agenticBug-class explainer
Microsoft shows how a few lines of hidden text in an MCP tool description make an AI agent quietly exfiltrate data while every step stays policy-compliant. The bug class, the chain, and the defenses.
webBug-class explainer
Russian intelligence fake support texts steal a Signal Backup Recovery Key, turning one slip into persistent account access. The bug class, the chain, and the defenses.
webBug-class explainer
CVE-2025-67038 concatenates an unauthenticated username into a root shell command on a failed login. The bug class, the chain, and how to defend it.
webBug-class explainer
A lookalike of postcss-selector-parser decrypts a dropper, writes a PowerShell stager, and lands a Windows RAT. The bug class, the chain, and the defenses.
webBug-class explainer
A poisoned build pipeline shipped backdoored WordPress Pro plugins through the official update channel. The bug class, the implant, and how to detect it.
webBug-class explainer
AutoJack steers a browsing agent into a loopback daemon that spawns a process. The root cause is a service that trusts any local caller. Lab repro inside.
webReproducible walkthrough
From confirming an injectable parameter to UNION and blind extraction, then working past the filters authors love to add.
pwnReproducible walkthrough
Reusing the binary's own code, gadget by gadget, to call execve when the stack is non-executable. Full reproduction.
forensicsReproducible walkthrough
Triage a memory image with Volatility 3, flag a private RWX region, and carve the injected implant for analysis.
webThreat analysis
AutoJack, FortiBleed, and SocGholish read together: the layer you trust to protect a system is now the way in.