Loading...

Tag trends are in beta. Feedback? Thoughts? Email me at [email protected]

CLI Authentication, the Right Way

Upcoming breaking changes for npm v12

The Threat of Residential Proxies

Anatomy of a Failed (Nation-State?) Attack

For the 2nd time in weeks, Microsoft packages laced with credential stealer

Arch Linux AUR Hit by Another Wave of Now More Sophisticated Malware Attack

Akrites: Coordinated, confidential vulnerability remediation for the open source software critical infrastructure depends on

Curl will not accept vulnerability reports during July 2026

Incident CVE-2026-LGTM

Teens who hacked TfL were known to police years before cyber-attack

A peek into Reddit's anti-spam internals

I Could've Rickrolled the FIFA World Cup. All I Needed Was My ID

A backdoor in a LinkedIn job offer

Cybersecurity Vets Protest 'Dangerous' US Government Ban On Anthropic's Most Powerful Models

Did Claude increase bugs in rsync?

Exploiting vulnerabilities in Johnson and Johnson web apps

ipv6_frag_escape: Linux LPE - Reliable Jail/Container Escape

Pwnd Blaster: Hacking your PC using your speaker without ever touching it

Soatok’s Informal Guide to Threat Models

Users cry foul after AMD stripped memory crypto from its consumer CPUs

It's dead, Jim – the old Microsoft UEFI CA from 2011 expired yesterday

I found 10k GitHub repositories distributing Trojan malware

Detecting and removing dangerous secrets on dev workstations before Shai-Hulud does

Reuse Less Software

The Quiet Numbers Station: Decoding Nineteen Years of GPS Cryptography

Ignore DNSSEC if you like MITM attacks

usbliter8: An A12/A13 SecureROM exploit

Twenty One Zero-Days in FFmpeg

How Millions of Digital Home Devices Are Secretly Powering Cyberattacks

CVE-2026-42530: Use after free in nginx HTTP/3 QUIC module

More →