Spotlight: New Apple spyware, Zero-day Vulnerability Database, Docker for Pentest, Hacking GTA, URL parsers disagree, etc.
Spotlight: Hacking the Police, Bitlocker bypass on Lenovo, NCC's R1CS Implementation Review, Google Extensions etc.
OWASP Top 10 for Large Language Model Applications, Customer takeover in Shopify, Open Cybersecurity Schema Framework, Blocked by Cloudflare etc.
Spotlight: Websocket Pentesting with wsrepl, SVG Security Risks, New techniques Race conditions, XboxOneDirectoryTraversal, websocket_fuzzer etc.
Spotlight: Backdoor in TETRA Police Radios, How is Akamai blocking?, Find bugs with route-detect, LLM vulnerability scanner, saas-attacks etc.
Spotlight: How CodeQL works, Bundle Your Own Stealer, ShareFile RCE, RCE in Google Cloud Build, ORMs and Prepared Statements, etc.
Spotlight: remote execution vulnerability in math.js, Art of hacking LLM apps, aCropalypse vulnerability
Spotlight: How I Hacked CASIO F-91W digital watch, RCE in GitLab's CLI tool, Hacking Google Search Appliance, Prompt Injection (Prevent), etc.
Don't npm install https, Securing the AI Pipeline, SSO Gadgets II, bug at npm ecosystem, route-detect, etc.
IDOR in Microsoft Teams, VPN app is a DDOS botnet, EJS Vulnerabilities, container security, Data Falsificada: "Clusterfake", DNS Analyzer, etc.