# EST BNBDeposit Claim Abuse and Pair Reserve Manipulation On 2026-03-27, the EST / BNBDeposit system on BNB Smart Chain was exploited through a **flash-loan-assisted reward-accounting flaw** in `BNBDeposit`, amplified by **fee-exempt routing and pair-state manipulation** in EST. The attacker borrowed `250,000 WBNB`, built a temporary claim-bearing share in `BNBDeposit` […]

Cisco Talos’ Vulnerability Discovery & Research team recently disclosed a vulnerability in HikVision, as well as 10 in TP-Link, and 19 in Canva. The vulnerabilities mentioned in this blog post have been patched by their respective vendors, all in adherence to Cisco’s third-party vulnerability disclosure policy. For Snort coverage that […]

Reviewed advisories hit a four-year low, malware advisories surged, and CNA publishing grew—here’s what changed and what it means for your triage and response. GitHub published 4,101 reviewed advisories in 2025. This is the **fewest number of reviewed advisories since 2021**.  Does this mean open source is shipping more secure […]

This post explores how modifying a Dell UEFI firmware image at the flash level can fundamentally undermine platform security without leaving visible traces in the firmware interface. By directly patching the firmware and reflashing it to the chip, it was possible to disable protections designed to mitigate DMA-based attacks while […]

# Kubernetes forensics 1/3 : what the container ? In 2025, Synacktiv CSIRT observed a significant rise in attacks and compromises targeting Kubernetes environments. The consensus is that these attacks are bound to keep expanding as much as the technology itself. To better understand how a Kubernetes cluster works and […]

The mysterious unreadable `kernseal.txt` file on PaX’ documentation page has been sitting there since 2003, described as “sealed kernel storage design & implementation.” In 2006, it was described as: > the problem KERNSEAL sets out to solve is kernel self-protection, that is, assuming arbitrary read/write access to kernel memory (by […]

/ **security-research** Public # Salesforce Workbench Disclosure ## Package No package listed ## Affected versions TBD ## Patched versions TBD ## Description Reported to: Salesforce Product: Workbench Date Reported: 2026-03-23 Severity: Redacted until the 90-day disclosure is lifted. 90-day Deadline Expires: 2026-06-21

# Using Markov Models for Password Complexity Estimation in Microsoft Edge Despite recent advancements in adoption of passkeys, passwords remain one of the most widely used authentication mechanisms on the web, yet repeated studies have demonstrated that humans are particularly bad at generating them. Chromium (the open-source project that Edge […]

A high impact bug sometimes needs just one small additional detail before it turns into a practical attack vector. For that reason, when doing vulnerability research, I flag even errors or odd behaviors that look irrelevant at first. In some cases, those findings become the missing puzzle piece of a […]

Tesla runs a bug bounty program that invites researchers to find security vulnerabilities in their vehicles. To participate, I needed the actual hardware, so I started looking for Tesla Model 3 parts on eBay. My goal was to get a Tesla car computer and touchscreen running on my desk, booting […]