A leading provider of #offensivesecurity solutions & contributor to the #infosec community. #pentesting #hackinghttps://bsky.app/profile/bishopfox.bsky.socialhttps://bsky.app/profile/bishopfox.bsky.social/post/3mlvqfttmfc2rSenior Operator I Tony West shares what it was actually like using frontier AI models to build Joro, a collaborative web exploitation framework for offensive security teams, including where the models accelerated development and where they completely broke things.15 May 2026 16:20 +0000at://did:plc:bmd7dwf5akrptlhxnirxttyp/app.bsky.feed.post/3mlvqfttmfc2rhttps://bsky.app/profile/bishopfox.bsky.social/post/3mlszvhlp5s2zHappening today: Join AIMap creator Aashiq Ramachandran for a demo exploring how publicly exposed AI systems can be discovered, fingerprinted, scored, and tested in real time. We’ll walk through what attackers can see and what defenders should be paying attention to!14 May 2026 14:32 +0000at://did:plc:bmd7dwf5akrptlhxnirxttyp/app.bsky.feed.post/3mlszvhlp5s2zhttps://bsky.app/profile/bishopfox.bsky.social/post/3mlr7blovt22z“What if consumers were never the real target?” On the latest Initial Access Sergio Villegas and John Untz discussed the recent Daemon Tools supply chain compromise and why average users may have simply been collateral damage.13 May 2026 21:03 +0000at://did:plc:bmd7dwf5akrptlhxnirxttyp/app.bsky.feed.post/3mlr7blovt22zhttps://bsky.app/profile/bishopfox.bsky.social/post/3mlbzqzkoy22wHow do you spot AI-generated code? Start with the comments—comments that explain every tiny thing in excruciating detail—whether you asked for it or not. Oh, and the em-dashes. Sr. Managing Operator Richard Brown explains.07 May 2026 20:14 +0000at://did:plc:bmd7dwf5akrptlhxnirxttyp/app.bsky.feed.post/3mlbzqzkoy22whttps://bsky.app/profile/bishopfox.bsky.social/post/3ml7c2cqe322bBishop Fox researchers reproduced CVE-2026-42208, a critical pre-authentication SQL injection in LiteLLM’s proxy. Exploitation was observed in the wild roughly 36 hours after disclosure. If you’re running LiteLLM, upgrade to 1.83.7+.06 May 2026 18:04 +0000at://did:plc:bmd7dwf5akrptlhxnirxttyp/app.bsky.feed.post/3ml7c2cqe322bhttps://bsky.app/profile/bishopfox.bsky.social/post/3ml4yrncs6s2gStealth and flashy exploit chains are cool, but they don’t always translate to better outcomes for your org. Billy Giles is examining that tradeoff this weekend at Hack Space Con!05 May 2026 20:13 +0000at://did:plc:bmd7dwf5akrptlhxnirxttyp/app.bsky.feed.post/3ml4yrncs6s2ghttps://bsky.app/profile/bishopfox.bsky.social/post/3mkzwit2awk2tStay on target...04 May 2026 14:55 +0000at://did:plc:bmd7dwf5akrptlhxnirxttyp/app.bsky.feed.post/3mkzwit2awk2thttps://bsky.app/profile/bishopfox.bsky.social/post/3mksqtmvlqc2xWe turned a vulnerable AI support agent into a CTF. Welcome to MCP security.01 May 2026 18:25 +0000at://did:plc:bmd7dwf5akrptlhxnirxttyp/app.bsky.feed.post/3mksqtmvlqc2xhttps://bsky.app/profile/bishopfox.bsky.social/post/3mkarzo7bwc2rSr. Managing Operator Richard Brown breaks down NIST’s shift in CVE enrichment. Vulnerability volume is increasing, while enrichment is becoming more selective, often focused on government priorities. But that doesn’t align with every organization's risk. https://bishopfox.com/blog/understanding-the-cve-ecosystem-and-nists-changing-role24 Apr 2026 14:58 +0000at://did:plc:bmd7dwf5akrptlhxnirxttyp/app.bsky.feed.post/3mkarzo7bwc2rhttps://bsky.app/profile/bishopfox.bsky.social/post/3mjzsbfd77s2jClaude Mythos Preview signals a shift in security: AI can now discover and chain vulnerabilities into real exploits with minimal human input. The gap between discovery and exploitation is shrinking and most teams aren’t built for that speed.21 Apr 2026 20:14 +0000at://did:plc:bmd7dwf5akrptlhxnirxttyp/app.bsky.feed.post/3mjzsbfd77s2jhttps://bsky.app/profile/bishopfox.bsky.social/post/3mjpg2kkgf22xWe’ll be at #SparkCon this weekend ⚡️ Come talk real-world threats, meet the team, and grab some swag: https://bishopfox.com/events/meet-bishop-fox-at-sparkcon-202617 Apr 2026 17:08 +0000at://did:plc:bmd7dwf5akrptlhxnirxttyp/app.bsky.feed.post/3mjpg2kkgf22xhttps://bsky.app/profile/bishopfox.bsky.social/post/3mjmurerwpc25AI is supposed to “automate” security, but what does that actually mean? That's what we're exploring with a panel of AI security experts today at 2 p.m. ET Save a seat: https://bishopfox.com/resources/ai-security-in-the-age-of-project-glasswing-gpt-5-4-cyber16 Apr 2026 16:54 +0000at://did:plc:bmd7dwf5akrptlhxnirxttyp/app.bsky.feed.post/3mjmurerwpc25https://bsky.app/profile/bishopfox.bsky.social/post/3mji3aonvhk2iGood security conversations shift to what teams do next. AVP of Consulting Zach Moreno on how evolving threats are changing priorities, especially around external attack surface and dependency risk. Full episode: https://bishopfox.com/resources/project-glasswing-ai-vulnerability-discovery-exploit14 Apr 2026 19:06 +0000at://did:plc:bmd7dwf5akrptlhxnirxttyp/app.bsky.feed.post/3mji3aonvhk2ihttps://bsky.app/profile/bishopfox.bsky.social/post/3mj65z5jhv22iICYMI: FortiClient EMS Auth Bypass (CVE-2026-35616) Unauthenticated attackers can bypass cert-based auth via header spoofing + weak validation. Exploitation confirmed in the wild. Patch now or upgrade to 7.4.7. We also released a safe detection tool: https://bishopfox.com/blog/api-authentication-bypass-in-forticlient-ems-7-4-5-7-4-6-cve-2026-3561610 Apr 2026 20:29 +0000at://did:plc:bmd7dwf5akrptlhxnirxttyp/app.bsky.feed.post/3mj65z5jhv22ihttps://bsky.app/profile/bishopfox.bsky.social/post/3mj36znj4a227The Axios supply chain attack is a reminder that trusted software can still introduce risk. Malicious package versions were distributed through normal install workflows, leading to remote access and potential compromise.09 Apr 2026 16:09 +0000at://did:plc:bmd7dwf5akrptlhxnirxttyp/app.bsky.feed.post/3mj36znj4a227https://bsky.app/profile/bishopfox.bsky.social/post/3miyuwruz2k2c🔴 LIVE NOW Social engineering isn’t just phishing anymore. It's evolved to deepfakes, voice cloning, and real-time impersonation. Join Senior Security Consultant II @alethe.bsky.social in Tactics of Deception: Protecting Trust and Purpose: https://bishopfox.com/resources/tactics-of-deception-protecting-trust-and-purpose08 Apr 2026 18:04 +0000at://did:plc:bmd7dwf5akrptlhxnirxttyp/app.bsky.feed.post/3miyuwruz2k2chttps://bsky.app/profile/bishopfox.bsky.social/post/3miwnqdgakk2qA fake Zoom call. A quick “update.” And the user does the rest.07 Apr 2026 20:49 +0000at://did:plc:bmd7dwf5akrptlhxnirxttyp/app.bsky.feed.post/3miwnqdgakk2qhttps://bsky.app/profile/bishopfox.bsky.social/post/3mim2fdviwc2lPart 1 gave the foundation. Part 2 goes deeper. Inside Cirro: Schemas and Extensible Identity Graphs April 7 | 2 p.m. ET Leron Gray breaks down how Cirro approaches extensibility and identity risk at scale. Register: https://bishopfox.com/resources/workshop-series-cirro03 Apr 2026 15:37 +0000at://did:plc:bmd7dwf5akrptlhxnirxttyp/app.bsky.feed.post/3mim2fdviwc2lhttps://bsky.app/profile/bishopfox.bsky.social/post/3mierfhldgc26🔴 Happening now: Mapping Attack Paths in Azure We’re live with Part 1 of our Inside Cirro workshop. If you’re looking to better understand how identity, roles, and resources connect and how attack paths actually form in Azure join us now. You can still jump in: https://bishopfox.com/resources/workshop-series-cirro31 Mar 2026 18:07 +0000at://did:plc:bmd7dwf5akrptlhxnirxttyp/app.bsky.feed.post/3mierfhldgc26https://bsky.app/profile/bishopfox.bsky.social/post/3micgqdqpnc27Happening Tomorrow: Mapping Attack Paths in Azure In Part 1 of our Inside Cirro workshop series, Leron Gray walks through how graph-based modeling helps uncover: • Attack paths • Privilege propagation • Identity-driven risk in Azure and Entra ID30 Mar 2026 19:51 +0000at://did:plc:bmd7dwf5akrptlhxnirxttyp/app.bsky.feed.post/3micgqdqpnc27https://bsky.app/profile/bishopfox.bsky.social/post/3mhyh7z3pck2bWe’re launching a new open-source tool, Cirro, along with a two-part workshop series on how it works! The sessions cover mapping attack paths in Azure and modeling identity relationships to better understand risk. March 31 & April 7 | 2 p.m. ET26 Mar 2026 20:33 +0000at://did:plc:bmd7dwf5akrptlhxnirxttyp/app.bsky.feed.post/3mhyh7z3pck2bhttps://bsky.app/profile/bishopfox.bsky.social/post/3mhyecteqyc2b🚨 New research from Bishop Fox: CVE-2026-25075 An integer underflow in strongSwan’s EAP-TTLS parser allows unauthenticated attackers to crash VPN services. The vulnerability affects versions going back over 15 years. Upgrade to 6.0.5 or disable EAP-TTLS.26 Mar 2026 19:41 +0000at://did:plc:bmd7dwf5akrptlhxnirxttyp/app.bsky.feed.post/3mhyecteqyc2bhttps://bsky.app/profile/bishopfox.bsky.social/post/3mht6j3qsd22j🔴 Now Live The Role of AI in Modernizing Enterprise Application Security How do you scale security testing across complex enterprise environments? Join Zach Moreno as he breaks down how AI is helping teams expand coverage without sacrificing depth. https://bishopfox.com/resources/the-role-of-ai-in-modernizing-enterprise-application-security24 Mar 2026 18:14 +0000at://did:plc:bmd7dwf5akrptlhxnirxttyp/app.bsky.feed.post/3mht6j3qsd22jhttps://bsky.app/profile/bishopfox.bsky.social/post/3mhgszibnu22z“If I found an iOS exploit… I might just sell it and retire.” iOS exploits are rare, expensive, and usually not something you just stumble across. Leron Gray & Thomas Wilson on: • why iOS is harder to exploit • who typically has access • the tradeoff between security & openness19 Mar 2026 20:16 +0000at://did:plc:bmd7dwf5akrptlhxnirxttyp/app.bsky.feed.post/3mhgszibnu22zhttps://bsky.app/profile/bishopfox.bsky.social/post/3mh22j5fie223Some puzzles take time. Happy Pi Day from Bishop Fox 🥧14 Mar 2026 18:26 +0000at://did:plc:bmd7dwf5akrptlhxnirxttyp/app.bsky.feed.post/3mh22j5fie223https://bsky.app/profile/bishopfox.bsky.social/post/3mgskoidk4c26Bishop Fox will be well represented at #HackGDL this week! Our team is presenting research and workshops on cloud security, hardware hacking, application security, reverse engineering, and career growth in cybersecurity. https://bishopfox.com/events/bishop-fox-at-hackgdl-202611 Mar 2026 18:54 +0000at://did:plc:bmd7dwf5akrptlhxnirxttyp/app.bsky.feed.post/3mgskoidk4c26https://bsky.app/profile/bishopfox.bsky.social/post/3mgpvmyfq4k2aAI agents inside developer environments introduce a new trust question: How much autonomy should they actually have? In this clip, Shad Malloy explains why applying least autonomy to agents may be the safest approach, essentially extending the idea of least privilege to AI systems.10 Mar 2026 17:32 +0000at://did:plc:bmd7dwf5akrptlhxnirxttyp/app.bsky.feed.post/3mgpvmyfq4k2ahttps://bsky.app/profile/bishopfox.bsky.social/post/3mgg5mpgzfk24Introducing CloudFox GCP A new extension of CloudFox designed to help practitioners assess Google Cloud environments from an attacker’s perspective. Now on GitHub: https://bishopfox.com/blog/introducing-cloudfox-gcp-attack-path-identification-for-google-cloud06 Mar 2026 20:28 +0000at://did:plc:bmd7dwf5akrptlhxnirxttyp/app.bsky.feed.post/3mgg5mpgzfk24https://bsky.app/profile/bishopfox.bsky.social/post/3mgdh6izfac2dEnterprise application portfolios are bigger and more complex than ever. But most testing models were built for a much smaller world. Join our session with Zach Moreno on how AI-assisted testing can help security teams scale coverage across modern enterprise environments. March 24 | 2 p.m. ET05 Mar 2026 18:41 +0000at://did:plc:bmd7dwf5akrptlhxnirxttyp/app.bsky.feed.post/3mgdh6izfac2d