Conditions for today’s curl CVE releases (CVE-2023-38545, CVE-2023-38546) and why you’ve got to say ‘NO’ to WAF patching them. For the good of all mankind.
Some ‘Web 3.0’ developments that may be of interest to hackers.
Contemporary decentralized file storage seems like an unrealized threat to copyright enforcers and brand-protectors.
Information on my 2021 OWASP Global AppSec US talk ‘How to Thwart Malicious Automation and Kick Bot Butt for $0’.
Despite what vendors will tell you, defending against malicious automation and ‘bots’ takes a multi-pronged approach.