DEV Community

Security

Hopefully not just an afterthought!

Posts

👋 Sign in for the ability to sort posts by relevant, latest, or top.
Notification Hijacking: How WhatsApp and Slack Content Could Weaponize Google Gemini

Notification Hijacking: How WhatsApp and Slack Content Could Weaponize Google Gemini

1
Comments
5 min read
Hidden in Plain Sight: How Notification Prompt Injection Can Hijack Your AI Assistant

Hidden in Plain Sight: How Notification Prompt Injection Can Hijack Your AI Assistant

1
Comments
4 min read
What the ChatGPT for Sheets data-exfiltration bug teaches about AI security

What the ChatGPT for Sheets data-exfiltration bug teaches about AI security

Comments
5 min read
How we architected a FedRAMP Moderate boundary on AWS GovCloud for an AI SaaS

How we architected a FedRAMP Moderate boundary on AWS GovCloud for an AI SaaS

Comments
5 min read
AI-Native Network Security: Real-Time Threat Detection at the Edge

AI-Native Network Security: Real-Time Threat Detection at the Edge

Comments
8 min read
The whole payments industry now co-signs the agent payment rail. Who red-teams it?

The whole payments industry now co-signs the agent payment rail. Who red-teams it?

5
Comments 1
2 min read
CTEM covers your whole attack surface. Except the part your AI agents use.

CTEM covers your whole attack surface. Except the part your AI agents use.

1
Comments
3 min read
How a Fake Job-Interview Repo Tried to Steal My Keys (and How I Caught It)

How a Fake Job-Interview Repo Tried to Steal My Keys (and How I Caught It)

Comments
7 min read
My menu bar clock disappeared after a macOS update. I wrote a 50-line VS Code extension instead of trusting a marketplace one.

My menu bar clock disappeared after a macOS update. I wrote a 50-line VS Code extension instead of trusting a marketplace one.

Comments
5 min read
Ley 21.719: el problema no es solo legal, también es arquitectónico

Ley 21.719: el problema no es solo legal, también es arquitectónico

Comments
7 min read
Rebuilding a HIPAA CI/CD pipeline: signed promotion, OPA admission, and audit-grade evidence

Rebuilding a HIPAA CI/CD pipeline: signed promotion, OPA admission, and audit-grade evidence

Comments
5 min read
Katana BadUSB Exploit, VSCode GitHub Token Stealing, and mimalloc Hardening

Katana BadUSB Exploit, VSCode GitHub Token Stealing, and mimalloc Hardening

Comments
3 min read
SQL Injection Basics: My First Experience Testing SQLi in Real Applications

SQL Injection Basics: My First Experience Testing SQLi in Real Applications

Comments
3 min read
Startup Security Guide & LLM CISO

Startup Security Guide & LLM CISO

3
Comments 1
11 min read
A Deep Dive into Cleaning Persistent WordPress Malware and Hardening the REST API

A Deep Dive into Cleaning Persistent WordPress Malware and Hardening the REST API

Comments
5 min read
👋 Sign in for the ability to sort posts by relevant, latest, or top.