Old terminal hacks that still work and still land CVEs. The OSCP topics you shouldn't waste your time on. From a working pentester.

Every time you open LinkedIn in a Chrome-based browser, LinkedIn’s JavaScript executes a silent scan of your installed browser extensions. The scan probes for thousands of specific extensions by ID, collects the results, encrypts them, and transmits them…

Security insights, tutorials, and updates from the HookProbe team. Learn about edge security, threat detection, and autonomous SOC operations.

A controlled hacking game for red team, purple team, and security engineers. Your attack attempts train DLX7 ShieldNet guardrails.

A few days ago I wrote about how the Trivy ecosystem got turned into a credential stealer. One of my takeaways was “pin by SHA.” Every supply chain security guide says it, I’ve said it, every subreddit says it, and the GitHub Actions hardening docs say it.

Deep-dive static analysis of a malicious Firefox extension that hides its C2 configuration in a PNG trailer, evades AV scanners via Unicode low-byte encoding, hijacks Taobao/JD.com affiliate commissions, and breaks the browser sandbox with a fake chrome.*…

First security hire is a weird job - here’s a counterfactual guide on what to avoid

Security experts

Report on the alleged Adobe data breach. Threat actor Mr. Raccoon claims 13M support tickets, 15k employee records and HackerOne data leaked via BPO.

91% of MCP repos have security findings. Data from 6,494 scans across 2,896 repos with 16 independent engines.

Part 2: AWS CodeBuild (Escalating Privileges via AWS CodeConnections) - In this post we show how to use a malicious Docker Image to monitor network traffic within CodeBuild and find undocumented AWS API calls. From this we'll find a CodeBuild API that gives…

CVE-2026-33579 is a HIGH severity OpenClaw vulnerability fixed in 2026.3.28. Learn what's affected, how to patch, and how to detect exploitation.

Claude Code has gotten extremely good at finding security vulnerabilities, and this is only the beginning.

I built a native macOS app for the YubiHSM 2 — with YubiKey-based authentication, visual security posture, hardware-backed secrets, SSH certificate issuance, and tamper-evident audit trails. Here's what HSM management looks like when someone designs for it.

DLX7 ShieldNet Trust Posture Dashboard: Live security posture, threat taxonomy, framework coverage, and containment metrics for AI agent protection. Aligned with OWASP LLM Top 10, NIST AI RMF, and Microsoft AI Security Guidance.

A financially motivated operation codenamed REF1695 has been observed leveraging fake installers to deploy remote access trojans (RATs) and cryptocurrency miners since November 2023. Beyond cryptomining, the threat actor monetizes infections through CPA (Cost…

How Apple's Spotlight API exposes undocumented interaction data for every search result it serves to over a billion devices

When an iPhone user types a query into Spotlight, Apple's servers return ranked results spanning web pages, apps, maps, news, knowledge…

BrowserGate: How Microsoft-owned LinkedIn illegally scans 1 billion computers for 6,222 extensions to steal trade secrets and profile users