All Posts
The TrapDoor Supply Chain Attack: Coordinated Multi-Registry Campaign Hits npm, PyPI, and Crates.io
Inside the TrapDoor supply chain attack. Discover how 34+ packages across npm, PyPI, and Crates.io use AI prompt injection to steal dev secrets
NGINX ‘nginx-poolslip’ Zero-Day RCE: Millions of Servers Still Exposed After Rift Patch
The new NGINX 'nginx-poolslip' zero-day RCE bypasses the Rift patch in NGINX 1.31.0. Read our highly technical analysis and step-by-step mitigations
Beginner’s Guide to Conquering Reactor on Hack the Box
Conquer Reactor on Hack The Box like a pro with the official HTB Writeup. Dominate this challenge and level up your cybersecurity skills
Self-Hosted Email That Actually Works: The Ultimate Guide to Digital Sovereignty
Stop relying on Big Tech. This massive guide teaches you how to build a self-hosted email server that actually works. Master Mailcow, and more
The Beginner’s Mindset for Solving Hack The Box Machines
Learn the beginner mindset and step-by-step approach for solving Hack The Box CTF machines, from recon and enumeration to foothold and more
Mini Shai-Hulud Worm Hits npm: TanStack and Mistral Among 160+ Packages Compromised in Massive Supply Chain Attack
Full list of 160+ packages compromised by the Mini Shai-Hulud worm, including TanStack, Mistral AI, and UiPath. Technical deep-dive and recovery
Nitrogen Ransomware Claims 8TB Theft from Foxconn’s Wisconsin Plant
8TB breach hits Foxconn Wisconsin! Nitrogen ransomware group claims 11 million files stolen, including Apple & Google specs
Malicious “OpenAI Privacy Filter” Hits #1 on Hugging Face: 244K Downloads of Stealthy Infostealer
A fake OpenAI Privacy Filter repository reached #1 on Hugging Face, tricking 244K users into downloading a Rust-based infostealer. Learn about it
Critical Ollama Vulnerabilities: “Bleeding Llama” and an Unpatched Windows RCE Are Hitting 300,000 Servers
Massive security risk! 300k Ollama servers vulnerable to memory leaks (Bleeding Llama) and unpatched Windows RCE. Read the full technical guide
cPanel Patches Three New Vulnerabilities Enabling Code Execution and DoS – Update Your Installations
cPanel releases emergency patches for CVE-2026-29201, CVE-2026-29202, and CVE-2026-29203. Learn how to fix Perl code execution and DoS flaws
