Even read-only files can be written to, leading to a dangerously general purpose elevation-of-privilege attack.
Read moreTraining data stashed in GitHub by mistake... unfortunately, it was *real* data
Read moreFirefox just published a double-zero-day patch - "remote code execution" combined with "sandbox escape". Update now!
Read moreLatest episode - listen now (or read it, if that's your preference)...
Read more"Change your code to improve cryptomining"... or we'll dump 1TB of stolen secrets.
Read moreInstagram scammers as busy as ever: passwords and 2FA codes at risk
February 28 2022Instagram scams don't seem to be dying out - we're seeing more variety and trickiness than ever...
Read moreDid we learn nothing from Y2K? Why are some coders still stuck on two digit numbers?
February 25 2022Calling all website coders: Y2K was then. V1H is now!
Read moreS3 Ep71: VMware escapes, PHP holes, WP plugin woes, and scary scams [Podcast + Transcript]
February 24 2022Latest episode - listen now!
Read moreApple AirTag anti-stalking protection bypassed by researchers
February 23 2022Problems with Apple's Tracker Detect system, which warns you of likely stalking attempts using hidden AirTags.
Read more
Recent Comments