Discover how attackers could quietly enumerate AWS resources via Resource Explorer, and how Datadog and AWS worked together to close the visibility gap.

A milestone document in the history of human rights, the Universal Declaration of Human Rights set out, for the first time, fundamental human rights to be universally protected. It has been translated into over 500 languages.

Hacker Demonstrates How Easy It Is To Steal Data From Popular Password Managers

We’re back, and we’ve finished telling everyone that our name was on the back of Phrack!!!!1111

Whatever, nerds.

Today, we're back to scheduled content. Like our friendly neighbourhood ransomware gangs and APT groups, we've continued to spend irrational…

Intro

Commvault has fixed vulnerabilities that may allow attackers to compromise on-premises deployments of its flagship backup solution.

Google Enhanced Tools - Google announced a comprehensive suite of AI-powered security enhancements at the Google Cloud Security Summit.

Advanced AI security platform with real-time threat detection, prompt injection defense, and comprehensive monitoring. Protect your AI infrastructure from data leaks and security risks.

Founded in 2019, San Francisco-based Horizon3.ai in June completed a $100 million Series D funding round. 

We Put Agentic AI Browsers to the Test - They Clicked, They Paid, They Failed

In my previous blog post Azure’s Weakest Link? I hinted at the existence of a hidden, globally shared, architecture that, if exploited, could allow for cross-tenant compromises. I can now reveal that this was indeed exploitable, and the massive potential…

Posted by ok_bye_now_ - 1 vote and 0 comments

If AI can mass-produce exploits, how much time do defenders really have left?

Posted by ok_bye_now_ - 1 vote and 0 comments

Once you gain a foothold on a Windows host, the next objective is often to compromise additional machines. The fastest way to achieve this is by harvesting credentials and other secrets for reuse. However, nowadays, most known techniques for collecting Windows…

HackerOne API를 활용하여 버그 바운티 프로그램 정보, 공개된 보고서, 범위 등 다양한 데이터를 조회하고 분석하는 파이썬 기반 도구입니다.

Abusing the Clipup.exe program by using the CreateProcessAsPPL.exe tool to destroy the executable file of the EDRs, Antivirus.

Exposing digital fraud, regulatory evasion, and corporate manipulation through cyber intelligence. We investigate what others ignore.

I used Claude to build ProxyGen, a multi-cloud WireGuard VPN tool. It needed tweaks but showed how far AI vibecoding can go, flaws and all.