
Trust Engineering: Building Security Leadership at Early-Stage Startups Trust Engineering" is a strategic approach for security leaders in early-stage B2B SaaS startups, emphasizing the role as a business function rather than solely a technical one.
Read more →Empowering people through technology Just bought TechMD and 1ntegersecurity to expand its MSP business
Read more →Empowering people through technology Just bought TechMD and 1ntegersecurity to expand its MSP business
Read more →Empowering people through technology Just bought TechMD and 1ntegersecurity to expand its MSP business
Read more →elder-plinius/CL4R1T4S: SYSTEM PROMPT TRANSPARENCY FOR ALL - CHATGPT, GEMINI, GROK, CLAUDE, PERPLEXITY, CURSOR, WINDSURF, DEVIN, REPLIT, AND MORE! Repository of Leaked System Prompts , additional repos 1, 2 and 3 and Benchmarking Prompt Engineering Techniques for Secure Code
Read more →elder-plinius/CL4R1T4S: SYSTEM PROMPT TRANSPARENCY FOR ALL - CHATGPT, GEMINI, GROK, CLAUDE, PERPLEXITY, CURSOR, WINDSURF, DEVIN, REPLIT, AND MORE! Repository of Leaked System Prompts , additional repos 1, 2 and 3 and Benchmarking Prompt Engineering Techniques for Secure Code
Read more →elder-plinius/CL4R1T4S: SYSTEM PROMPT TRANSPARENCY FOR ALL - CHATGPT, GEMINI, GROK, CLAUDE, PERPLEXITY, CURSOR, WINDSURF, DEVIN, REPLIT, AND MORE! Repository of Leaked System Prompts , additional repos 1, 2 and 3 and Benchmarking Prompt Engineering Techniques for Secure Code
Read more →elder-plinius/CL4R1T4S: SYSTEM PROMPT TRANSPARENCY FOR ALL - CHATGPT, GEMINI, GROK, CLAUDE, PERPLEXITY, CURSOR, WINDSURF, DEVIN, REPLIT, AND MORE! Repository of Leaked System Prompts , additional repos 1, 2 and 3 and Benchmarking Prompt Engineering Techniques for Secure Code
Read more →elder-plinius/CL4R1T4S: SYSTEM PROMPT TRANSPARENCY FOR ALL - CHATGPT, GEMINI, GROK, CLAUDE, PERPLEXITY, CURSOR, WINDSURF, DEVIN, REPLIT, AND MORE! Repository of Leaked System Prompts , additional repos 1, 2 and 3 and Benchmarking Prompt Engineering Techniques for Secure Code
Read more →Wednesday, June 18, 2025
OpSec Course — A hands-on module on the three common ways operational security fails and leaks identity or intent.
Read more →Tuesday, June 17, 2025
Link
Read more →Link
Read more →Link
Read more →Design Patterns for Securing LLM Agents against Prompt Injections Good list of patterns to prevent prompt injections.
Read more →The fastest way to detect a vowel in a string - a great way to review programming problems.
Read more →SHADE-Arena: Evaluating Sabotage and Monitoring in LLM Agents SHADE Arena Data for Agent Sabbotage.
Read more →Friday, June 13, 2025
eversinc33/TriageMCP: Vibe Malware Triage - MCP server for static PE analysis.
Read more →New 'Zero-Click' AI Flaw Found in Microsoft 365 Copilot, Exposing Data Tricking Copilot with email with white text like -- `!img`
Read more →New 'Zero-Click' AI Flaw Found in Microsoft 365 Copilot, Exposing Data Tricking Copilot with email with white text like -- `!img`
Read more →Threat Modelling Cloud Service Providers in 2025 - Chris Farris The Idea of Sovereign Cloud Providers
Read more →Thursday, June 12, 2025
Mirai Botnets Exploiting Wazuh Security Platform Vulnerability Mirai botnets are exploiting CVE-2025-24016, a critical remote code execution vulnerability in Wazuh servers (versions 4.4.0 to prior to 4.9.1), by leveraging an unsafe deserialization issue. This allows the botnets to fetch and execute malicious shell scripts that serve as downloaders for Mirai malware payloads, potentially compromising servers with API access or even compromised agents.
Read more →cyproxio/mcp-for-security: MCP for Security: A collection of Model Context Protocol servers for popular security tools like SQLMap, FFUF, NMAP, Masscan and more. Integrate security testing and penetration testing into AI workflows. A collection of Model Context Protocol servers for popular security tools like SQLMap, FFUF, NMAP, Masscan and more
Read more →The Evolution of Linux Binaries in Targeted Cloud Operations Attackers exploit techniques like dynamic linker hijacking, specifically abusing the LD_PRELOAD environment variable, to inject malicious code into legitimate processes, hook critical services like sshd, and leverage vulnerabilities in containerized infrastructure.
Read more →Wednesday, June 11, 2025
High Leverage Security Decisions
Read more →How Security Teams Can Turn Hype Into Opportunity Utilize "Mission-Aligned Transparency" with Protection Level Agreements (PLAs) and Outcome-Driven Metrics (ODMs)
Read more →LLM Vulnerability - Echoleak
Read more →Tuesday, June 10, 2025
EKS vs. GKE — Security
Read more →Cyber Security Pricing & Packages - Start Your Free Trial | Guardz
Read more →Autonomous Bug Bounty - XBow, Ethiack
Read more →OSINT Tool Directory
Read more →Disrupting malicious uses of AI: June 2025 AI Threat Intel Report
Read more →Top Red Team Tools & C2 Frameworks for 2025: Active Directory &…
Read more →Friday, June 6, 2025
Ransomware gang claims responsibility for Kettering Health hack
Read more →Wednesday, June 4, 2025
How to deploy AI safely Treat AI components like inexperienced new hires, implementing checks and balances, and dedicate significantly more time to thorough testing than coding.
Read more →High Leverage Security Decisions To minimize long-term security risks in an early-stage startup, prioritize selecting an identity provider and enforcing the use of hardware security keys for strong authentication. Embrace Infrastructure as Code (IaC) and managed infrastructure services to build a secure, auditable, and scalable foundation. Finally, implement a Mobile Device Management (MDM) solution early to secure endpoints and simplify future software deployment and device management.
Read more →Tuesday, June 3, 2025
R3dShad0w7/PromptMe: PromptMe is an educational project that showcases security vulnerabilities in large language models (LLMs) and their web integrations. It includes 10 hands-on challenges inspired by the OWASP LLM Top 10, demonstrating how these vulnerabilities can be discovered and exploited in real-world scenarios.
Read more →CrowdStrike Partners with DOJ to Disrupt DanaBot Malware Operators Technical details of DanaBot takedown.
Read more →Vanta bug exposed customers' data to other customers
Read more →Getting the Most Value Out of the OSCP: After the Exam HackTricks - HackTricks
Read more →Getting the Most Value Out of the OSCP: After the Exam HackTricks - HackTricks
Read more →How I used o3 to find CVE-2025-37899, a remote zeroday vulnerability in the Linux kernel’s SMB implementation Using o3 to find a zero-day in Linux Kernel.
Read more →Monday, June 2, 2025
Link
Read more →beginner presentation
Read more →Link
Read more →Link
Read more →Wednesday, May 28, 2025
CIS Snowflake Benchmarks Snowflake introduces shared destiny after Santander and Ticketmaster breaches
Read more →AI Hallucination Cases Database – Damien Charlotin This database tracks legal decisions1 in cases where generative AI produced hallucinated content – typically fake citations, but also other types of arguments. It does not track the (necessarily wider) universe of all fake citations or use of AI in court filings.
Read more →Cybersecurity jobs available right now: May 20, 2025 Cybersecurity jobs available right now.
Read more →Unit 42 Develops Agentic AI Attack Framework Agentic AI Attack Chain [[gensh]] features.
Read more →Velvet Chollima APT Hackers Attacking Government Officials With Weaponized PDF
Read more →Tuesday, May 27, 2025
Dynamic Incident Response Platform An easy company to start?
Read more →Root in prod: The most important security analysis you will never do on your AWS accounts Working with AWS Accounts.
Read more →MCP vulnerabilities
Read more →aicyberchallenge.com
Read more →How to automate incident response for Amazon EKS on Amazon EC2
Read more →trimstray/the-book-of-secret-knowledge: A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more. Security Links
Read more →Most security tools are too theoretical Security programs are often adept at discussing theoretical threats but struggle to demonstrate actual attack prevention. Therefore, there's a need for security leaders to agree on concrete risks and for tools to be geared towards preventing those specific issues.
Read more →Friday, May 23, 2025
!cybench
Read more →Thursday, May 22, 2025
Krebs hit with6.3 TBPS DDoS attack
Read more →Jailbreak prompts
Read more →MCP for Threat hunting
Read more →Essential OSINT tools for journalists investigating air pollution
Read more →Forget IPs: using cryptography to verify bot and agent traffic
Read more →Sunday, May 18, 2025
You're Invited: Delivering malware via Google Calendar invites and PUAs
Read more →Hackers Win $260,000 on First Day of Pwn2Own Berlin 2025
Read more →Friday, May 16, 2025
Over 3 Million Records, Including PII of Student-Athletes and College Coaches Exposed in a Data Breach
Read more →Building Uber’s Multi-Cloud Secrets Management Platform to Enhance Security
Read more →The iOS book app just opened its pages to hackers
Read more →Thursday, May 15, 2025
Protecting Our Customers - Standing Up to Extortionists
Read more →Tuesday, May 13, 2025
How we’re using AI to combat the latest scams
Read more →SCIM Hunting - Beyond SSO · Doyensec's Blog
Read more →Tutorial: Sliver C2 with BallisKit MacroPack and ShellcodePack
Read more →Reviewing RSA 2025 with Jason Haddix [[05-RSAC2025]]
Read more →Mithra LLM Scanner Mithra is a new security scanner specifically designed to test REST APIs that use LLMs, checking for both traditional vulnerabilities and LLM-specific risks like prompt injection and context leakage
Read more →system_prompts_leaks/claude.txt at main · asgeirtj/system_prompts_leaks Leaked Claude Prompt
Read more →Installing Proxmox on a Laptop and Building a Cybersecurity Lab
Read more →Document My Pentest: you hack, the AI writes it up!
Read more →Bug Hunters Methodology learning
Read more →Wednesday, May 7, 2025
Hundreds of e-commerce sites hacked in supply-chain attack Example of Persistence!
Read more →Hacker Conversations: John Kindervag, a Making not Breaking Hacker Minds and motivations of a hacker -- To demonstrate Kindervag’s alignment with Wark’s definition of hacking, although not for that purpose, he described the creation of Unix as ‘a hack’.
Read more →Tuesday, May 6, 2025
A perfect cybersecurity startup idea - good blog on what to consider when doing a security startup. Like ideas around wireguard, eBPF, OSQuery.
Read more →65-year-old 'never had money' as a kid—and says that helped him become a CEO worth $11 billion Zscalar Jay Chaudhary - Security Founders
Read more →Microsoft finds default Kubernetes Helm charts can expose data
Read more →Kube-Policies: Guardrails for Apps Running in Kubernetes
Read more →AI Domination: RSAC 2025 Social Media Roundup [[05-RSAC2025]]
Read more →Monday, May 5, 2025
RSA Day Summary [[05-RSAC2025]]
Read more →Exclusive: Dating app Raw exposed users' location data and personal information
Read more →Signal v. Noise in the RSA Innovation Sandbox Sandbox was won by Nuclei creators. However they have to take controversial $5 million funding to be a finalist. Blackhat finalists dont have to [[05-RSAC2025]] Link to visual
Read more →Signal v. Noise in the RSA Innovation Sandbox Sandbox was won by Nuclei creators. However they have to take controversial $5 million funding to be a finalist. Blackhat finalists dont have to [[05-RSAC2025]] Link to visual
Read more →Signal v. Noise in the RSA Innovation Sandbox Sandbox was won by Nuclei creators. However they have to take controversial $5 million funding to be a finalist. Blackhat finalists dont have to [[05-RSAC2025]] Link to visual
Read more →Saturday, May 3, 2025
My SIEM-Agnostic Creative Process to Detection Engineering
Read more →Vibe Hacking: Finding Auth Bypass and RCE in Open Game Panel
Read more →5%- report- OX 2025 Application Security Benchmark Report
Read more →Wednesday, April 30, 2025
Cyber Security Company CEO Arrested for Installing Malware Onto Hospital Computers
Read more →Microsoft CEO says up to 30% of the company's code was written by AI
Read more →When /etc/h*sts Breaks Your Substack Editor: An Adventure in Web Content Filtering
Read more →Vulnerability Exploitation Is Shifting in 2024-25
Read more →Tuesday, April 29, 2025
BSides Seattle 2025: Rebuilding Trust in Systems In The Age Of NHIs
Read more →The Future of Cloud & Security Operations: Analyzing PANW’s Cortex Cloud Bet
Read more →Thursday, April 24, 2025
The Real Internet of Things | Daniel Miessler
Read more →OpenAI Jailbreaks by Pliny [[33.Q3 Security CTF+Hackathon]]
Read more →How I Used AI to Create a Working Exploit for CVE-2025-32433 Before Public PoCs Existed
Read more →ICE Is Paying Palantir $30 Million to Build ‘ImmigrationOS’ Surveillance Platform
Read more →splx-ai/agentic-radar: A security scanner for your LLM agentic workflows [[33.Q3 Security CTF+Hackathon]]
Read more →Kubernetes Pods Are Inheriting Too Many Permissions [[13.Q2 SSDLC Training]]
Read more →Wednesday, April 23, 2025
Attacking My Landlord's Boiler - videah's blog
Read more →Bug hunter obtains an SSL cert for Alibaba Cloud in 5 steps
Read more →Tuesday, April 22, 2025
Testing Kubernetes Security insecure AKS in action with atomic red team
Read more →CTI Nuggets - RedCanary Intelligence Insights: March 2025 ,pan-unit42/playbook_viewer, MISP Open Source Threat Intelligence Platform & Open Standards For Threat Information Sharing Crowdstrike threat report from FIRST CTI Conference in Europe
Read more →CTI Nuggets - RedCanary Intelligence Insights: March 2025 ,pan-unit42/playbook_viewer, MISP Open Source Threat Intelligence Platform & Open Standards For Threat Information Sharing Crowdstrike threat report from FIRST CTI Conference in Europe
Read more →CTI Nuggets - RedCanary Intelligence Insights: March 2025 ,pan-unit42/playbook_viewer, MISP Open Source Threat Intelligence Platform & Open Standards For Threat Information Sharing Crowdstrike threat report from FIRST CTI Conference in Europe
Read more →CTI Nuggets - RedCanary Intelligence Insights: March 2025 ,pan-unit42/playbook_viewer, MISP Open Source Threat Intelligence Platform & Open Standards For Threat Information Sharing Crowdstrike threat report from FIRST CTI Conference in Europe
Read more →CTI Nuggets - RedCanary Intelligence Insights: March 2025 ,pan-unit42/playbook_viewer, MISP Open Source Threat Intelligence Platform & Open Standards For Threat Information Sharing Crowdstrike threat report from FIRST CTI Conference in Europe
Read more →Thursday, April 17, 2025
Pillar Security raises $9M in Seed funding to tackle AI-specific cyber threats 9M for AI Security
Read more →Security Operations with RunReveal's MCP Server
Read more →Tier Zero Security
Read more →Thousands of AWS records found: keys used in ransomware attacks
Read more →Tuesday, April 15, 2025
Incident AI Raises $62M
Read more →China accusses NSA for Asian Winter Games attacks
Read more →Monday, April 14, 2025
!189_-_04-14-2025_-_Funding.png (1164×818) Tailscale raises $160M.
Read more →francisconeves97/jxscout: jxscout superpowers JavaScript analysis for security researchers
Read more →1.6 Million People Impacted by Data Breach at Laboratory Services Cooperative
Read more →Defeating Prompt Injections by Design
Read more →10 Bugs Found in Perplexity AI's Chatbot Android App Found by Appknox | World’s No. 1 Mobile App Security Testing Solution
Read more →10 Bugs Found in Perplexity AI's Chatbot Android App Found by Appknox | World’s No. 1 Mobile App Security Testing Solution
Read more →Thursday, April 10, 2025
Program: Cybersecurity Intelligence and Information Security, M.S. - University of South Florida - Modern Campus Catalog™ [[06.Q2 CIS-60]]
Read more →Internship Opportunities [[06.Q2 CIS-60]]
Read more →Wednesday, April 9, 2025
Ghidra MCP
Read more →Tuesday, April 8, 2025
Texas State Bar Breach👩⚖️, Outlaw Linux Malware 🐧, Scattered Spider Members Pleads Guilty 🕷️ TLDR Expand
Read more →Security Weekly
Read more →Google Announces Sec Gemini v1
Read more →Slow Collapse of Critical Thinking in OSINT due to AI
Read more →Underage Deepfakes Exposed 👶, Finding Evil in Memory 😈, AI Finds GRUB2 Flaws 🤖
Read more →Oracle Second Hack 👁️🗨️, Taming ML Wild West 🤠, ChatGPT Creates Fake Passport 🛂
Read more →Autonomous SOC Analyst Product
Read more →Story of signal from Increment @ Stripe [[11-CTI]]
Read more →Monday, April 7, 2025
Must read books in tech and IT [[00.book-summarizer]]
Read more →Sunday, April 6, 2025
Original post [[06.Q2 CIS-60]]
Read more →Friday, April 4, 2025
Microsoft Opensources Red Teaming Agent
Read more →Thursday, April 3, 2025
CVE-2024-27564 Actively Exploited in the Wild OpenAI vulnerability (SSRF) exploited for Healthcare hacking, this video shows the exploit in action.
Read more →CVE-2024-27564 Actively Exploited in the Wild OpenAI vulnerability (SSRF) exploited for Healthcare hacking, this video shows the exploit in action.
Read more →Hackers abuse WordPress MU-Plugins to hide malicious code Wordpress plugins - rabbit hole.
Read more →Tuesday, April 1, 2025
iOS Dating App compromise
Read more →Pillage registry
Read more →TMBench
Read more →Monday, March 31, 2025
Oracle Health breach compromises patient data at US hospitals
Read more →CVE-2025-1974: The IngressNightmare in Kubernetes | Wiz Blog
Read more →CVE-2025-29927
Read more →Thursday, March 27, 2025
New npm attack poisons local packages with backdoors
Read more →New Atlantis AIO platform automates credential stuffing on 140 services
Read more →macOS Users Warned of New Versions of ReaderUpdate Malware
Read more →Scaling Threat Modeling with AI: Generating 1000 Threat Models Using Gemini 2.0 and AI Security Analyzer
Read more →Security on the path to AGI
Read more →DarkwebDaily.live
Read more →Digital Safety - How to protect your online identity
Read more →A Free OSINT Lesson: Search Indexes, Record Shops, and Flipping through Vinyl
Read more →Critical Ingress NGINX Controller Vulnerability Allows RCE Without Authentication
Read more →Over 3 million applicants’ data leaked on NYU’s website
Read more →BountySecurity/BountyPrompt: Bounty Prompt is an Open-Source Burp Suite extension by Bounty Security that leverages advanced AI via Burp AI and Groq AI
Read more →DryRun Security vs. Traditional SAST Vendors in Ruby on Rails
Read more →Securing AI agents: authentication patterns for Operator and computer using models — WorkOS
Read more →Thursday, March 20, 2025
Major leak: sperm bank California Cryobank suffers data breach
Read more →Use one Virtual Machine to own them all — active exploitation of ESXicape
Read more →New Vulnerability in GitHub Copilot and Cursor: How Hackers Can Weaponize Code Agents
Read more →The Great CNAPP Re-bundle
Read more →Tuesday, March 18, 2025
Tomcat Vulnerability and a analysis by Wallarm Labs
Read more →Tomcat Vulnerability and a analysis by Wallarm Labs
Read more →Attack on Car dealerships
Read more →Juniper Routers by China Nexus
Read more →Fake Captcha
Read more →Supply chain attacks by Lazarus to steal crypto
Read more →US Treasury got hidden messages in Emojis
Read more →Monday, March 17, 2025
Malicious Code Hits ‘tj-actions/changed-files’ in 23,000 GitHub Repos
Read more →Thursday, March 13, 2025
560,000 People Impacted Across Four Healthcare Data Breaches More than 560,000 people were impacted across four data breaches disclosed last week to authorities by the healthcare organizations Hillcrest Convalescent Center, Gastroenterology Associates of Central Florida, Community Care Alliance, and Sunflower Medical Group.
Read more →560,000 People Impacted Across Four Healthcare Data Breaches More than 560,000 people were impacted across four data breaches disclosed last week to authorities by the healthcare organizations Hillcrest Convalescent Center, Gastroenterology Associates of Central Florida, Community Care Alliance, and Sunflower Medical Group.
Read more →US cities warn of wave of unpaid parking phishing texts I got one of these!
Read more →Google Pays Out Nearly $12M in 2024 Bug Bounty Program Lets to bug hunting!
Read more →Undocumented commands found in Bluetooth chip used by a billion devices Hardware Hacking
Read more →Ethereum private key stealer on PyPI downloaded over 1,000 times Supply chain attack!
Read more →Thursday, February 20, 2025
Elon Musk’s DOGE website has been defaced because anyone can edit it
Read more →2024 Pig Butchering Crypto Scam Revenue Grows 40% YoY as Industry Increases Sophistication
Read more →Malicious ML models discovered on Hugging Face platform
Read more →Russian state threat group shifts focus to US, UK targets
Read more →Wednesday, February 19, 2025
Chase will soon block Zelle payments to sellers on social media JPMorgan Chase Bank (Chase) will soon start blocking Zelle payments to social media contacts to combat a significant rise in online scams utilizing the service for fraud.
Read more →Friday, February 14, 2025
Insecure Features in PDFs Old but gold! PDF attacks.
Read more →Thursday, February 13, 2025
Russia’s Sandworm compromising US and European organizations - The "BadPilot campaign" focuses on sectors like energy and telecommunications, exploiting vulnerabilities to maintain access and support Russia's military objectives.
Read more →Trump Hotels Guest Information Leaked on Hacker Forum The threat actor behind this leak, known as _FutureSeeker_, has a history of releasing similar data dumps on hacker forums.
Read more →Hackers exploiting bug in popular Trimble Cityworks tool used by local gov’ts- The vulnerability (CVE-2025-0994) allows for a malicious actor to potentially achieve RCE against a customer's IIS server.
Read more →How We Hacked a Software Supply Chain for $50K Supply chain attack -- When we discovered that it was possible to retrieve the build layers of the Docker image, it meant there was a strong possibility that the `.npmrc` (and thus the NPM_TOKEN) remained exposed in an earlier layer.
Read more →Wednesday, February 12, 2025
Cryptocurrency and blockchain hacker report - The bugs bounties outpay other industries, about 10% vulnerabilities are due to business logic (vs 2% in other industries). Crypto.com runs $2 million in bug bounties.
Read more →Apple Zero Day It was a USB Restricted mode related zero day which was exploited.
Read more →Ken Huang release Maestro a threat modeling tool for Agentic AI It has seven layers and meant for ongoing use.
Read more →Researcher at WatchTowr discovered 150+ abandoned sensitive S3 buckets these are from software companies, governments and infrastructure pipelines.
Read more →12, 000+ Keriocontrol firewalls have been exposed to RCE flaw GFI Software released a security update for the problem with version 9.4.5 Patch 1 on December 19, 2024, yet three weeks later, according to Censys, over 23,800 instances remained vulnerable.
Read more →Toll booth bandits continue to scam users with SMS Messages
Read more →Maasive brute force attack uses 2.8 million IPs to target VPN devices most IPs are from Brazil.
Read more →Tuesday, February 11, 2025
Slop and Flop attacks
Read more →Friday, February 7, 2025
Hackers spoof Microsoft ADFS login pages to steal credentials Abnormal Security has detected a new phishing campaign targeting education, healthcare, and government organizations' ADFS
Read more →Live Chat Blog : Cisco Webex Connect - Access to millions of chats histories - Ophion Security Publications A vulnerability was discovered in Cisco's Webex Chat that allowed unauthorized access to the chat histories of many organizations
Read more →AI Red Teaming Reasoning LLM US vs China: Jailbreak Deepseek, Qwen, O1, O3, Claude, Kimi Results from a jailbreaking experiment.
Read more →Multiple security flaws found in DeepSeek iOS app
Read more →C.I.A. Sent an Unclassified Email With Names of Some Employees to Trump Administration
Read more →Is DeepSeek Lying To You? IT Trainer And YouTuber Exposes The Shocking Truth
Read more →Microsoft Sysinternals 0-Day Vulnerabilities Allow Attackers to Execute DLL Injection on Windows
Read more →WhatsApp accuses Paragon of hacking
Read more →OverTheWire: Bandit Great gamified tool to practice and get good at Linux command line.
Read more →Tuesday, February 4, 2025
[x] Crypto hacks
Read more →[x] AGI, Deepseek & Daniel Meissler
Read more →