Tired of scrolling the whole ATT&CK matrix mid-engagement? We use the BEAR Security Model instead: B – Break in E – Expand foothold A – Ascend privileges R – Rule the environment Same kill chain logic, zero clutter. Perfect for live pentests, reports, and exec briefs.

Like if you also see an eyeball in this lamp

Sandbox bypass → arbitrary code exec → OS cmd exec in GenAI dev platform. Found https://t.co/WUtRvwazeR, used SourceMapper to extract JS, analysed logic, used prototype pollution + object traversal to bypass. Got creds incl private keys, cloud, GitHub, DB, mail, other secrets.

Looking for security researcher with great public profile. Remote. API / AI exploits focus on novel techniques. No XSSers please ;) reply here or DM. Please repost

Check out the latest article in my newsletter: OWASP Top 10 - Release Candidate https://t.co/a6RutzkZ1k Link to the playlist - Link to the playlisy - https://t.co/PQM5SyVk8I #infosec #CyberSec @owasp

Beernet Radio: Britt West of Gallo joins us, the architect of High Noon, VMC, Lucky One, etc.

Security isn’t just a technical problem. It’s a leadership one. Lefteris Tzelepis on what it takes to be a modern CISO, from incident response discipline to API visibility and secure coding. Read the full CISO Spotlight: https://t.co/oQptkVutvZ #CyberSecurity #CISO

Looking for security researcher with great public profile. Remote. API / AI exploits focus on novel techniques. No XSSers please ;) reply here or DM. Please repost

Season’s greetings from Panasonic Avionics to our customers and colleagues across the aviation community. Wishing everyone a restful and happy holiday season. 🎉 #HappyHolidays #Aviation #IFEC

Everyone is predicting the future of AI security. These experts focus on what will actually break first in 2026. If you want to uncover the blind spots organizations are still underestimating, read the full article below. https://t.co/SCKQDouIAz #CyberSecurity #APIsecurity

What a year. ⭐ Our 2025 recap is live, covering smarter sessions, real-time blocking, revenue protection, and more. Read it here: https://t.co/KIeUNxyGDN #APIsecurity #Wallarm #Cybersecurity

Somos Novios - It's Impossible ..Not to love you.....await...patiently......my love......

WAF Bypass Discovered - Akamai & Cloudflare A fresh technique has been spotted that successfully bypasses WAFs like Akamai and Cloudflare. #infosec #Cybersecurity #bugbountytip

GenZ idiom: There are only killers and kidders in this world. Kidders are usually older.

GenZ vocab: married point of failure (previous generation-aged single point of failure)

GenZ vocabulary: inwastements

EXW vs. FOB vs. DDP shouldn’t slow a shipment down. Download the Incoterms 2020 cheat sheet and get clarity in 2 minutes. → Click for free download

APIs are the #1 attack targets. Email topped reports in the past. But attackers follow the data flow, and that’s APIs now. Shadow endpoints, fast releases, noisy integrations… it’s where they strike. Agree or not? 👇 #APIsecurity #CyberSecurity #Wallarm

Proud to share that Wallarm has been named an Edge Tech Champion for Performance by The Fast Mode! Recognition like this reflects the work our team puts in and the trust our customers place in us. Grateful for both as we head into a new year. #Wallarm #APIsecurity

Vote! How fast local AI capabilities will be available via JS API? Client-side is waiting!

The Fragile Lock: Novel Bypasses for SAML Authentication will premiere this Wednesday at 10:20 at Black Hat Europe! I'll show you how to chain XML parser quirks to achieve complete authentication bypasses on multiple popular libraries #BHEU @BlackHatEvents

Alaska embodies the edge: vast, remote, and unforgiving. It demands technology that works where others can't. @AlaskaDOTPF's drone program reduced their critical decision-making window from 28+ hours to real time. Watch how they're reimagining what's possible with Armada at the

This talk is going to be absolutely insane

CVE-2025-66489 - https://t.co/nBfOsZLCJp Authentication Bypass via TOTP Code Presence Another #Pruva reproduction for today https://t.co/x28Stcilan curl -X POST http://localhost:3001/api/auth/callback/credentials \ -H "Content-Type: application/x-www-form-urlencoded" \ -b

APIs are multiplying rapidly in manufacturing, and even a single missed issue can disrupt production or supply chain workflows. A global manufacturer learned this the hard way when an API breach exposed gaps across internal systems. See how they fixed it and tightened their API