I served nine years in the Navy as an Aviation Boatswain's Mate before I ever touched a SIEM. A year into my first analyst role, I started building DMZ — the threat intel publication I wish existed when I was sitting at my desk a year ago,…
Rapid7 disclosed in May 2026 that MuddyWater (Seedworm) conducted a sophisticated false-flag ransomware operation in early 2026, operating under the Chaos RaaS banner while forensic analysis revealed MOIS-linked code-signing certificates…
Dropping full working PoC for ████████████ — Check Point Remote Access VPN IKEv1 cert validation logic flaw. Zero creds needed. Tested against ████████████. Scanner included identifies exposed gateways in bulk. Already used in 3 confirmed…
Exfiltrated full CRM of ████████████ by abusing a Klaviyo private API key hardcoded in client-side JS. ████████████ — full names, emails, phones, physical addresses, purchase history. Finance sector victims. Reply gate for sample. API key…
Fortinet disclosed FG-IR-26-125, a missing authentication for critical function vulnerability (CWE-306) in the FortiOS and FortiSwitchManager CAPWAP daemon that can allow a local unauthenticated attacker on the same IP subnet to write…