Heykuki News
Top
New
Best
Ask
Show
Jobs
Toggle theme
Login
Top
New
Best
Ask
Show
Jobs
1.
▲
Do you have a file matching /Library/Application Support/t*/*O*/*?
3 points
ecares
2 years ago
2 comments
2.
▲
Investigating a backdoored PyPI package targeting FastAPI applications
(securitylabs.datadoghq.com)
141 points
ecares
4 years ago
32 comments
3.
▲
AWS CloudTrail vulnerability: Undocumented API allows CloudTrail bypass
(securitylabs.datadoghq.com)
13 points
2bluesc
3 years ago
discuss
4.
▲
Investigating a backdoored PyPI package targeting FastAPI applications
(securitylabs.datadoghq.com)
12 points
christophetd
4 years ago
discuss
5.
▲
Git vulnerable to arbitrary file write on non-Windows systems
(securitylabs.datadoghq.com)
6 points
mooreds
10 months ago
discuss
6.
▲
A Confused Deputy Vulnerability in AWS AppSync
(securitylabs.datadoghq.com)
6 points
gdgtfiend
4 years ago
discuss
7.
▲
Supply-Chain Firewall: Protecting Developers from Malicious Open Source Packages
(securitylabs.datadoghq.com)
5 points
jjguy
a year ago
discuss
8.
▲
The Shai-Hulud 2.0 npm worm: analysis, and what you need to know
(securitylabs.datadoghq.com)
4 points
saikatsg
6 months ago
2 comments
9.
▲
IDE-SHEPHERD: Your shield against threat actors lurking in your IDE
(securitylabs.datadoghq.com)
4 points
tanelpoder
4 months ago
1 comment
10.
▲
React2Shell (CVE-2025-55182): A Log4Shell Moment for the Front End Ecosystem
(securitylabs.datadoghq.com)
4 points
birdculture
6 months ago
1 comment
11.
▲
GuardDog (Datadog open source Supply chain security) 1.0 with NPM support
(securitylabs.datadoghq.com)
4 points
ecares
3 years ago
discuss
12.
▲
RedisRaider: Weaponizing misconfigured Redis to mine cryptocurrency at scale
(securitylabs.datadoghq.com)
3 points
nateb2022
a year ago
discuss
13.
▲
Cloud Breaches of 2022
(securitylabs.datadoghq.com)
3 points
christophetd
3 years ago
discuss
14.
▲
Finding malicious PyPI packages through static code analysis: Meet GuardDog
(securitylabs.datadoghq.com)
3 points
kungfudoi
4 years ago
discuss
15.
▲
Demystifying the OpenSSL punycode vulnerability and exploitation walk-through
(securitylabs.datadoghq.com)
3 points
christophetd
4 years ago
discuss
16.
▲
Tracing the March 2026 TeamPCP supply chain campaign
(securitylabs.datadoghq.com)
2 points
scapecast
2 months ago
discuss
17.
▲
I Spy: Escalating to Entra ID's Global Admin with a First-Party App
(securitylabs.datadoghq.com)
2 points
kidbomb
a year ago
discuss
18.
▲
WhoAMI: A cloud image name confusion attack
(securitylabs.datadoghq.com)
2 points
ericjsilva
a year ago
discuss
19.
▲
Malicious PyPI packages targeting highly specific macOS machines
(securitylabs.datadoghq.com)
2 points
ecares
2 years ago
discuss
20.
▲
Container security fundamentals part 2
(securitylabs.datadoghq.com)
2 points
lockedinspace
3 years ago
discuss
21.
▲
Partial bypass of the login rate limiting in the AWS Console
(securitylabs.datadoghq.com)
2 points
christophetd
3 years ago
discuss
22.
▲
A 2025 look at real-world Kubernetes version adoption
(securitylabs.datadoghq.com)
1 point
hasheddan
7 months ago
discuss
23.
▲
Enumerating AWS the quiet way: CloudTrail-free discovery with Resource Explorer
(securitylabs.datadoghq.com)
1 point
DigitalDataDude
10 months ago
discuss
24.
▲
MUT-8694: An NPM and PyPI Malicious Campaign Targeting Windows Users
(securitylabs.datadoghq.com)
1 point
speckx
2 years ago
discuss
25.
▲
A guide to threat hunting and monitoring in Snowflake
(securitylabs.datadoghq.com)
1 point
mooreds
2 years ago
discuss
26.
▲
Amplified exposure: How AWS flaws made Amplify IAM roles vulnerable to takeover
(securitylabs.datadoghq.com)
1 point
DigitalDataDude
2 years ago
discuss
27.
▲
Amazon ECS is the new EC2 for crypto mining
(securitylabs.datadoghq.com)
1 point
christophetd
2 years ago
discuss
28.
▲
Escaping containers using the Dirty Pipe vulnerability
(securitylabs.datadoghq.com)
1 point
williamzeng0
3 years ago
discuss
29.
▲
A Confused Deputy Vulnerability in AWS AppSync
(securitylabs.datadoghq.com)
1 point
appwiz
4 years ago
discuss