🚨 The EU AI Act is here — are you ready? 🚨 The world’s first comprehensive legal framework for AI will change how businesses design, deploy, and secure AI systems. In our Complete Guide to the EU AI Act, we break down: ✅ Who the Act applies to ✅ The four AI risk categories

Join us for Examining Access Control Vulnerabilities in GraphQL on Tuesday, 2nd September! meetup.com/dotnetsheff/ev…

New post and tool! Attackers can break production AI systems by using image scaling to hide multi-modal prompt injections from users. 🧵for more info on what broke, how this works, and our new tool to try this out yourself

I foresee 2026 as a year of FIDO authentication downgrade attacks. 🪝🐟 I discovered a universal method for downgrading secure MFA methods (passkeys, security keys) to less secure alternatives during phishing attacks. Enjoy the quick demo! 🎬

We’re proud to share that our very own Bogdan took the stage at DEF CON 33, one of the world’s most iconic security conferences. 🎤🔐 In his talk, Bogdan presented his original research on the Feeld Dating App (also featured in major media outlets including The Guardian )

Kicking off tonight's with a talk on API vulnerabilities!

🚨 GIVEAWAY ALERT 🚨 Score a FREE ticket to @OWASP Global AppSec in #WashingtonDC – worth $1,320! 🎟️ To enter: ✅ Follow us ✅ ❤️ + RT this post ✅ Optional: Tag 2 friends = extra entry ⏳ Ends in 7 days – winners announced next week! #Giveaway #AppSec #CyberSecurity #OWASP

We’re proud to share that our very own Bogdan had the pleasure of speaking at BSides Bristol 2025 last week and what an amazing experience it was! His session focused on original security research: “𝗘𝘅𝗮𝗺𝗶𝗻𝗶𝗻𝗴 𝗔𝗰𝗰𝗲𝘀𝘀 𝗖𝗼𝗻𝘁𝗿𝗼𝗹

A brief but insightful version of Ryan Barnett (B0N3) and Angel Hacker's presentation, packed with great knowledge I missed at DEF CON! youtu.be/-b1sIZhOZbk

NEED YOUR HELP! My Friend/Teacher Soroush (Soroush Dalili) Is looking for a new company to join, you know him as the .NET-God, the guy who has popped exchange, sharepoint, has maintained ysoserial_.net for years, contributed to the exploitation scene numerous times, taught all of you

Had a great time attending the OWASP London Meetup hosted at the Sage UK office! It was an excellent evening full of insights, discussions, and knowledge-sharing about application security and LLM security. Huge thanks to the speakers: Matias Madou, Dominic Whewell, and

Looooooads of DEF CON 33 vids just came online. Enjoy. youtube.com/playlist?list=…

Burp Automator - Tool that uses the Burp Suite API to automate scanning. Can be used to setup DAST scanning. github.com/tristanlatr/bu… Credits to the author of the tool. #appsec #infosec #cybersecurity

Yesterday, I had the pleasure of speaking at OWASP Porto , an incredible event bringing together passionate professionals and researchers dedicated to advancing application security. A big thank you to the OWASP Porto organizers, Wilberto Filho,Pedro Fortuna and Nuno Pereira for

We’re proud to announce that FORTBRIDGE is a sponsor of BSides Dresden 2025! BSides events bring together some of the brightest minds in cybersecurity, from ethical hackers and researchers to defenders and innovators - all dedicated to advancing security through shared knowledge

Early career and researchers, we want you on stage at BSides Galway. Got a thesis, project, tool, dataset or CTF story in security? Turn it into a 20–30 min talk. CFP closes 30 Nov. Submit here: sessionize.com/bsides-galway-…

Exactly what we were discussing at coffee this morning. #FFS