Contributors: Sandeep Kamble, BugDazz Autonomous Pentest AI, Rabit0 ModelPublication Date: March 19, 2026Severity Rating: High (CVSS Score: 8.6)Vulnerability Status: Zero-day at time of discovery While auditing the MariaDB vector store […]

Contributors: Sandeep Kamble, BugDazz Autonomous Pentest AI, Rabit0 ModelPublication Date: March 19, 2026Severity Rating: High (CVSS Score: 8.8)Vulnerability Status: Zero-day at time of discovery A financial services firm was […]

The IPVanish VPN application for macOS contains a critical privilege escalation vulnerability that allows any unprivileged local process to execute arbitrary code as root without user […]

A Critical-severity Unsafe Protocol Handling flaw affecting DeepChat, a popular open-source Electron-based AI chat desktop application. The issue resides in the application’s preload script at src/preload/index.ts, […]

Authors: BugDazz AI Research TeamPublication Date: February 04, 2026Severity Rating: Critical (CVSS Score: 9.4)Vulnerability Status: Zero-day at time of discovery We discovered a critical vulnerability in […]

In the evolving landscape of cybersecurity threats, some of the most dangerous attacks are not the loudest or most dramatic – they are the ones that […]

Cyberattack incidents are exploding. As per Statista, the number of publicly reported data breaches in the USA rose to 3,158 cases in 2024, which is significantly […]

Organizations can develop AI agents using basic programming languages, such as Python, and JavaScript. Agentic frameworks, such as LangChain, LangGraph, and CrewAI connect large language models […]

Pentesting individual components of an AI system – such as the model, APIs, or tools – is necessary but incomplete.  Modern AI architectures are multi-layered ecosystems […]

We are excited to share that Sandeep Kamble, our CTO, will be attending Black Hat USA 2025, one of the most prestigious cybersecurity conferences in the […]

The Department of Defense (DoD) Cloud Computing Security Requirements Guide (SRG) outlines the stringent security requirements required for the use of cloud services within the DoD. […]

Why Secure APIs Matter More Than Ever APIs have become essential in powering modern applications, enabling seamless communication between services. However, without proper security, they can […]

Protecting APIs requires addressing the OWASP Top 10 API vulnerabilities. This guide covers vital threats and provides strategies for bolstering API security to keep sensitive data […]

Before a single exploit is launched or a vulnerability is tested, successful red teaming begins with one critical phase: reconnaissance. This initial step is the cornerstone […]

As 2024 comes to a close, it’s es­sen­tial to re­flect on the im­por­tance of se­cur­ing our dig­i­tal in­fra­struc­ture. Through­out this year, crit­i­cal vul­ner­a­bil­i­ties have been dis­cov­ered […]

As cyber threats evolve rapidly, enhancing the security posture of Linux servers has become a critical priority for organizations. Regular CIS (Center for Internet Security) configuration […]

Organizations are under pressure to innovate and transform digitally. This urgency often leads to Shadow IT systems and applications being used without IT department approval.  While […]

TL;DR:  Discover essential insights and strategies to manage permissions effectively, enhancing the resilience and security of Android applications with practical examples and actionable steps. Introduction As […]