security

21 pieces of writing

A single index change bypassed daily_stock_analysis's entire rate limiter

A self-hosted stock analysis platform trusted the leftmost X-Forwarded-For entry for rate limiting, letting attackers rotate IPs and brute-force the admin login at will.

26 March 2026

security9 min read

TeamPCP compromised the AI proxy that holds everyone's API keys

25 March 2026

security12 min read

Git tags, package registries and extension marketplaces share the same broken authentication model

24 March 2026

vulnerability8 min read

gptme was passing API keys on the command line where any user could read them

gptme's evaluation runner passed API keys as Docker CLI arguments, exposing them to every user on the system via ps or /proc. The fix took one file and five tests.

23 March 2026

security7 min read

Hermes Agent's worktree feature copied arbitrary files from your filesystem

19 March 2026

security7 min read

Summarize's localhost daemon accepted requests from any website

11 March 2026

security11 min read

Prompt injection turned MCP-connected code assistants into attack proxies

Indirect prompt injection in AI coding assistants has turned every file, dependency and skill into a potential attack vector - and the CVEs are piling up.

10 March 2026

vulnerability7 min read

I found SQL injection in Hugging Face's AI skills framework and got it fixed in nine days

2 March 2026

security8 min read

Anthropic's Claude Code Security found 500 zero-days. The methodology was the problem.

27 February 2026

security12 min read

MCP gave AI tools a standard interface. Researchers found it was also an attack surface.

MCP promised to be the USB-C port for AI. Researchers found it was more like an unlocked door with a welcome mat for attackers.

10 February 2026

security5 min read

OpenClaw gathered 150,000 stars and shipped no security model

7 February 2026

security9 min read

Kazu stole 400,000 medical records from New Zealand's largest patient portal with valid credentials

13 January 2026

security9 min read

Sandworm hit thirty Polish energy sites in a single night

Russia's Sandworm hit Poland's power grid on the coldest night of the year, deploying a new wiper across thirty facilities including renewable plants and a major heat-and-power station. The attack failed to cause blackouts - but it damaged equipment beyond repair and proved that distributed energy is now a target.

31 December 2025

security10 min read

ASIO named Salt Typhoon and Volt Typhoon out loud. Beijing called it a false narrative.

17 November 2025

security8 min read

UNC5221 stole F5 source code and its customer list

20 October 2025

security7 min read

Basic ransomware hit one airport software vendor and grounded five European airports overnight

A piece of ransomware described as 'incredibly basic' hit a single software platform and grounded five European airports overnight. The problem wasn't the malware - it was the architecture.

25 September 2025

security6 min read

How Singapore traced a state-sponsored campaign to China

21 July 2025

security7 min read

Predatory Sparrow hit Iran's banking system and called it a warning

20 June 2025

security8 min read

The Coinbase insider who sold four hundred thousand customer records

Coinbase disclosed that criminals bribed overseas support agents to steal customer data for 69,461 users. The ransom demand was $20 million. The estimated cleanup cost is $400 million. The vulnerability was human.

19 May 2025

security6 min read

When a GitHub Action rewrites its own history

17 March 2025

security8 min read

What DeepSeek's security posture looks like from the outside

10 February 2025