InfoSec Planet
A collection of diverse security content from a curated list of sources. This website also serves as a demo for "worker-planet", the software that powers it.
The Bug Bounty Roadmap I'd Follow If I Started Over (With AI) on 11/05/2026
Is the AI hype helping or killing your bug bounty dreams? #hacking #bugbounty on 11/05/2026
LLMs and Text-in-Text Steganography on 11/05/2026
Turns out that LLMs are really good at hiding text messages in other text messages. [...]
CEO insights: holding the human layer sacred in the AI era by Stijn Jans on 11/05/2026
As founder and CEO of Intigriti, I've spent a long time around hackers, and one thing is clear. The best ones don't fear AI. They use it. What they do fear, however, and what I take seriously as a founder, is a world where platforms quietly replace them under the banner of efficiency. Where their work trains models they don't benefit from, and where the economics of the craft erode while everyon [...]
another liberapay member team twitter account broken Link Hijacking via Expired Twitter Account Link on 09/05/2026
Liberapay disclosed a bug submitted by rox-11: https://hackerone.com/reports/3723002 [...]
Liberapay member team twitter account broken Link Hijacking via Expired Twitter Account Link on 09/05/2026
Liberapay disclosed a bug submitted by rox-11: https://hackerone.com/reports/3721519 [...]
Friday Squid Blogging: Giant Squid Live in the Waters of Western Australia on 08/05/2026
Evidence of them has been found by analyzing DNA in the seawater. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Blog moderation policy. [...]
AI tools are already part of everyday work, approved or not. 🤷 on 08/05/2026
Insider Betting on Polymarket on 08/05/2026
Insider trading is rife on Polymarket: Analysis by the Anti-Corruption Data Collective, a non-profit research and advocacy group, found that long-shot bets—defined as wagers of $2,500 or more at odds of 35 percent or less—on the platform had an average win rate of around 52 percent in markets on military and defense actions. That compares with a win rate of 25 percent across all poli [...]
Private circle can be added to another circle via API despite visibility restriction on 08/05/2026
Nextcloud disclosed a bug submitted by vidang04: https://hackerone.com/reports/3511998 - Bounty: $150 [...]
Files drop share links for end-to-end encrypted folders allowed to drop files into other folders of the share owner on 08/05/2026
Nextcloud disclosed a bug submitted by 0x0doteth: https://hackerone.com/reports/3304830 [...]
View-only guests could see deleted Collectives pages in the trashbin on 08/05/2026
Nextcloud disclosed a bug submitted by yoyomiski: https://hackerone.com/reports/3521434 [...]
Canvas Breach Disrupts Schools & Colleges Nationwide by BrianKrebs on 08/05/2026
An ongoing data extortion attack targeting the widely-used education technology platform Canvas disrupted classes and coursework at school districts and universities across the United States today, after a cybercrime group defaced the service’s login page with a ransom demand that threatened to leak data from 275 million students and faculty across nearly 9,000 educational institutions. A sc [...]
Kubernetes security fundamentals: Secrets on 08/05/2026
A look at how to secure Kubernetes secrets [...]
mbedTLS private-key blob null-termination asymmetry in lib/vtls/mbedtls.c (mbed_load_privkey) on 07/05/2026
curl disclosed a bug submitted by shecantcode2: https://hackerone.com/reports/3717365 [...]
ActiveStorage Disk Service Path Traversal via Custom Blob Key Injection on 07/05/2026
Ruby on Rails disclosed a bug submitted by ksw9722: https://hackerone.com/reports/3580511 [...]
hello, nostalgia on 07/05/2026
Smart Glasses for the Authorities on 07/05/2026
ICE is developing its own version of smart glasses, with facial recognition tied to various databases. [...]
Netwrix achieved a perfect 100% detection rate on 06/05/2026
Critical Deadlock Vulnerability in Monero RPC Leading to Complete Node Paralysis on 06/05/2026
Monero disclosed a bug submitted by rorkh: https://hackerone.com/reports/3307874 [...]
Connection Count Bug in Monero Node Enables Outbound Peer Reset Attack on 06/05/2026
Monero disclosed a bug submitted by yulge: https://hackerone.com/reports/3185083 [...]
wcurl treats some URL operands after -- as curl options on 06/05/2026
curl disclosed a bug submitted by p4p3r_hak: https://hackerone.com/reports/3708482 [...]
Inside H1-21 Lisbon: What We Validated Together on 06/05/2026
Rowhammer Attack Against NVIDIA Chips on 06/05/2026
A new rowhammer attack gives complete control of NVIDIA CPUs. On Thursday, two research teams, working independently of each other, demonstrated attacks against two cards from Nvidia’s Ampere generation that take GPU rowhammering into new—and potentially much more consequential—territory: GDDR bitflips that give adversaries full control of CPU memory, resulting in full system comprom [...]
honorable mention: on 05/05/2026
Out of scope: Improper Input Validation Order on /api-internal/login via password field leads to unnecessary resource consumption on 05/05/2026
PortSwigger Web Security disclosed a bug submitted by bereza4321: https://hackerone.com/reports/3625600 - Bounty: $200 [...]
C/C++ checklist challenges, solved on 05/05/2026
We recently added a C/C++ security checklist to the Testing Handbook and challenged readers to spot the bugs in two code samples: a deceptively simple Linux ping program and a Windows driver registry handler. If you found the inet_ntoa global buffer gotcha or the missing RTL_QUERY_REGISTRY_TYPECHECK flag, nice work. If not, here’s a full walkthrough of both challenges, plus a deep dive into [...]
DarkSword Malware on 05/05/2026
DarkSword is a sophisticated piece of malware—probably government designed—that targets iOS. Google Threat Intelligence Group (GTIG) has identified a new iOS full-chain exploit that leveraged multiple zero-day vulnerabilities to fully compromise devices. Based on toolmarks in recovered payloads, we believe the exploit chain to be called DarkSword. Since at least November 2025, GTIG has [...]
Potential Resource Leak in tool_parsecfg.c at line 279 during fileerror on 05/05/2026
curl disclosed a bug submitted by ravindrasl2026: https://hackerone.com/reports/3710209 [...]
libcurl 8.20.0 incomplete fix for CVE-2026-7168: changing only CURLOPT_PROXYPORT leaks stale Proxy Digest auth to a different proxy on 05/05/2026
curl disclosed a bug submitted by codexxxx: https://hackerone.com/reports/3707747 [...]
MQTT CONNACK Packet Type Bypass leads to RCE via Malicious Broker on 05/05/2026
curl disclosed a bug submitted by orelbn7: https://hackerone.com/reports/3712343 [...]
The AI impact: a triager’s perspective by Eleanor Barlow on 05/05/2026
As part of our recent AI blog series, and in addition to content on ‘How AI is leveraged to enhance the Intigriti platform’, we have provided multiple insights from the Intigriti team on the development and future of AI, how it impacts programs, and the Bug Bounty community. So far, we have explored: ‘How AI is changing vulnerability discovery’, with COO, Ed Parsons. ‘Common AI misconceptions [...]
May the 4th be with you on 04/05/2026
Stop Using AI Connectors Until You Watch This on 04/05/2026
One ChatGPT connector. One email. Full AI agent hijack. #BugBounty #PromptInjection #ai #hacking on 04/05/2026
RatLabs - RootBase CTF - Hack My Machine! on 04/05/2026
Cyber Risk Is Now a Velocity Problem on 04/05/2026
Hacking Polymarket on 04/05/2026
Polymarket is a platform where people can bet on real-world events, political and otherwise. Leaving the ethical considerations of this aside (for one, it facilitates assassination), one of the issues with making this work is the verification of these real-world events. Polymarket gamblers have threatened a journalist because his story was being used to verify an event. And now, gamblers are takin [...]
Introducing Wallarm Middle East Cloud: Built for Data Residency Compliance by Tim Erlin on 04/05/2026
As API and AI adoption grows across the Middle East, so do the expectations around how data is handled. For many organizations operating in this region, it’s not just about securing applications. It’s about doing it in a way that keeps data in-country and aligned with local requirements. Today, we’re introducing the Wallarm Middle East Cloud Point of Presence (POP), giving organizations a n [...]
JHT Course Launch: Web App Junior Analyst! on 02/05/2026
weekend mode on 01/05/2026
A Guide to LNK File Forensics on 01/05/2026
Improper input validation On Exported deep-link handler crashes `FileDisplayActivity` on crafted external URL Denial-of-Service on 01/05/2026
Nextcloud disclosed a bug submitted by khoof: https://hackerone.com/reports/3399016 [...]
A Ransomware Negotiator Was Working for a Ransomware Gang on 01/05/2026
Someone pleaded guilty to secretly working for a ransomware gang as he negotiated ransomware payments for clients. [...]
76% More Valid Vulnerabilities. This Is Not Hype. on 01/05/2026
3 ways custom scan checks turn practitioner knowledge into scalable automation on 01/05/2026
Senior pentesters have a deeply refined intuition about what is vulnerable in an environment. The problem? That expertise is often siloed with an individual and trapped in their notes or Python scripts. [...]
Double fdrop on a socket through sys_netcontrol on 01/05/2026
PlayStation disclosed a bug submitted by slidybat: https://hackerone.com/reports/3320669 - Bounty: $10000 [...]
If you want hackers to hunt on your program on 30/04/2026
Anti-DDoS Firm Heaped Attacks on Brazilian ISPs by BrianKrebs on 30/04/2026
A Brazilian tech firm that specializes in protecting networks from distributed denial-of-service (DDoS) attacks has been enabling a botnet responsible for an extended campaign of massive DDoS attacks against other network operators in Brazil, KrebsOnSecurity has learned. The firm’s chief executive says the malicious activity resulted from a security breach and was likely the work of a compet [...]
NEW! FREE! From 0 - OSCP! [RatCTF] on 30/04/2026
Fast16 Malware on 30/04/2026
Researchers have reverse-engineered a piece of malware named Fast16. It’s almost certainly state-sponsored, probably US in origin, and was deployed against Iran years before Stuxnet: “…the Fast16 malware was designed to carry out the most subtle form of sabotage ever seen in an in-the-wild malware tool: By automatically spreading across networks and then silently manipulating com [...]
Discovery Is Not the Problem. Remediation Is. on 30/04/2026
Josh Mason | Real Folks of Cyber | DITL on 30/04/2026
Exploiting SQL injection vulnerabilities by Ayoub on 30/04/2026
Most assume that SQL injection is a solved problem in today's application landscape, especially with increased awareness of secure coding practices (such as resorting to prepared statements or parameterized queries) and the widespread adoption of NoSQL databases. However, in practice, SQLi vulnerabilities continue to surface in modern applications, often hiding in legacy code components, custom qu [...]
MQTT state machine confusion: PINGRESP/DISCONNECT with non-zero remaining_length dispatches to stale nextstate on 29/04/2026
curl disclosed a bug submitted by fxv_ray_st: https://hackerone.com/reports/3702718 [...]
Extending Ruzzy with LibAFL on 29/04/2026
LibAFL is all the rage in the fuzzing community these days, especially with LLVM’s libFuzzer being placed in maintenance mode. Written in Rust, LibAFL claims improved performance, modularity, state-of-the-art fuzzing techniques, and libFuzzer compatibility. For these reasons, I set out to add LibAFL support to Ruzzy, our coverage-guided fuzzer for pure Ruby code and Ruby C extensions. This gives R [...]
Claude Mythos Has Found 271 Zero-Days in Firefox on 29/04/2026
That’s a lot. No, it’s an extraordinary number: Since February, the Firefox team has been working around the clock using frontier AI models to find and fix latent security vulnerabilities in the browser. We wrote previously about our collaboration with Anthropic to scan Firefox with Opus 4.6, which led to fixes for 22 security-sensitive bugs in Firefox 148. As part of our continued col [...]
Agentic Speed. Zero Human Delay. on 29/04/2026
Use-After-Free in SMB connection reuse (req->path dangling pointer after needle destruction) on 29/04/2026
curl disclosed a bug submitted by nadsec42: https://hackerone.com/reports/3591956 [...]
Negotiate connection reuse with wrong credentials when using CURLAUTH_ANY on 29/04/2026
curl disclosed a bug submitted by anonymous_237: https://hackerone.com/reports/3646072 [...]
Negotiate Authentication Premature on Connection Reuse on 29/04/2026
curl disclosed a bug submitted by sdainard: https://hackerone.com/reports/3666576 [...]
CVE-2026-7168: cross-proxy Digest auth state leak on 29/04/2026
curl disclosed a bug submitted by xkilua: https://hackerone.com/reports/3697719 [...]
CVE-2026-7009: OCSP stapling bypass with Apple SecTrust on 29/04/2026
curl disclosed a bug submitted by 3lcarry: https://hackerone.com/reports/3694390 [...]
CVE-2026-6253: proxy credentials leak over redirect-to proxy on 29/04/2026
curl disclosed a bug submitted by joesephdiver: https://hackerone.com/reports/3669637 [...]
CVE-2026-5545: wrong reuse of HTTP Negotiate connection on 29/04/2026
curl disclosed a bug submitted by quaccws: https://hackerone.com/reports/3642555 [...]
CVE-2026-6276: stale custom cookie host causes cookie leak on 29/04/2026
curl disclosed a bug submitted by arkss: https://hackerone.com/reports/3671818 [...]
CVE-2026-6429: netrc credential leak with reused proxy connection on 29/04/2026
curl disclosed a bug submitted by nobcoderr: https://hackerone.com/reports/3677759 [...]
CVE-2026-4873: connection reuse ignores TLS requirement on 29/04/2026
curl disclosed a bug submitted by bonaire: https://hackerone.com/reports/3621851 [...]
CVE-2026-5773: wrong reuse of SMB connection on 29/04/2026
curl disclosed a bug submitted by osama-hamad: https://hackerone.com/reports/3650689 [...]
Use-after-free in `curl_easy_ssls_export()` during callback re-entrancy on 29/04/2026
curl disclosed a bug submitted by m1llie: https://hackerone.com/reports/3682666 [...]
Heap-buffer-overflow in `Curl_ssl_push_certinfo_len()` sole bounds check is `DEBUGASSERT` on 29/04/2026
curl disclosed a bug submitted by h3zh3z: https://hackerone.com/reports/3684614 [...]
Stack exhaustion in MIME multipart reading with deeply nested subparts on 29/04/2026
curl disclosed a bug submitted by wi110w: https://hackerone.com/reports/3684603 [...]
PS4 BD-J privilege escalation using nested JAR on 29/04/2026
PlayStation disclosed a bug submitted by gezine: https://hackerone.com/reports/3452696 - Bounty: $2500 [...]
6 Lessons Security Leaders Must Learn About AI and APIs by Tim Erlin on 28/04/2026
Most organizations treating AI security as a model problem are defending the wrong layer. Security teams filter prompts, patch jailbreaks, and tune model behavior, which is all necessary work, while the actual attack surface sits largely unexamined underneath. That surface is the API layer: the endpoints AI systems use to retrieve data, call tools, and take action on behalf of users. This isn' [...]
PortSwigger recognized at the Northern Tech Awards 2026. on 28/04/2026
We’re proud to announce that PortSwigger recently won the Overall Judges’ Award at the Northern Tech Awards 2026. The Northern Tech Awards are run by GP Bullhound, the tech advisory and investment fir [...]
The Zero-Day Clock Just Hit 20 Hours on 28/04/2026
What Claude Mythos and Glasswing Mean for Security Leaders on 28/04/2026
The people, the culture, the mission... on 27/04/2026
IBM Aspera HTTP Gateway stores sensitive information in clear text in easily obtainable files which can be read by an unauthenticated user. on 27/04/2026
IBM disclosed a bug submitted by jhon1231248e: https://hackerone.com/reports/3340797 [...]
This hacker made $40,000 using Claude #ai #hacking #bugbounty on 27/04/2026
FAKE Zoom Taxes MALWARE on 27/04/2026
My Friend Made $40,000 Using Claude Code (Here's How) on 27/04/2026
Periodic Testing Is Dead on 27/04/2026
Bypass of Restricted Keyword "Mozilla" in Display Name Field via Unicode Homoglyphs on addons.allizom.org on 27/04/2026
Mozilla disclosed a bug submitted by icecream_23: https://hackerone.com/reports/3279441 - Bounty: $500 [...]
Bypassing Inbox Privacy Settings and Enabling Spam on Pixiv.net on 27/04/2026
pixiv disclosed a bug submitted by aaqibhussain: https://hackerone.com/reports/3100570 - Bounty: $200 [...]
Non-premium user can disable Ads in japanese version of dic.pixiv.net on 27/04/2026
pixiv disclosed a bug submitted by lainkusanagi: https://hackerone.com/reports/3183520 - Bounty: $3000 [...]
Argument Injection in /manage/ssh/ via host parameter leads to sensitive file disclosure on Weblate on 26/04/2026
Weblate disclosed a bug submitted by alexb_616: https://hackerone.com/reports/3518571 [...]
mruby-engine: UAF in MRubyEngine#initialize enables local RCE on 24/04/2026
Shopify disclosed a bug submitted by 0xd0ff9: https://hackerone.com/reports/3679660 [...]
the WORST phishing email i've ever seen on 24/04/2026
Do you know how to hack with AI? 😣 on 24/04/2026
CISO Vulnerability Pressure on 24/04/2026
The Governance Gap: How the EU AI Act Makes API Security a Compliance Imperative by Julian Richter on 24/04/2026
Your legal team just handed you a 400-page document and said "figure out compliance." The EU AI Act is live, your organization falls under its scope, which is broader than many expect. Even non‑EU companies must comply if their AI systems are used, deployed, or produce effects within the European Union. In practice, that means that global organizations building or integrating AI models cannot tre [...]
Chained AI Attacks Go Mainstream on 24/04/2026
Intigriti Bug Bytes #235 - April 2026 🚀 by Ayoub on 24/04/2026
Hi hackers, Welcome to the latest edition of Bug Bytes! In this month's issue, we'll be featuring: Compromising an NPM package with 40M weekly downloads Bypassing Cloudflare WAF for a full ATO 20-part series on exploiting JWT vulnerabilities First Intigriti Bug Bounty Meetup And so much more! Let's dive in! Common misconceptions about bug bounty, debugged Bug bounty still gets misundersto [...]
Incomplete fix for CVE-2026-21637: loadSNI() in _tls_wrap.js lacks try/catch leading to Remote DoS on 23/04/2026
Node.js disclosed a bug submitted by mbarbs: https://hackerone.com/reports/3556769 [...]
AI threats in the wild: The current state of prompt injections on the web on 23/04/2026
Posted by Thomas Brunner, Yu-Han Liu, Moni PandeAt Google, our Threat Intelligence teams are dedicated to staying ahead of real-world adversarial activity, proactively monitoring emerging threats before they can impact users. Right now, Indirect Prompt Injection (IPI) is a top priority for the security community, anticipating it as a primary attack vector for adversaries to target and compromise A [...]
We are the vibe on 23/04/2026
Hackers Stole Your Account (for free) on 23/04/2026
Trailmark turns code into graphs on 23/04/2026
We’re open-sourcing Trailmark, a library that parses source code into a queryable call graph of functions, classes, call relationships, and semantic metadata, then exposes that graph through a Python API that Claude skills can call directly. Install it now: uv pip install trailmark “Defenders think in lists. Attackers think in graphs. As long as this is true, attackers win.” John [...]