Research

12,000 Ollama Instances Exposed: When 'Local-First' Meets the Real World

Ollama is one of the most popular tools for running large language models locally. 100,000+ stars on GitHub, millions of downloads, the default choice …

SeleniumGreed: The RCE That Was Always There

TL;DR

Every Selenium Grid instance deployed with Firefox nodes is vulnerable to unauthenticated remote code execution. Not “was” - is. The …

What We Found Scanning the Internet in 2026

One of our scans recently picked up an open vector database. Inside: over a hundred pages of internal documents related to uranium mining operations. …

Using their own weapons for defense - A SharePoint story

Exploring our adventure while building detection for SharePoint exploitation and vulnerability.

Vinchin Backup & Recovery: CVE-2024-22899 to CVE-2024-22903

Table of Contents:

• Default SSH Root Credentials (CVE-2024-22902)
• Hardcoded Database Credentials and Configuration Flaw (CVE-2024-22901) …