PithySecurity.com
XXE (XML External Entity) injection lets attackers read arbitrary files from a server, trigger server-side request forgery, or execute denial-of-service attacks by exploiting how XML parsers process …
Continue Reading about What Is XXE Injection and Why Do XML Parsers Allow It? →
Self-hosted LLM agents like Ollama are not immune to prompt injection just because they run locally. In multi-agent setups, indirect prompt injection through tool outputs, retrieved documents, or …
Continue Reading about How to Defend Local LLM Agents From Prompt Injection →
Both, simultaneously, and Anthropic knows it. Claude Code was weaponized by a Chinese state-sponsored threat actor for a documented espionage campaign in late 2025. Anthropic then launched Claude Code …
Continue Reading about Is Claude Code a Security Tool or Your Biggest Security Risk? →
Yes, and Spectre was just the opening act. Modern CPUs use branch prediction to guess the next instruction before executing it, and that speculative execution leaves microarchitectural traces …
Continue Reading about Can Your CPU’s Branch Predictor Be Weaponized Against You? →
Yes, and most firewalls won't stop it. DNS tunneling encodes stolen data inside legitimate-looking DNS lookup requests, which nearly every network allows outbound by default. Because DNS is a trusted …
Continue Reading about Can Attackers Exfiltrate Data Through DNS Queries? →
Yes, but the native log coverage is thin and requires correlating three separate event sources most organizations never connect. DCOM lateral movement via MMC20.Application and ShellWindows leaves …
Continue Reading about Can Windows Event Logs Detect DCOM Lateral Movement Without Sysmon? →
