Vulnerability Backlog Is not Just A Remediation Problem
A growing vulnerability backlog is one of the biggest concerns for security leaders, and it has become even more pressing…
Security
DirtyDecrypt: Technical Analysis of a Critical Linux Kernel Privilege Escalation Vulnerability
The discovery of DirtyDecrypt (linked to CVE-2026-31635) reveals a critical vulnerability that highlights a serious weakness in modern Linux kernel…
Laurie Anderson Is Quoting Me
Not by name, but Laurie Anderson quotes me in one of the tracks of her new album: My favorite quote…
REST API security testing: A complete guide
Learn how to perform REST API security testing with a practical, step-by-step approach. This guide covers the OWASP API Security…
Zero-Day Exploit Against Windows BitLocker
It’s nasty, but it requires physical access to the computer: The exploit, named YellowKey, was published earlier this week by…
What Your Board Gets Wrong About AI Security
Editor’s note: This article was originally published by Craig Riddell on LinkedIn. It has been republished here with the author’s…
Weekly Update 504
Presently sponsored by: Report URI: Guarding you from rogue JavaScript! Don’t get pwned; get real-time alerts & prevent breaches #SecureYourSite…
Friday Squid Blogging: Bigfin Squid
Article about the bigfin squid. As usual, you can also use this squid post to talk about the security stories…
Bypassing On-Camera Age-Verification Checks
Some AI-based video age-verification checks can be fooled with a fake mustache.
How Dangerous Is Anthropic’s Mythos AI?
Last month, Anthropic made a remarkable announcement about its new model, Claude Mythos Preview: it was so good at finding…