Compromising (Almost) Every Repo Using CodeQL: A Supply Chain Attack
A recent supply chain vulnerability discovered by John Stawinski of Praetorian exposed a critical flaw in GitHub’s CodeQL, allowing attackers […]
leaks
Surveillance – The Blueprint for Cyber Crime
Since its inception in 1986, the Domain Name System (DNS) has been the backbone of the Internet, enabling everything from
Exploiting Broken Access Control Vulnerability in Public VDP
In a recent discovery on a public HackerOne VDP (Vulnerability Disclosure Program), a critical Broken Access Control vulnerability was identified.
Zero Trust: Fini la confiance aveugle en cybersécurité
Zero Trust is a modern security model that eliminates implicit trust and enforces strict access controls. Instead of assuming everything
IDOR Vulnerability Exploitation and Bug Bounty Success
Akhileswara Reddy, a WIFI Penetration Tester and Application Security Engineer, recently uncovered a critical Insecure Direct Object Reference (IDOR) vulnerability,
Real-Time Discovery of Typing Text into Prompts: Enhancing Data Security in GenAI Environments
With the rapid evolution of Generative AI (GenAI), organizations face growing concerns about data leakage and unauthorized sharing of sensitive
Hacker Claims Sale of Million Records Stolen from Oracle Cloud Servers
A threat actor named “rose87168” claimed to have stolen six million records from Oracle Cloud servers. The stolen data reportedly
Free Cybersecurity Tools for Hands-on Experience!
If you’re looking to gain practical cybersecurity skills, these free tools are a great way to get started. 1. Wireshark
Darknet Monitoring Exposes VPN Credentials Leak – How to Protect Your Network
Thanks to a darknet monitoring service, our customer was alerted that an adversary had successfully obtained VPN credentials to log
Twitter (X) B Data Leak: A Deep Dive into the Breach
The recent Twitter (X) 2025 data leak, exposing 2.8 billion records, has reignited concerns about platform security. Notably, this breach