security
Addressing the unauthorized issuance of multiple TLS certificates for 1.1.1.1
https://blog.cloudflare.com/unauthorized-issuance-of-certificates-for-1-1-1-1/
Added 4 days ago
www.darkreading.com
https://www.darkreading.com/vulnerabilities-threats/critical-flaw-cve-scoring
Added 4 weeks ago
Cracking the Vault: how we found zero-day flaws in authentication, identity, and authorization in HashiCorp Vault - Cyata | The Control Plane for Agentic Identity
https://cyata.ai/blog/cracking-the-vault-how-we-found-zero-day-flaws-in-authentication-identity-and-authorization-in-hashicorp-vault/
Added 1 month ago
Fully Homomorphic Encryption and the Dawn of A Truly Private Internet
https://bozmen.io/fhe
Added 1 month ago
Poor Passwords Tattle on AI Hiring Bot Maker Paradox.ai – Krebs on Security
https://krebsonsecurity.com/2025/07/poor-passwords-tattle-on-ai-hiring-bot-maker-paradox-ai/
Added 1 month ago
GitHub - Forceu/Gokapi: Lightweight selfhosted Firefox Send alternative without public upload. AWS S3 supported.
https://github.com/Forceu/Gokapi
Added 1 month ago
@bagder.mastodon.social.ap.brid.gy on Bluesky
https://bsky.app/profile/bagder.mastodon.social.ap.brid.gy/post/3ltodxecunfy2
Added 1 month ago
China breaks RSA encryption with a quantum computer - Earth.com
https://www.earth.com/news/china-breaks-rsa-encryption-with-a-quantum-computer-threatening-global-data-security/
Added 2 months ago
Defending the Internet: how Cloudflare blocked a monumental 7.3 Tbps DDoS attack
https://blog.cloudflare.com/defending-the-internet-how-cloudflare-blocked-a-monumental-7-3-tbps-ddos/
Added 2 months ago
Dangerous by default: Insecure GitHub Actions found in MITRE, Splunk, and other open source repositories | Sysdig
https://sysdig.com/blog/insecure-github-actions-found-in-mitre-splunk-and-other-open-source-repositories/
Added 2 months ago
Google Online Security Blog: On Fire Drills and Phishing Tests
https://security.googleblog.com/2024/05/on-fire-drills-and-phishing-tests.html
Added 2 months ago
Frequent reauth doesn't make you more secure
https://tailscale.com/blog/frequent-reath-security
Added 2 months ago
Scammers impersonating the ASD's ACSC | Cyber.gov.au
https://www.cyber.gov.au/about-us/view-all-content/alerts-and-advisories/email-scammers-impersonating-asds-acsc
Added 2 months ago
Ubuntu 25.10 Replaces sudo With a Rust-Based Equivalent - The New Stack
https://thenewstack.io/ubuntu-25-10-replaces-sudo-with-a-rust-based-equivalent/
Added 2 months ago
Designing Blue Team playbooks with Wazuh for proactive incident response
https://www.bleepingcomputer.com/news/security/designing-blue-team-playbooks-with-wazuh-for-proactive-incident-response/
Added 2 months ago
This no-code, security-focused n8n alternative works with everything, and it's free
https://www.xda-developers.com/cloud-based-n8n-alternative/
Added 3 months ago
Using artifact attestations to establish provenance for builds - GitHub Docs
https://docs.github.com/en/actions/security-for-github-actions/using-artifact-attestations/using-artifact-attestations-to-establish-provenance-for-builds#verifying-artifact-attestations-with-the-github-cli
Added 3 months ago
GitHub - OperantAI/woodpecker: Red Teaming for AI and Cloud
https://github.com/OperantAI/woodpecker
Added 3 months ago
Securing CI/CD workflows with Wazuh
https://thehackernews.com/2025/05/securing-cicd-workflows-with-wazuh.html?m=1
Added 3 months ago
ASD releases joint advice on AI data security – ARN
https://www.arnnet.com.au/article/3993677/asd-releases-joint-advice-on-ai-data-security.html
Added 3 months ago
KrebsOnSecurity Hit With Near-Record 6.3 Tbps DDoS
https://krebsonsecurity.com/2025/05/krebsonsecurity-hit-with-near-record-6-3-tbps-ddos/
Added 3 months ago