Security Boulevard

Centurion: Bring Your Own Execution Environment

Writing my own virtualized loader is something I’ve been wanting to do since I first read Microsoft’s deep dive on FinFisher’s multi-layered VM obfuscation back in 2018. FinFisher didn’t just use one ...
Bitdefender

What are Exploit Kits

Historically, exploit kits have focused on client-side attack surfaces like web browsers and browser-adjacent components such as plugins and runtimes. What made browsers the ideal target is the fact ...
Decrypt

AI Agents Still Can't Stop Prompt Injection Attacks, Researchers Warn

A new benchmark study found AI agents remain vulnerable to prompt injection attacks as companies increasingly roll out the ...
The Hacker News

New Attacks Trick OpenClaw AI Agent Into Running Code and Leaking Secrets

OpenClaw input flaws let hidden contacts and phishing emails trigger code execution and data leaks, exposing agent trust ...
The Hacker News

Hacking Salesforce Sites With an LLM Agent

AI agent exploited Salesforce sites; 263 objects, 55 Apex methods exposed at one portal, leading to PII and file leaks.
GitHub

codeofuniverse/Lighthouse-AI-SOC

Risk scoring formula and examples Full API reference with request/response samples Real-world deployment guide (Suricata on dedicated sensor, nginx frontend, systemd) Wazuh agent installation on ...