Loading...

Tag trends are in beta. Feedback? Thoughts? Email me at [email protected]

CLI Authentication, the Right Way

Upcoming breaking changes for npm v12

The Threat of Residential Proxies

Anatomy of a Failed (Nation-State?) Attack

For the 2nd time in weeks, Microsoft packages laced with credential stealer

Arch Linux AUR Hit by Another Wave of Now More Sophisticated Malware Attack

Akrites: Coordinated, confidential vulnerability remediation for the open source software critical infrastructure depends on

Curl will not accept vulnerability reports during July 2026

Incident CVE-2026-LGTM

Teens who hacked TfL were known to police years before cyber-attack

Soatok’s Informal Guide to Threat Models

A peek into Reddit's anti-spam internals

I Could've Rickrolled the FIFA World Cup. All I Needed Was My ID

A backdoor in a LinkedIn job offer

Cybersecurity Vets Protest 'Dangerous' US Government Ban On Anthropic's Most Powerful Models

Did Claude increase bugs in rsync?

Exploiting vulnerabilities in Johnson and Johnson web apps

ipv6_frag_escape: Linux LPE - Reliable Jail/Container Escape

Pwnd Blaster: Hacking your PC using your speaker without ever touching it

Users cry foul after AMD stripped memory crypto from its consumer CPUs

It's dead, Jim – the old Microsoft UEFI CA from 2011 expired yesterday

I found 10k GitHub repositories distributing Trojan malware

Detecting and removing dangerous secrets on dev workstations before Shai-Hulud does

Reuse Less Software

The Quiet Numbers Station: Decoding Nineteen Years of GPS Cryptography

Ignore DNSSEC if you like MITM attacks

usbliter8: An A12/A13 SecureROM exploit

Twenty One Zero-Days in FFmpeg

How Millions of Digital Home Devices Are Secretly Powering Cyberattacks

CVE-2026-42530: Use after free in nginx HTTP/3 QUIC module

More →