AndroxGh0st and the limits of TLS fingerprinting
May 2026
The same scanner toolkit AWS attributed to Interlock ransomware in March 2026 also runs AndroxGh0st credential theft and
Exposed AWS Credentials Are Used in Under 90 Seconds: Findings from AI Infrastructure Research
Exposed AWS credentials were used against live AWS APIs within 67 seconds of being harvested, faster than CloudTrail delivers the first event to a defender.
Is npm Safe? A Practitioner Guide to npm Security in 2026
May 2026
Is npm safe to use in 2026? Yes, but the threat model has shifted. The risk in 2025-
Inside the Scanners Hunting Exposed AI Infrastructure: 72 Hours of Findings
460 source IPs, 11,643 requests, 72 hours. The AI-aware operators in the data enumerated; the exploitation observed targeted credentials, not AI capabilities.
Cybersecurity Compliance Career Guide 2026
May 2026
Most career advice treats compliance as the boring corner of cybersecurity. Twenty years working with enterprise security teams
Is Cybersecurity a Good Career in 2026? The Honest Reality
May 2026
Cybersecurity is still a good career in 2026 but the market is far more uneven than most career
Fable 5 Is Frozen and Glasswing Still Leaves Two Problems Open
Last updated: 30 June 2026 | What's changed: both models were suspended on 12 June under a US export
Scattered Spider: The Attack Chain, Hard Lessons, and What Comes Next
April 2026
Scattered Spider is a financially motivated cybercrime collective responsible for some of the most disruptive attacks in recent
Axios NPM Supply Chain Attack (2026): What Happened and What to Do
On March 31, 2026, two malicious versions of the axios npm package were published using a compromised maintainer account. The
Information Security Metrics for Executives: How to Report Cyber Risk to the Board
April 2026
The gap between how security teams measure their work and how boards evaluate organisational risk is not a