Tag Archives: Application Security

AI Agent Skill Poisoning: The Supply Chain Attack You Haven’t Heard Of

Posted on February 26, 2026 by Simon Roses

Read Time: 15 minutes TL;DR Security professionals are well acquainted with npm supply chain attacks, PyPI package poisoning, and the infamous xz backdoor. But a new attack vector is emerging that flies under the radar—one that is arguably more dangerous … Continue reading →

Posted in AI, Pentest, Privacy, Security, Technology | Tagged agent-security, AI, ai-security, Application Security, openclaw, pentesting, Skill, supply-chain | Leave a comment

The Shadow Twin Threats: When AI and Vibe Coding Go Rogue in Your Network

Posted on February 19, 2026 by Simon Roses

Read Time: 15 minutes TL;DR Your IT department doesn’t know it yet, but someone in marketing just spun up an Ollama server to run a local LLM. Finance is building a custom payroll app with Cursor. And that NVIDIA DGX … Continue reading →

Posted in AI, Pentest, Privacy | Tagged AI, Application Security, Software Security, Vibe Coding | Leave a comment

KringleCon / Holiday Hack 2021 Writeup

Posted on January 11, 2022 by Simon Roses

Another SANS Holiday Hack Challenge & Kringle (2021) CTF done. Please find my writeup for this awesome & fun CTF. I will continue to work on the few missing challenges so expect updates ASAP. PDF MD5: 51bc75a10e1de548de2adef974a36201 Report Download Enjoy … Continue reading →

Posted in Security, Technology | Tagged Application Security, CTF, hacker, Penetration Testing, Software Security | Leave a comment

Tag Archives: Application Security

AI Agent Skill Poisoning: The Supply Chain Attack You Haven’t Heard Of

The Shadow Twin Threats: When AI and Vibe Coding Go Rogue in Your Network

KringleCon / Holiday Hack 2021 Writeup

Archives

Meta

Languages

My Speaking Events

Search www.simonroses.com

Categories

Blogroll