Fast and accurate AI powered file content types detection.
https://github.com/google/magika
#AI
Please open Telegram to view this post
VIEW IN TELEGRAM
❤2👍1🔥1
Wiz Research discovered CVE-2026-3854 (CVSS 8.7): an unsanitized semicolon injection in GitHub's X-Stat internal header allows any authenticated user to override security fields via git push -o, achieving RCE on GitHub com and full GHES server compromise.
https://www.wiz.io/blog/github-rce-vulnerability-cve-2026-3854
#github
Please open Telegram to view this post
VIEW IN TELEGRAM
👍3❤1🔥1
OpenShell is the safe, private runtime for autonomous AI agents.
https://github.com/NVIDIA/OpenShell
#AI
Please open Telegram to view this post
VIEW IN TELEGRAM
❤2👍2🔥2
Postman is sharing the evolution of their Security Review Process (SRP). What didn't work, what they changed, and how they built SRP v2, a risk-based, automation-first security model embedded directly into their SDLC.
https://blog.postman.com/how-we-scaled-security-reviews-without-slowing-down-engineering
#SRP
Please open Telegram to view this post
VIEW IN TELEGRAM
Please open Telegram to view this post
VIEW IN TELEGRAM
❤1👍1🔥1
How Block built benchmrk, a harness for measuring SAST scanner efficacy against ground truth you control.
https://engineering.block.xyz/blog/proof-not-promises-evaluating-code-scanner-efficacy
#SAST
Please open Telegram to view this post
VIEW IN TELEGRAM
❤1👍1🔥1
NVD's April 2026 scope reduction (enriching only KEVs and critical federal software) collides with AI-accelerated vulnerability discovery (e.g., Claude Mythos), creating a dangerous gap in OSS CVE coverage.
https://pulse.latio.tech/p/building-an-ai-ready-vulnerability
#AI
Please open Telegram to view this post
VIEW IN TELEGRAM
Please open Telegram to view this post
VIEW IN TELEGRAM
❤1👍1🔥1
🔶 The Danger of Multi-SSO AWS Cognito User Pools
This post explores security anti-patterns in multi-SSO AWS Cognito User Pools: ghost identity injection via misconfigured Lambda triggers, "triggerSource" blind spots, sub-splitting attacks on "event.userName", and IdP identifier hijacks. It also introduces "maSSO", a weaponized OIDC/SAML IdP for pentesting.
https://blog.doyensec.com/2026/05/05/cloudsectidbits-masso-cognito-sso.html
#aws
This post explores security anti-patterns in multi-SSO AWS Cognito User Pools: ghost identity injection via misconfigured Lambda triggers, "triggerSource" blind spots, sub-splitting attacks on "event.userName", and IdP identifier hijacks. It also introduces "maSSO", a weaponized OIDC/SAML IdP for pentesting.
https://blog.doyensec.com/2026/05/05/cloudsectidbits-masso-cognito-sso.html
#aws
❤1👍1🔥1
Research disclosing that ChatGPT, Claude, Grok, and Perplexity embed third-party trackers (Meta, Google, TikTok) that leak conversation URLs, email hashes, and user identifiers, often bypassing cookie consent. via client-side pixels and server-side forwarding.
https://leakylm.github.io
#AI
Please open Telegram to view this post
VIEW IN TELEGRAM
❤1👍1🔥1
Wiz researchers analysed popular AI GitHub Actions (Anthropic, OpenAI, Google) and found: bot permission-check bypasses enabling untrusted external apps to trigger AI workflows, novel credential-file exfiltration vectors unrecognised by LLMs as sensitive, and widespread misconfigurations in repos with 200,000+ combined stars.
https://www.wiz.io/blog/github-actions-security-ai-powered-actions-vulnerabilities
#AI
Please open Telegram to view this post
VIEW IN TELEGRAM
❤1👍1🔥1
20 мая в 12:00 (мск) пройдёт бесплатный вебинар «Автоматизация процессов безопасности в Kubernetes: опыт MWS Cloud Platform».
Руководитель направления облачной безопасности Алексей Федулаев расскажет:
- Какие есть подводные камни при переходе с ручных сканов
- Как покрыть тепловыми картами кластеры и отслеживать нарушения
- Как находить аномалии в поведении пользователей
- И наконец, как это всё подружить с центром безопасности
Вебинар будет полезен директорам по ИТ и ИБ, ИБ-специалистам и инженерам, работающим в облачных средах.
Регистрируйтесь, подключайтесь к прямому эфиру и задавайте вопросы в чате.
📆 20 мая в 12:00
#advertising
Руководитель направления облачной безопасности Алексей Федулаев расскажет:
- Какие есть подводные камни при переходе с ручных сканов
- Как покрыть тепловыми картами кластеры и отслеживать нарушения
- Как находить аномалии в поведении пользователей
- И наконец, как это всё подружить с центром безопасности
Вебинар будет полезен директорам по ИТ и ИБ, ИБ-специалистам и инженерам, работающим в облачных средах.
Регистрируйтесь, подключайтесь к прямому эфиру и задавайте вопросы в чате.
📆 20 мая в 12:00
#advertising
❤1👍1🔥1😱1
Orca Security identified four supply chain attack primitives in an AI agent skills marketplace: unauthenticated install count inflation, non-deterministic security scanning, silent skill name override, and blind bulk updates. All enabling bait-and-switch, nested skill injection, and delayed weaponization attacks achieving real-world RCE.
https://orca.security/resources/blog/ai-agent-skill-supply-chain-security
#AI
Please open Telegram to view this post
VIEW IN TELEGRAM
👍2❤1🔥1
🔶 The AWS Bedrock API Keys Security Guide Part 2: Detection, Prevention, and Response
The second part of a guide to AWS Bedrock API key security, this research builds off of the risks of AWS Bedrock API keys introduced in part one to cover detection, prevention, incident response, and migration to STS.
https://www.beyondtrust.com/blog/entry/aws-bedrock-security-guide-api-keys-detection-response
#aws
The second part of a guide to AWS Bedrock API key security, this research builds off of the risks of AWS Bedrock API keys introduced in part one to cover detection, prevention, incident response, and migration to STS.
https://www.beyondtrust.com/blog/entry/aws-bedrock-security-guide-api-keys-detection-response
#aws
❤1👍1🔥1
Wiz proposes a 4-pillar AI Threat Readiness Framework: (1) reduce attack surface and AI-scan all exposures; (2) accelerate CVE patching and zero-day response; (3) perform deep AI-driven code analysis; (4) automate real-time threat detection and containment.
https://www.wiz.io/blog/ai-threat-readiness-framework
#AI
Please open Telegram to view this post
VIEW IN TELEGRAM
❤1👍1🔥1
🔶 Authorization Bypass in Amazon Quick: Unauthorized AI Chat Agent Usage
An authorization bypass in Amazon Quick's AI Chat Agents that allowed users to access and interact with AI agents despite explicit administrative restrictions. AWS responded by deploying a fix without notifying customers, classified the issue as “none,” and did not publish an advisory.
https://www.fogsecurity.io/blog/authorization-bypass-in-amazon-quick-ai-agents
#aws
An authorization bypass in Amazon Quick's AI Chat Agents that allowed users to access and interact with AI agents despite explicit administrative restrictions. AWS responded by deploying a fix without notifying customers, classified the issue as “none,” and did not publish an advisory.
https://www.fogsecurity.io/blog/authorization-bypass-in-amazon-quick-ai-agents
#aws
❤2👍1🔥1
Mitiga Labs shows how Claude Code MCP configuration can be hijacked through ~/.claude.json to steal OAuth tokens, persist through rotation, and hide in trusted SaaS activity.
https://www.mitiga.io/blog/claude-code-mcp-token-theft-mitm
#ClaudeCode
Please open Telegram to view this post
VIEW IN TELEGRAM
❤1👍1🔥1
With the increasing usage of AI Coding agents, can coding agent skill files be exploited as an initial access mechanism, and how? This is part 1 of a 3 part series exploring the attack surface and defensive recommendations.
https://labs.reversec.com/posts/2026/05/skill-issues-compromising-claude-code-with-malicious-skills-agents-part-1
#ClaudeCode
Please open Telegram to view this post
VIEW IN TELEGRAM
❤2👍2🔥2
A Claude Code Routine that triages every Renovate PR by risk, flags dead deps, and catches deprecated framework configs before I touch the diff.
https://blog.marcolancini.it/2026/blog-automating-security-operations-with-ai-triage-renovate
#ClaudeCode
Please open Telegram to view this post
VIEW IN TELEGRAM
Please open Telegram to view this post
VIEW IN TELEGRAM
❤1👍1🔥1