Light bulb Limited Spots Available: Secure Your Lifetime Subscription on Gumroad!

Articles & Guides

All 620 Featured 15 Articles 618 Guides 2
Showing 15 of 620 posts · RSS
ChromaDB Runs Your Code Before It Checks If You're Authenticated—And 73% of the AI Vector Databases on the Internet Still Have the Bug
Article

ChromaDB Runs Your Code Before It Checks If You're Authenticated—And 73% of the AI Vector Databases on the Internet Still Have the Bug

May 20, 2026 · 10 min read

EvilTokens Just Compromised 340 Microsoft 365 Tenants in Five Weeks Without Asking for a Single Password—The Victims Finished MFA on the Real Microsoft Site
Article

EvilTokens Just Compromised 340 Microsoft 365 Tenants in Five Weeks Without Asking for a Single Password—The Victims Finished MFA on the Real Microsoft Site

May 20, 2026 · 11 min read

Brazil Just Turned Its Child Protection Statute Into a Privacy by Default Rulebook for the Whole Internet—And Parental Consent Is No Longer Enough
Article

Brazil Just Turned Its Child Protection Statute Into a Privacy by Default Rulebook for the Whole Internet—And Parental Consent Is No Longer Enough

May 20, 2026 · 9 min read

455 Android Apps in the Play Store Generated 659 Million Fake Ad Bid Requests a Day—Three Quarters of the Traffic Came From American Phones
Article

455 Android Apps in the Play Store Generated 659 Million Fake Ad Bid Requests a Day—Three Quarters of the Traffic Came From American Phones

May 20, 2026 · 9 min read

An Nx Console Version With 2.2 Million Installs Was on the VS Code Marketplace for Exactly 11 Minutes—Long Enough to Reach 1Password Vaults, Claude Code Configs, and SSH Keys
Article

An Nx Console Version With 2.2 Million Installs Was on the VS Code Marketplace for Exactly 11 Minutes—Long Enough to Reach 1Password Vaults, Claude Code Configs, and SSH Keys

May 20, 2026 · 10 min read

Discord Just Did What Meta Just Undid—End to End Encryption Is Now Default on Every Voice and Video Call, With One Big Exception
Article

Discord Just Did What Meta Just Undid—End to End Encryption Is Now Default on Every Voice and Video Call, With One Big Exception

May 20, 2026 · 8 min read

7-Eleven Just Confirmed ShinyHunters Walked Out With 600,000 Records Through Salesforce—And the People Affected Were Trying to Own a Store, Not Buy a Slurpee
Article

7-Eleven Just Confirmed ShinyHunters Walked Out With 600,000 Records Through Salesforce—And the People Affected Were Trying to Own a Store, Not Buy a Slurpee

May 20, 2026 · 9 min read

Researchers Just Dropped Seven Critical Bugs in the Encrypted Email Gateway Used Across Germany, Austria, and Switzerland—One of Them Is a Perfect 10.0
Article

Researchers Just Dropped Seven Critical Bugs in the Encrypted Email Gateway Used Across Germany, Austria, and Switzerland—One of Them Is a Perfect 10.0

May 20, 2026 · 8 min read

CoinbaseCartel Stole Grafana's Source Code With a Token Hidden in a Forked Repo—And the Canary the Defenders Planted Caught the Whole Operation
Article

CoinbaseCartel Stole Grafana's Source Code With a Token Hidden in a Forked Repo—And the Canary the Defenders Planted Caught the Whole Operation

May 19, 2026 · 8 min read

Microsoft Patched This Windows Bug in 2020—a Researcher Just Proved the Same Code Path Still Hands Out SYSTEM on a Fully Patched Windows 11 in May 2026
Article

Microsoft Patched This Windows Bug in 2020—a Researcher Just Proved the Same Code Path Still Hands Out SYSTEM on a Fully Patched Windows 11 in May 2026

May 19, 2026 · 7 min read

INTERPOL Just Arrested 201 Cybercriminals Across 13 MENA Countries—And the People Running One Scam Center Were Trafficking Victims Being Forced
Article

INTERPOL Just Arrested 201 Cybercriminals Across 13 MENA Countries—And the People Running One Scam Center Were Trafficking Victims Being Forced

May 19, 2026 · 7 min read

Russia's FSB Just Turned Its 21 Year Old Spy Tool Into a Peer to Peer Botnet—And Email Harvesting Is One of 150 Built In Modules
Article

Russia's FSB Just Turned Its 21 Year Old Spy Tool Into a Peer to Peer Botnet—And Email Harvesting Is One of 150 Built In Modules

May 19, 2026 · 6 min read

OpenAI Embedded Meta's Facebook Pixel Inside ChatGPT.com—a May 14 Class Action Says Every Query You Typed Was Sent to Facebook and Google in Real Time
Article

OpenAI Embedded Meta's Facebook Pixel Inside ChatGPT.com—a May 14 Class Action Says Every Query You Typed Was Sent to Facebook and Google in Real Time

May 18, 2026 · 9 min read

Pitney Bowes Just Confirmed a Single Phished Email Cost Them 8.2 Million Customer Records—ShinyHunters Got In on April 8 and Sold the Data When Negotiations Failed
Article

Pitney Bowes Just Confirmed a Single Phished Email Cost Them 8.2 Million Customer Records—ShinyHunters Got In on April 8 and Sold the Data When Negotiations Failed

May 18, 2026 · 8 min read

CISA Gave Federal Agencies Three Days to Patch Cisco's Newest 10.0 SD-WAN Auth Bypass—UAT-8616 Is Already Inside, Planting SSH Keys and Downgrading Software to Reach Root
Article

CISA Gave Federal Agencies Three Days to Patch Cisco's Newest 10.0 SD-WAN Auth Bypass—UAT-8616 Is Already Inside, Planting SSH Keys and Downgrading Software to Reach Root

May 18, 2026 · 8 min read