Sign in Subscribe
CyberDesserts
Learn Cybersecurity By Doing

Featured articles

Building a Second Brain for Cybersecurity Work

Building a Second Brain for Cybersecurity Work

Cybersecurity Career Path: Complete Guide for 2026

Cybersecurity Career Path: Complete Guide for 2026

Cybersecurity Skills Roadmap: Zero to Job-Ready

Cybersecurity Skills Roadmap: Zero to Job-Ready

Latest

05
Feb
OpenClaw - open-source AI agent framework

OpenClaw Malicious Skills: What Security Teams Must Know

Nearly 900 malicious skills have been identified on ClawHub, the public registry for the OpenClaw AI agent framework (Bitdefender, 2026)
5 min read
04
Feb
Notepad++ update server compromise

Notepad++ Compromised for 6 Months: Check Your Version Now

Notepad++ update servers were compromised from June through December 2025 by a Chinese state-sponsored threat group. The attackers hijacked the
6 min read
01
Feb
Cybersecurity Best Practices

10 Cybersecurity Best Practices That Prevent Breaches

Sixty percent of breaches still involve human actions (Verizon DBIR, 2025). Organisations know they should train employees, enforce MFA, and
8 min read
29
Jan
Fortinet critical SSP bypass

CVE-2026-24858: The Fortinet Patch That Wasn't

Organisations running the latest FortiOS firmware, fully patched against December's critical SSO bypass, still got compromised in January.
5 min read
28
Jan
Worldleaks Cybercrime group and Nike Breach

Who is WorldLeaks? The Ransomware Group Behind Nike Breach

WorldLeaks is a cybercrime group that has claimed over 116 victims since January 2025, including Nike, Dell, and UBS. Unlike
8 min read
24
Jan
Threat Actor Tools

Threat Actor Tools: The Complete Guide for Defenders

Eighty-four percent of high-severity cyberattacks in 2024 leveraged legitimate system tools rather than custom malware (Vectra AI). Cobalt Strike appeared
12 min read
17
Jan
AI Learning Assistant

Why I Built an AI Cybersecurity Learning Assistant

Learning cybersecurity is overwhelming. There are thousands of courses, certifications, tools, and frameworks competing for your attention. Most beginners spend
4 min read
01
Jan
ClickFix Attacks: How They Work and How to Stop Them

ClickFix Attacks: How They Work and How to Stop Them

Updated February 2026: Added ClickFix-as-a-Service (ErrTraffic), DNS TXT record delivery (KongTuke), CrashFix browser extension variant, ConsentFix OAuth hijacking, expanded detection
16 min read
01
Jan
Vibe coding

When AI Writes the Code, Who Catches the Bugs?

In December 2025, Boris Cherny, creator of Anthropic's Claude Code, revealed he hadn't opened an IDE
6 min read
28
Dec
Hacktivist DDoS Attacks: A Defender's Guide

Hacktivist DDoS Attacks: A Defender's Guide

NoName057(16) has targeted 3,700+ hosts in thirteen months. Their playbook is predictable: strike during elections, holidays, and geopolitical flashpoints. Here's what the La Poste attack reveals about defending against hacktivist DDoS.
8 min read