← Find more feeds

blog.trailofbits.com

Trail of Bits Blog

Get the latest updates from Trail of Bits Blog directly as they happen.

Follow now 629 followers

Latest posts

Last updated about 10 hours ago

Deceiving users with ANSI terminal codes in MCP

about 10 hours ago

This post describes attacks using ANSI terminal code escape sequences to hide...

Read full

How MCP servers can steal your conversation history

6 days ago

This post explains how malicious MCP servers can exploit the Model Context...

Read full

Jumping the line: How MCP servers can attack you before you ever use them

8 days ago

This post is about a critical vulnerability in the Model Context Protocol...

Read full

Kicking off AIxCC’s Finals with Buttercup

8 days ago

Trail of Bits’ Cyber Reasoning System “Buttercup” is competing in DARPA’s AI...

Read full

Sneak peek: A new ASN.1 API for Python

11 days ago

We’re working on integrating an ASN.1 API into PyCA Cryptography built on...

Read full

Mitigating ELUSIVE COMET threats: Protecting against Zoom remote control attacks

13 days ago

This post describes a sophisticated social engineering campaign using Zoom’s remote control...

Read full

Neutralizing ELUSIVE COMET Zoom Remote Control Attacks

13 days ago

This post describes a sophisticated social engineering campaign using Zoom’s remote control...

Read full

Mitigating ELUSIVE COMET Zoom remote control attacks

13 days ago

This post describes a sophisticated social engineering campaign using Zoom’s remote control...

Read full

Introducing a new section on snapshot fuzzing for kernel-level testing in the Testing Handbook

20 days ago

Snapshot Fuzzing enables security engineers to effectively test software that is traditionally...

Read full

Benchmarking OpenSearch and Elasticsearch

about 2 months ago

This post concludes a four-month performance study of OpenSearch and Elasticsearch search...

Read full

Continuous TRAIL

about 2 months ago

You and your team should incrementally update your threat model as your...

Read full

Threat modeling the TRAIL of Bits way

2 months ago

In this blog, we’ll talk about our threat modeling process, TRAIL, which...

Read full

Or log in

Everything you care about in one place

Trail of Bits Blog

Latest posts

Deceiving users with ANSI terminal codes in MCP

How MCP servers can steal your conversation history

Jumping the line: How MCP servers can attack you before you ever use them

Kicking off AIxCC’s Finals with Buttercup

Sneak peek: A new ASN.1 API for Python

Mitigating ELUSIVE COMET threats: Protecting against Zoom remote control attacks

Neutralizing ELUSIVE COMET Zoom Remote Control Attacks

Mitigating ELUSIVE COMET Zoom remote control attacks

Introducing a new section on snapshot fuzzing for kernel-level testing in the Testing Handbook

Benchmarking OpenSearch and Elasticsearch

Continuous TRAIL

Threat modeling the TRAIL of Bits way

Try Feeder for free