CVE-2026-3854: How a Trusted Internal Header Turned `git push` into RCE on GitHub
Wiz Research disclosed a command injection in GitHub's internal git pipeline that let any authenticated user reach RCE with a…
Pod Security and Container Escape Surface in Shared Kubernetes Clusters
A practitioner's view of the realistic container escape surface in multi-tenant Kubernetes — kernel boundaries, runtime gaps, and the controls…
MCP Security: The New Attack Surface Hiding in Your Agentic AI Stack
The Model Context Protocol went from niche spec to ubiquitous integration layer in eighteen months. The threat model did not…
Cyber Risk Assessments
A cyber risk assessment is a process of identifying, analyzing, and evaluating the security risks that an organization faces. It…
Zero Trust Security
Zero trust security is a cybersecurity model that assumes that no user or device can be inherently trusted. It requires…