pull down to refresh

New Attack Bypasses HTTP/2 Security for Arbitrary Cross-Site Scriptingcybersecuritynews.com/http-2-security-arbitrary-cross-site-scripting/
31 sats \ 0 comments \ @ch0k1 29 May security
related
Improving Browser Security with CSP (2011)blog.twitter.com/engineering/en_us/a/2011/improving-browser-security-with-csp
757 sats \ 3 comments \ @ek 9 Feb 2024 security
Meet Declarative Web Pushwebkit.org/blog/16535/meet-declarative-web-push/
1558 sats \ 6 comments \ @sox 30 Mar devs
Just fucking use HTMLjustfuckingusehtml.com/
2649 sats \ 31 comments \ @k00b 14 May devs
Critical Next.js Vulnerability Allows Attackers Bypass Middleware Authorizationthehackernews.com/2025/03/critical-nextjs-vulnerability-allows.html
204 sats \ 2 comments \ @ch0k1 25 Mar security
Can you spot the XSS vulnerability?
646 sats \ 29 comments \ @ek 15 Mar security
Nostrichat-extension a nostr live chat anywhere
4350 sats \ 7 comments \ @gzuuus_ 12 Apr 2023 nostr
Security Standards and Name Changes in the Browser Warstim.dierks.org/2014/05/security-standards-and-name-changes-in.html
285 sats \ 1 comment \ @ek 30 Apr security
Mastodon Critical vulnerability: Remote user impersonation and takeovergithub.com/mastodon/mastodon/security/advisories/GHSA-3fjr-858r-92rw
899 sats \ 0 comments \ @kristapsk 2 Feb 2024 security
New epoch: reassess your security model
1265 sats \ 6 comments \ @redlight_pleb 29 Aug 2024 security
Web application security: top 10 vulnerabilities
560 sats \ 4 comments \ @Azik 3 Apr 2024 security
"Web Environment Integrity" is an all-out attack on the free Internetwww.fsf.org/blogs/community/web-environment-integrity-is-an-all-out-attack-on-the-free-internet
1716 sats \ 8 comments \ @beorange 28 Jul 2023 tech
Web Browser telemetry - 2025 editionsizeof.cat/post/web-browser-telemetry-2025-edition/
430 sats \ 2 comments \ @k00b 21 Apr privacy
The Worst Hacks of 2024www.wired.com/story/worst-hacks-2024/
405 sats \ 0 comments \ @supratic 26 Dec 2024 security
HTTP/1 to HTTP/2 to HTTP/3
386 sats \ 0 comments \ @Azik 8 Apr 2024 devs
Over 4,000 backdoors hijacked by registering expired domainswww.bleepingcomputer.com/news/security/over-4-000-backdoors-hijacked-by-registering-expired-domains/
311 sats \ 4 comments \ @ch0k1 11 Jan security
New details reveal how hackers hijacked 35 Google Chrome extensionswww.bleepingcomputer.com/news/security/new-details-reveal-how-hackers-hijacked-35-google-chrome-extensions/
269 sats \ 1 comment \ @StillStackinAfterAllTheseYears 3 Jan security
Hacking campaign compromised at least 16 Chrome browser extensionssecurityaffairs.com/172491/hacking/chrome-browser-extensions-compromise.html
166 sats \ 0 comments \ @nym 1 Jan security
New HTTP/3 Standard Removes TCP from the Internet Stack
511 sats \ 7 comments \ @nullcount 25 Jul 2022 bitcoin
LLM Agents can Autonomously Hack Websitesarxiv.org/pdf/2402.06664.pdf
464 sats \ 2 comments \ @doofus 25 Feb 2024 security
Critical Unauthenticated RCE Flaw Impacts all GNU/Linux systemscybersecuritynews.com/critical-unauthenticated-rce-flaw/
349 sats \ 1 comment \ @ch0k1 24 Sep 2024 news
Google fixes one more Chrome zero-day exploited at Pwn2Ownwww.bleepingcomputer.com/news/security/google-fixes-one-more-chrome-zero-day-exploited-at-pwn2own/
106 sats \ 0 comments \ @ch0k1 4 Apr 2024 security