Black Hat Stories

American Stories

Black Hat stories

Major vendors admit browser attacks bypass secure gateways

Major SASE vendors admit Secure Web Gateways cannot block Last Mile Reassembly attacks, which let malware bypass defences by assembling inside browsers.

By Jed Nykolle Harme • 4 min read • Fri, 19th Sep 2025

Global Stories

Black Hat stories

Data Protection

Geordie AI launches Beam to rein in risky AI agents

Geordie AI unveils Beam, a real-time governance tool to curb risky autonomous agents as security leaders flag them as a new attack vector.

By Sofiah Nichole Salivio • 3 min read • Tue, 24th Mar 2026

Malware

BADIIS malware hijacks IIS servers for covert SEO fraud

BADIIS malware is hijacking over 1,800 IIS servers worldwide, quietly boosting illicit gambling and crypto phishing sites via poisoned SEO.

By Sean Mitchell • 4 min read • Fri, 13th Feb 2026

Ransomware

Black Hat to debut cyber war room documentary in Vegas

Black Hat will premiere Semperis documentary Midnight in the War Room in Las Vegas, spotlighting the human cost of cyber conflict.

By Sean Mitchell • 4 min read • Thu, 15th Jan 2026

Encryption

Keeper Security grows PAM platform & global presence

Keeper Security tops four million paid users as it expands its unified PAM platform globally and earns fresh analyst and industry recognition.

By Catherine Knowles • 7 min read • Sat, 27th Dec 2025

Firewalls

Backslash unveils MCP Security to safeguard AI coding

Backslash launches MCP Security to monitor AI coding agents on developer machines, tackling data leaks, prompt injection and privilege abuse.

By Catherine Knowles • 5 min read • Thu, 11th Dec 2025

Malware

SquareX warns browser flaws now key threat to firms

SquareX research finds fundamental flaws in browsers and AI tools, warning they have become attackers' main route into corporate networks.

By Sean Mitchell • 5 min read • Thu, 11th Dec 2025

Data Protection

AI, compliance and security trends for 2026

AI agents, real-time compliance and deep fake cyber attacks will define 2026 as trust becomes the key battleground for organisations.

By Orca Opti • 5 min read • Wed, 10th Dec 2025

Malware

Cybercrime crackdown disrupts malware, exposes AI attack risks

Law enforcement and cybersecurity firms have disrupted major malware networks amid rising risks from AI-driven cyberattacks and escalating supply chain breaches globally.

By Sean Mitchell • 6 min read • Tue, 18th Nov 2025

Application Security

SquareX to unveil browser, passkey flaws at Black Hat, DEF CON

SquareX will reveal new browser security and passkey vulnerabilities at Black Hat USA and DEF CON 33, highlighting critical gaps in current protections.

By Jed Nykolle Harme • 4 min read • Tue, 5th Aug 2025

Phishing

SquareX unveils field manual to tackle rising browser threats

SquareX launches The Browser Security Field Manual, a guide tackling rising browser cyber threats with insights from CISOs at Arista Networks, Dyson and Expedia.

By Jed Nykolle Harme • 3 min read • Fri, 18th Jul 2025

DevOps

Exclusive: SquareX's Audrey Adeline on why the browser is 'the new endpoint'

Audrey Adeline of SquareX warns the browser, where 80% of device time is spent, is the new cybersecurity battleground in an evolving threat landscape.

By Melania Watson • 5 min read • Tue, 10th Jun 2025

Data Protection

Researchers reveal data splicing attacks bypassing DLP

SquareX reveals data splicing attacks exploiting browser flaws to bypass major DLP solutions, risking corporate data loss and intellectual property theft.

By Sean Mitchell • 3 min read • Thu, 17th Apr 2025

Application Security

Endor Labs unveils tools to enhance OSS security efforts

Endor Labs unveiled Upgrade Impact Analysis and Endor Magic Patches at Black Hat, offering new tools to tackle OSS security risks and accelerate vulnerability remediation.

By Shannon Williams • 3 min read • Tue, 20th Aug 2024