---
source: newsletter
source_url: https://bishopfox.com/blog
tags: [twitter]
date: 2026-05-14
review_value: 8
review_confidence: 7
review_recommendation: neutral
ingested: 2026-05-16
review_stars: 3
fetcher: jina
sha256: af26cf06a703e1728e6b9ba601d0af0a3603adb475cf73f53190b49d501b19d4
---
# Offensive Security Blog
Published Time: Wed, 13 May 2026 22:53:15 GMT
Markdown Content:
![Image 1: Abstract cybersecurity illustration featuring servers, network nodes, and stylized attack indicators representing penetration testing and threat activity.](https://assets.bishopfox.com/prod-1437/Images/BFX25-Backgrounds/Blog-Option-3adj.png)
## Offensive
Security Blog
Expert insights on offensive security, AI vulnerabilities, and emerging threats from Bishop Fox's leading security researchers and penetration testers.
![Image 2](https://bishopfox.com/static/assets/images/backgrounds/bottom-left-lines-white.svg)
Browse Categories
[](https://bishopfox.com/feeds/blog.rss)
[Technical Research Otto-Support: Supply Chain Risks in MCP Servers ![Image 3: Otto-Support: Supply Chain Risks in MCP Servers](https://studio.bishopfox.com/image/tile-bg/13/85/1385389561/eyJ0IjoidGlsZS1iZyIsInMiOjEzODUzODk1NjEsInAiOltdLCJ2IjoxfQ.d947bb50f3ca596c9a404e4d4110e71d554662532240cd45a1f4258244b1f36e.webp) May 13, 2026 What if the MCP server itself is the attacker? Supply chain risk in MCP tools is structural, and the postmark-mcp and ClawHub compromises made it concrete. This post pairs those case studies with otto-support's selfpwn module to show exactly what a hostile MCP server can access the moment it runs. By Derek Rush](https://bishopfox.com/blog/otto-support-supply-chain-risks-mcp-servers)[Industry Introducing Joro: Using AI to Build Security Tooling ![Image 4: Introducing Joro: Using AI to Build Security Tooling](https://studio.bishopfox.com/image/tile-bg/15/88/1588544726/eyJ0IjoidGlsZS1iZyIsInMiOjE1ODg1NDQ3MjYsInAiOltdLCJ2IjoxfQ.4c2364ab45b59b050a226699497d5cf431d040ce300d6b803932f070a0e6c464.webp) May 12, 2026 Bishop Fox is releasing Joro, a collaborative web exploitation framework built almost entirely with AI. From intercepting proxy to C2 integration, this post covers how it was built, what it does, and what AI-assisted security tool development actually looks like in practice. By Tony West](https://bishopfox.com/blog/introducing-joro-using-ai-build-security-tooling)[Technical Research Otto Support - The Confused Deputy ![Image 5: Otto Support - The Confused Deputy](https://studio.bishopfox.com/image/tile-bg/35/15/351529528/eyJ0IjoidGlsZS1iZyIsInMiOjM1MTUyOTUyOCwicCI6W10sInYiOjF9.31f132207e357ec70cd73399f9a31a2b9c1068bc6d0c8fa5f2eedd3da6c9bb5e.webp) May 8, 2026 When an agent reads attacker-controlled content and acts on it using its own privileges, the user's name ends up on every audit log entry. From Microsoft Copilot to ConfusedPilot, this post walks through how confused deputy attacks work and the layered controls that help contain them. By Derek Rush](https://bishopfox.com/blog/otto-support-confused-deputy)[Technical Research Otto Support - SSRF and Token Passthrough with MCP ![Image 6: Otto Support - SSRF and Token Passthrough with MCP](https://studio.bishopfox.com/image/tile-bg/11/30/1130368732/eyJ0IjoidGlsZS1iZyIsInMiOjExMzAzNjg3MzIsInAiOltdLCJ2IjoxfQ.a969aedbb9ea196716dc0fb02dc41bc92257494ef17202f78faa11e6465e5d2e.webp) May 7, 2026 SSRF and token passthrough are not new, but MCP servers are reintroducing them at scale. From a chained SSRF-to-RCE in mcp-atlassian to Microsoft's MarkItDown and OpenClaw, this post walks through three recent disclosures and the controls that actually prevent them. By Derek Rush](https://bishopfox.com/blog/otto-support-ssrf-token-passthrough-with-mcp)[Technical Research CVE-2026-42208: Pre-Authentication SQL Injection in LiteLLM Proxy ![Image 7: CVE-2026-42208: Pre-Authentication SQL Injection in LiteLLM Proxy](https://studio.bishopfox.com/image/tile-bg/79/13/791362079/eyJ0IjoidGlsZS1iZyIsInMiOjc5MTM2MjA3OSwicCI6W10sInYiOjF9.7133e807e2a660f58468900b59dae5f55e149b0542046650fddf54d62ab1973c.webp) May 6, 2026 Bishop Fox researchers confirmed a critical pre-authentication SQL injection in LiteLLM proxy affecting versions 1.81.16 through 1.83.6. Attackers can exploit it without credentials, and it blends into normal logs. In-the-wild exploitation was observed within 36 hours of the advisory going public. By Nate Robb](https://bishopfox.com/blog/cve-2026-42208-pre-authentication-sql-injection-in-litellm-proxy)[Technical Research Otto Support - Excessive Agency and Tool Privileges ![Image 8: Otto Support - Excessive Agency and Tool Privileges](https://studio.bishopfox.com/image/tile-bg/13/17/1317835802/eyJ0IjoidGlsZS1iZyIsInMiOjEzMTc4MzU4MDIsInAiOltdLCJ2IjoxfQ.b481b1f001f060c868d5638353739e042ffc040c0fb2161b5d5904abcc00fe5c.webp) May 6, 2026 AI agents connected to too many tools don't just create risk, they've already caused real damage. From deleted databases to mass-wiped mailboxes, excessive agency has a track record. This post breaks down what it looks like in practice and how role-aware tool registration can help contain it. By Derek Rush](https://bishopfox.com/blog/otto-support-excessive-agency-and-tool-privileges)[Industry Azure Hacking: New Cloudfoxable Challenges ![Image 9: Azure Hacking: New Cloudfoxable Challenges](https://studio.bishopfox.com/image/tile-bg/21/44/2144805142/eyJ0IjoidGlsZS1iZyIsInMiOjIxNDQ4MDUxNDIsInAiOltdLCJ2IjoxfQ.f39defd82c5cb7cef16ba918a7414da726bbb80d5648b441e9a092593b5ab6c3.webp) May 4, 2026 Cloudfoxable started as a hands-on AWS security training tool. Now it's expanding. Bishop Fox has launched the first set of Azure challenges, giving security professionals a safe, intentionally misconfigured environment to explore identity-driven attack paths and privilege escalation in Azure. By Gerben Kleijn](https://bishopfox.com/blog/azure-hacking-new-cloudfoxable-challenges)[Industry Introducing AIMap: Security Testing For AI Agent Infrastructure ![Image 10: Introducing AIMap: Security Testing For AI Agent Infrastructure](https://studio.bishopfox.com/image/tile-bg/18/87/1887312626/eyJ0IjoidGlsZS1iZyIsInMiOjE4ODczMTI2MjYsInAiOltdLCJ2IjoxfQ.4eee3405e768bb8f1c47a64998ad055f3ce00811a7f4ec25f342749fe6b8a849.webp) Apr 30, 2026 Attackers can already find, connect to, and probe your exposed AI agent infrastructure. AIMap gives defenders that same visibility. Built by Bishop Fox, this open-source tool discovers, scores, and tests exposed AI endpoints so you can understand your real attack surface before someone else does. By Aashiq Ramachandran](https://bishopfox.com/blog/introducing-aimap-security-testing-for-ai-agent-infrastructure)[Technical Research Otto Support – An MCP, Agentic-AI Security Challenge ![Image 11: Otto Support – An MCP, Agentic-AI Security Challenge](https://studio.bishopfox.com/image/tile-bg/11/83/1183076589/eyJ0IjoidGlsZS1iZyIsInMiOjExODMwNzY1ODksInAiOltdLCJ2IjoxfQ.46e0f56db593abdfd1b7c9bce63319e33a5a8da4f575b97cd97816ffe723985f.webp) Apr 23, 2026 Bishop Fox built a vulnerable MCP-based customer support tool and turned it into a security challenge. Explore how AI agents interact with tools, escalate privileges, and expose sensitive data. If you work with AI systems, this CTF shows exactly how these architectures fail in the real world. By Derek Rush](https://bishopfox.com/blog/otto-support-an-mcp-agentic-ai-security-challenge)[Industry Understanding the CVE Ecosystem and NIST’s Changing Role ![Image 12: Understanding the CVE Ecosystem and NIST’s Changing Role](https://studio.bishopfox.com/image/tile-bg/05/47/5472123/eyJ0IjoidGlsZS1iZyIsInMiOjU0NzIxMjMsInAiOltdLCJ2IjoxfQ.63e6265c0b52637fd549a725210477b523da96eae3801e725f0eee705cab34ac.webp) Apr 22, 2026 NIST just announced it's prioritizing CVE enrichment for government systems and deprioritizing everything else. For security teams that rely on NVD data, the gap is real. Here's what changed, why it's been coming for years, and what your team should do to stay ahead of the risk. By Richard Brown](https://bishopfox.com/blog/understanding-the-cve-ecosystem-and-nists-changing-role)[Technical Research Taking Maestro in Stride: AI Threat Modeling Frameworks ![Image 13: Taking Maestro in Stride: AI Threat Modeling Frameworks](https://studio.bishopfox.com/image/tile-bg/40/25/402524040/eyJ0IjoidGlsZS1iZyIsInMiOjQwMjUyNDA0MCwicCI6W10sInYiOjF9.98adcde3064963510b8bf0b7eb658108b595d658b7b86fcc9df42370ce3e41a0.webp) Apr 16, 2026 AI agents don’t fit traditional threat models. They act like users, services, and data pipelines at once. Learn why STRIDE alone falls short, how MAESTRO fills the gaps, and why modern AI systems must be treated as insider threats. By Shad Malloy](https://bishopfox.com/blog/taking-maestro-in-stride-ai-threat-modeling-frameworks)[Industry Anthropic’s Claude Mythos Preview: The AI Cybersecurity Inflection Point ![Image 14: Anthropic’s Claude Mythos Preview: The AI Cybersecurity Inflection Point](https://studio.bishopfox.com/image/tile-bg/21/12/2112928072/eyJ0IjoidGlsZS1iZyIsInMiOjIxMTI5MjgwNzIsInAiOltdLCJ2IjoxfQ.8e89d5a1d79821066b484adf0887305b97e241c6a43c570aec685c299eb6a4d9.webp) Apr 14, 2026 AI just crossed a threshold. Anthropic’s Claude Mythos can discover and chain vulnerabilities at scale—faster than teams can remediate. What does this mean for your security program, your providers, and your ability to keep up before attackers do? By Bishop Fox](https://bishopfox.com/blog/anthropics-claude-mythos-preview-the-ai-cybersecurity-inflection-point)[Technical Research Inside Cirro: Attack Paths, Cloud Graphs, and Extensible Schemas ![Image 15: Inside Cirro: Attack Paths, Cloud Graphs, and Extensible Schemas](https://studio.bishopfox.com/image/tile-bg/15/27/15276757/eyJ0IjoidGlsZS1iZyIsInMiOjE1Mjc2NzU3LCJwIjpbXSwidiI6MX0.eda3584c40d9258ac26a85d81153d065d721f7c1380ba77be01548ccaaa8e6c7.webp) Apr 9, 2026 Cloud risk doesn’t live in a single permission, it lives in the relationships between them. Discover how Cirro maps hidden attack paths across Azure identities, resources, and data to reveal what attackers actually see. By Leron Gray](https://bishopfox.com/blog/inside-cirro-attack-paths-cloud-graphs-and-extensible-schemas)[Technical Research API Authentication Bypass in FortiClient EMS 7.4.5-7.4.6–CVE-2026-35616 ![Image 16: API Authentication Bypass in FortiClient EMS 7.4.5-7.4.6–CVE-2026-35616](https://studio.bishopfox.com/image/tile-bg/18/58/1858467027/eyJ0IjoidGlsZS1iZyIsInMiOjE4NTg0NjcwMjcsInAiOltdLCJ2IjoxfQ.e8aa7df6122447f4e324bf535086718933b3e87d57e035bd71006f8a95c397bd.webp) Apr 7, 2026 Bishop Fox researchers expanded on Fortinet's disclosure of CVE-2026-35616 by identifying the root cause via the released hotfix. By John Untz](https://bishopfox.com/blog/api-authentication-bypass-in-forticlient-ems-7-4-5-7-4-6-cve-2026-35616)[Technical Research Delivered by Trust: What the Axios Supply Chain Attack Means for Security Leaders ![Image 17: Delivered by Trust: What the Axios Supply Chain Attack Means for Security Leaders](https://studio.bishopfox.com/image/tile-bg/74/98/749886425/eyJ0IjoidGlsZS1iZyIsInMiOjc0OTg4NjQyNSwicCI6W10sInYiOjF9.48c3da986f1792beea0bf876f7a47151cbd45e6240113d2b7500a7256b3524c0.webp) Apr 6, 2026 A trusted package turned into an attacker’s gateway overnight. The Axios supply chain breach shows how quickly risk can spread—and why security leaders must rethink trust in modern development. By Dillon Sparks](https://bishopfox.com/blog/delivered-by-trust-what-the-axios-supply-chain-attack-means-for-security-leaders)[Technical Research strongSwan CVE-2026-25075: Integer Underflow in VPN Authentication ![Image 18: strongSwan CVE-2026-25075: Integer Underflow in VPN Authentication](https://studio.bishopfox.com/image/tile-bg/12/27/1227837730/eyJ0IjoidGlsZS1iZyIsInMiOjEyMjc4Mzc3MzAsInAiOltdLCJ2IjoxfQ.14c9bcc788266fc2e517f947aaaa1e9159a3e4b0838156dc3fce167b669d448e.webp) Mar 26, 2026 Bishop Fox researchers took a deep dive into a new strongSwan vulnerability that allows unauthenticated attackers to take VPN services offline. We created an easy tool to test your strongSwan deployment & recommend upgrading to version 6.0.5 and later. By Jon Williams](https://bishopfox.com/blog/strongswan-cve-2026-25075-integer-underflow-in-vpn-authentication)[Industry Accidental Engineer: Building My First Hardware Tool the Hard Way ![Image 19: Accidental Engineer: Building My First Hardware Tool the Hard Way](https://studio.bishopfox.com/image/tile-bg/84/87/848747967/eyJ0IjoidGlsZS1iZyIsInMiOjg0ODc0Nzk2NywicCI6W10sInYiOjF9.1f4874cff3473971f5285f358ea26190b904173babb43b80e26e27c44548bde7.webp) Mar 17, 2026 I set out to build a rugged badge-cloning tool for field use, with zero hardware background. This is the story of learning electrical engineering from scratch, navigating bad assumptions, and discovering that curiosity, persistence, and hands-on testing can take you further than you think. By Raf Marconi](https://bishopfox.com/blog/accidental-engineer-building-my-first-hardware-tool-the-hard-way)[Industry Winning CTFs: A Proving Ground at HackMex & Ekoparty ![Image 20: Winning CTFs: A Proving Ground at HackMex & Ekoparty](https://studio.bishopfox.com/image/tile-bg/25/10/251087095/eyJ0IjoidGlsZS1iZyIsInMiOjI1MTA4NzA5NSwicCI6W10sInYiOjF9.1054e5ba7114072b30401a99520579729922054c5aeab1d47979f8905eae2602.webp) Mar 13, 2026 CTF competitions push offensive security skills to their limits. In 2025, the Bishop Fox Mexico team claimed first place at both HackMex Finals and EkoParty Red Team Space. Discover how the team navigated web exploitation, infrastructure compromise, and AWS attack paths to win. By Luis De la Rosa Hernandez](https://bishopfox.com/blog/winning-ctfs-a-proving-ground-at-hackmex-ekoparty)[Technical Research Pre-Authentication SQL Injection in FortiClient EMS 7.4.4 - CVE-2026-21643 ![Image 21: Pre-Authentication SQL Injection in FortiClient EMS 7.4.4 - CVE-2026-21643](https://studio.bishopfox.com/image/tile-bg/48/01/480107960/eyJ0IjoidGlsZS1iZyIsInMiOjQ4MDEwNzk2MCwicCI6W10sInYiOjF9.e67e040ec163b9b7d458d0980b288d95c6a0326253046f6f8b7d166575d41fe5.webp) Mar 9, 2026 FortiClient EMS 7.4.4 contains a pre-authentication SQL injection vulnerability (CVSS 9.1) in its multi-tenant site routing middleware. An unauthenticated attacker can inject arbitrary SQL by sending a crafted Site HTTP header to any pre-auth endpoint. By John Untz](https://bishopfox.com/blog/cve-2026-21643-pre-authentication-sql-injection-in-forticlient-ems-7-4-4)[Technical Research Beyond Electron: Attacking Alternative Desktop Application Frameworks ![Image 22: Beyond Electron: Attacking Alternative Desktop Application Frameworks](https://studio.bishopfox.com/image/tile-bg/20/25/2025410667/eyJ0IjoidGlsZS1iZyIsInMiOjIwMjU0MTA2NjcsInAiOltdLCJ2IjoxfQ.fc466326a65fbfb7c760c2c0e7f0b25d06c3aeb980d8c0d068fcfc4d17e6bb5c.webp) Mar 3, 2026 Tauri promises a lighter, security-first future beyond Electron—but does it actually reduce risk? Carlos Yanez uncovers how XSS and permissive configs can still be chained into RCE, walking through real-world exploitation techniques every appsec team should understand. By Carlos Yanez](https://bishopfox.com/blog/beyond-electron-attacking-alternative-desktop-application-frameworks)[Industry Introducing CloudFox GCP: Attack Path Identification for Google Cloud ![Image 23: Introducing CloudFox GCP: Attack Path Identification for Google Cloud](https://studio.bishopfox.com/image/tile-bg/10/02/1002749302/eyJ0IjoidGlsZS1iZyIsInMiOjEwMDI3NDkzMDIsInAiOltdLCJ2IjoxfQ.26a0a6dc6a2de9532925c28ea2846f17a3d618bad09d434b707229bd5d7d9444.webp) Feb 26, 2026 Meet CloudFox GCP, an offensive security tool built to map identities, enumerate resources, and uncover real attack paths in Google Cloud. Designed for practitioners, it exposes privilege escalation, lateral movement, and data exfiltration risks so you can secure GCP before attackers exploit it. By Joseph Barcia](https://bishopfox.com/blog/introducing-cloudfox-gcp-attack-path-identification-for-google-cloud)[Advisory Samsung Tizen OS | Version Through 9.0 ![Image 24: Samsung Tizen OS | Version Through 9.0](https://studio.bishopfox.com/image/tile-bg/10/53/1053587580/eyJ0IjoidGlsZS1iZyIsInMiOjEwNTM1ODc1ODAsInAiOltdLCJ2IjoxfQ.3cbccd5b5b709f40d75b7a20800c7f180048ace15ba6d27052469576ce8d3e46.webp) Feb 24, 2026 Bishop Fox identified a low-risk command injection flaw in Samsung Tizen OS (through 9.0) that allows OS-level code execution on smart TVs with developer mode enabled. Exploitation requires local access and the configured developer IP. Organizations should disable developer mode or use kiosk mode. By Bishop Fox Researchers](https://bishopfox.com/blog/samsung-tizen-os-version-through-9-0)[Industry AI & Security Risks: Reviewing Governance and Guardrails ![Image 25: AI & Security Risks: Reviewing Governance and Guardrails](https://studio.bishopfox.com/image/tile-bg/19/96/1996305341/eyJ0IjoidGlsZS1iZyIsInMiOjE5OTYzMDUzNDEsInAiOltdLCJ2IjoxfQ.bb92816d155329cb095302d98f1fa6d84cd7af1f6cae5d88ce67e567a136fa8e.webp) Feb 19, 2026 Moving fast with AI is easy. Governing it isn’t. In this discussion, security and AI leaders share real-world lessons on inventory, least privilege, measurable outcomes, and building guardrails before scaling adoption. By Bishop Fox](https://bishopfox.com/blog/ai-security-risks-reviewing-governance-and-guardrails)[Product Most Security Programs Test a Fraction of Their Applications. That Changes Today. ![Image 26: Most Security Programs Test a Fraction of Their Applications. That Changes Today.](https://studio.bishopfox.com/image/tile-bg/45/02/45027743/eyJ0IjoidGlsZS1iZyIsInMiOjQ1MDI3NzQzLCJwIjpbXSwidiI6MX0.828e4b28a2b7a18d0ecab8745446327ebc0e41e5681fdd644b337db20e94adeb.webp) Feb 9, 2026 Bishop Fox's Rob Ragan explores how Cosmos AI transforms application security testing from a logistical bottleneck into a scalable service—enabling organizations to test entire portfolios. By Rob Ragan](https://bishopfox.com/blog/most-security-programs-test-a-fraction-of-their-applications-that-changes-today)
[Advisory Deep Dive into Arista NG Firewall Vulnerabilities ![Image 27: Deep Dive into Arista NG Firewall Vulnerabilities](https://studio.bishopfox.com/image/tile-bg/13/30/1330370292/eyJ0IjoidGlsZS1iZyIsInMiOjEzMzAzNzAyOTIsInAiOltdLCJ2IjoxfQ.e45b378dedfebbfc2c73f6f1ca1a281cf72570fdb53c525e1629937c60f7607b.webp) Feb 9, 2026 Bishop Fox identified six vulnerabilities in Arista NG Firewall version 17.4, including critical command injection flaws allowing root-level code execution with some exploitable by chaining attacks through a single malicious link. By Ronan Kervella](https://bishopfox.com/blog/arista-nextgen-firewall-version-17-4-advisory)[Industry Get the Most from Testing Your Applications ![Image 28: Get the Most from Testing Your Applications](https://studio.bishopfox.com/image/tile-bg/11/80/1180570090/eyJ0IjoidGlsZS1iZyIsInMiOjExODA1NzAwOTAsInAiOltdLCJ2IjoxfQ.8be9fbb70c15e54e7079fb518cd0dc5b03978cdb49865ce318334aea24a1bdfe.webp) Feb 4, 2026 Pen tests don’t fail because testers miss bugs. They fail when no one agrees what questions the test should answer. In today’s cloud- and AI-driven apps, scoping, execution, and follow-through determine whether results drive real decisions or just become another filed report. By Bishop Fox Researchers](https://bishopfox.com/blog/get-the-most-from-testing-your-applications)[Industry Why the Board Belongs in the War Room: The Untapped Value of Crisis Readiness ![Image 29: Why the Board Belongs in the War Room: The Untapped Value of Crisis Readiness](https://studio.bishopfox.com/image/tile-bg/13/30/1330898196/eyJ0IjoidGlsZS1iZyIsInMiOjEzMzA4OTgxOTYsInAiOltdLCJ2IjoxfQ.0bf8ed50275ea5a8c1c129d7bc14aea272254d7a3cf93c9c1c585a9b850ae8f2.webp) Jan 22, 2026 Boards may not be on the front lines, but they’re always in the blast radius. Crisis simulations help directors experience uncertainty firsthand, strengthening governance, trust, and decision-making before headlines hit. By Justin Greis](https://bishopfox.com/blog/why-the-board-belongs-in-the-war-room-the-untapped-value-of-crisis-readiness)[Technical Research The Total Cost of AI Ownership: The Costs Not on Your Budget Sheet ![Image 30: The Total Cost of AI Ownership: The Costs Not on Your Budget Sheet](https://studio.bishopfox.com/image/tile-bg/10/11/1011018060/eyJ0IjoidGlsZS1iZyIsInMiOjEwMTEwMTgwNjAsInAiOltdLCJ2IjoxfQ.2333cd3d455a8bd277efe978ef8056f9a4c52013394c1c2290b11e7d5d47c532.webp) Jan 13, 2026 AI looks affordable at first, licenses, cloud, headcount. But once it’s in production, costs spread across teams, systems, and decisions in ways most models miss. Here’s what we’ve learned about the hidden costs of owning AI long-term. By Kelly Albrink](https://bishopfox.com/blog/the-total-cost-of-ai-ownership-the-costs-not-on-your-budget-sheet)[Industry What to Look for in a Red Team Vendor ![Image 31: What to Look for in a Red Team Vendor](https://studio.bishopfox.com/image/tile-bg/21/32/2132078327/eyJ0IjoidGlsZS1iZyIsInMiOjIxMzIwNzgzMjcsInAiOltdLCJ2IjoxfQ.ae6eb8ec4aee0737202d49eebeb9a4895c109278c5f936e10b412781217a3dc4.webp) Jan 8, 2026 Red team proposals often look the same. The outcomes rarely are. If you’re trying to avoid surprises, defend security decisions, and gain real confidence, choosing the right red team partner matters more than ever. Here’s what separates signal from noise. By Bishop Fox](https://bishopfox.com/blog/what-to-look-for-in-a-red-team-vendor)[Technical Research GenAI DevOps: More Code, More Problems ![Image 32: GenAI DevOps: More Code, More Problems](https://studio.bishopfox.com/image/tile-bg/16/67/1667674283/eyJ0IjoidGlsZS1iZyIsInMiOjE2Njc2NzQyODMsInAiOltdLCJ2IjoxfQ.13fb299c888bdb474d00b290983345870f1ca46b91a4e26df594ff9a7338e1cd.webp) Dec 30, 2025 GenAI has made it possible for anyone to ship production code, but security hasn’t caught up. The real risk isn’t bad AI code, it’s how quickly unsafe behavior reaches production. Here’s how to build guardrails so speed doesn’t become liability. By Derek Rush](https://bishopfox.com/blog/genai-devops-more-code-more-problems)[Industry Bishop Fox Wrapped: Research Worth Replaying ![Image 33: Bishop Fox Wrapped: Research Worth Replaying](https://studio.bishopfox.com/image/tile-bg/11/48/11482353/eyJ0IjoidGlsZS1iZyIsInMiOjExNDgyMzUzLCJwIjpbXSwidiI6MX0.abb7e62129de63f6fbdce0c4b545da556ef1855f6c7cf36f0b6b93041d838c16.webp) Dec 23, 2025 This is Bishop Fox Wrapped. A snapshot of the research, blogs, virtual sessions, and tools that security teams kept coming back to, and what that tells us about what they needed this year. By Bishop Fox](https://bishopfox.com/blog/wrapped)[Technical Research MITRE AADAPT Framework as a Red Team Roadmap ![Image 34: MITRE AADAPT Framework as a Red Team Roadmap](https://studio.bishopfox.com/image/tile-bg/92/56/925615766/eyJ0IjoidGlsZS1iZyIsInMiOjkyNTYxNTc2NiwicCI6W10sInYiOjF9.6b4aae953e158ce2af30da24be686379f270bb33e6e7f0cae8c545f3a55063a1.webp) Dec 17, 2025 MITRE’s AADAPT framework exposes how attackers target digital-asset systems but the real value comes from testing those threats. Learn how red teaming turns AADAPT into evidence-driven detection, stronger controls, and measurable protection against economic loss. By Bishop Fox](https://bishopfox.com/blog/mitre-aadapt-framework-as-a-red-team-roadmap)[Industry A Hacker Holiday Gift Guide: 2025 Edition ![Image 35: A Hacker Holiday Gift Guide: 2025 Edition](https://studio.bishopfox.com/image/tile-bg/92/42/924207772/eyJ0IjoidGlsZS1iZyIsInMiOjkyNDIwNzc3MiwicCI6W10sInYiOjF9.72c47ef3c0cf21f59885afd31cd36d06d888af7eaae3531f67225bb03f492e9a.webp) Dec 10, 2025 Shopping for a hacker? Skip the gimmicks. Here are the tools, training, and books they actually want: Flipper Zero, Proxmark3, Shodan, HTB, and must-read vuln research picks, perfect for deal-season lab upgrades. By Bishop Fox](https://bishopfox.com/blog/hacker-holiday-gift-guide-2025-edition)[Technical Research Arista NextGen Firewall XSS to RCE Chain ![Image 36: Arista NextGen Firewall XSS to RCE Chain](https://studio.bishopfox.com/image/tile-bg/39/55/395569537/eyJ0IjoidGlsZS1iZyIsInMiOjM5NTU2OTUzNywicCI6W10sInYiOjF9.21814450d69c7527c36a9ad2155d6ba47191f052df1546b8fbfdc84af9112e02.webp) Dec 4, 2025 Arista flagged three NG Firewall bugs as “limited.” Our researchers proved otherwise: real-world remote code execution is possible, and current patches don’t fully fix the root issues. Here’s what’s vulnerable, what we validated, and the steps to cut exposure now. By Jon Williams, Ronan Kervella, Bishop Fox Researchers](https://bishopfox.com/blog/arista-nextgen-firewall-xss-to-rce-chain)[Industry What Will Shape Cybersecurity in 2026: AI Speed, Expanding Attack Surfaces, and Specialized Red Teams ![Image 37: What Will Shape Cybersecurity in 2026: AI Speed, Expanding Attack Surfaces, and Specialized Red Teams](https://studio.bishopfox.com/image/tile-bg/42/36/423694711/eyJ0IjoidGlsZS1iZyIsInMiOjQyMzY5NDcxMSwicCI6W10sInYiOjF9.5b1c147ff8117eb73a292aef9d1ef4d44478480cbde588718b831d95688fd0dd.webp) Dec 3, 2025 2026 will hit cybersecurity like a fast-forward button: AI moves quicker than governance, attack surfaces sprawl into the physical world, and red teams get hyper-specialized. Here’s what’s coming—and how to stay ahead before “optional” becomes “too late.” By Vincent Liu, Christie Terrill, Kelly Albrink, Trevin Edgeworth, Dan Petro](https://bishopfox.com/blog/what-will-shape-cybersecurity-in-2026-ai-speed-expanding-attack-surfaces-and-specialized-red-teams)[Industry A Note on AI from Christie Terrill, CISO, Bishop Fox ![Image 38: A Note on AI from Christie Terrill, CISO, Bishop Fox](https://studio.bishopfox.com/image/tile-bg/54/82/548283494/eyJ0IjoidGlsZS1iZyIsInMiOjU0ODI4MzQ5NCwicCI6W10sInYiOjF9.d770c871e88630611ede2fa3fbf486abbeafe35ee6aa8283c149dea367b2ad66.webp) Nov 25, 2025 After a month of conferences and CISO conversations, one thing is clear: AI is reshaping security—fast. But the excitement comes with uncertainty, risk, and big unanswered questions. Here’s what leaders are really saying. By Christie Terrill](https://bishopfox.com/blog/a-note-on-ai-from-christie-terrill-ciso-bishop-fox)[Technical Research Fortinet FortiWeb Authentication Bypass – CVE-2025-64446 ![Image 39: Fortinet FortiWeb Authentication Bypass – CVE-2025-64446](https://studio.bishopfox.com/image/tile-bg/19/76/1976647380/eyJ0IjoidGlsZS1iZyIsInMiOjE5NzY2NDczODAsInAiOltdLCJ2IjoxfQ.1103f62cd5b3d1f9a37af4aba3494585b056175203fd91e865ba7e828e1aa0b7.webp) Nov 19, 2025 Bishop Fox researchers discovered an authentication bypass in FortiWeb that lets attackers add their own admin accounts, take over the device, and erase evidence. Organizations can quickly check if they’re exposed using a new Bishop Fox scanner and should remove public access and update immediately. By Jon Williams, John Untz](https://bishopfox.com/blog/fortinet-fortiweb-authentication-bypass-cve-2025-64446)[Industry Ready to Hack an LLM? Our Top CTF Recommendations ![Image 40: Ready to Hack an LLM? Our Top CTF Recommendations](https://studio.bishopfox.com/image/tile-bg/13/47/1347656439/eyJ0IjoidGlsZS1iZyIsInMiOjEzNDc2NTY0MzksInAiOltdLCJ2IjoxfQ.b45e460ced4c66e1d437a7a9826b9cd082895c4ab2cc9fc36770e5918b6db75d.webp) Nov 5, 2025 The best way to understand LLM vulnerabilities isn’t by reading, it’s by hacking. Explore our top CTF and sandbox picks to safely test prompt injections, jailbreaks, and model exploits while sharpening your AI security skills. By Luke Sheppard](https://bishopfox.com/blog/ready-to-hack-an-llm-our-top-ctf-recommendations)[Industry Invasion of the Face Changers: Halloween Hijinks with Bluetooth LED Masks ![Image 41: Invasion of the Face Changers: Halloween Hijinks with Bluetooth LED Masks](https://studio.bishopfox.com/image/tile-bg/47/57/475770208/eyJ0IjoidGlsZS1iZyIsInMiOjQ3NTc3MDIwOCwicCI6W10sInYiOjF9.dc4ab658d888052e8683c7c3fd8f5db19446673a96302b3c15656619bfba1820.webp) Oct 30, 2025 This Halloween, Bluetooth LED masks promise eerie fun — until anyone with a pocket-sized controller can change your face. I built one. Read how a common BLE flaw turns glowing costumes into prankable (and revealing) security lessons. By Nathan Elendt](https://bishopfox.com/blog/invasion-of-the-face-changers-halloween-hijinks-with-bluetooth-led-masks)[Industry Small Actions, Big Breaches: The Silent Offensive Against Your data ![Image 42: Small Actions, Big Breaches: The Silent Offensive Against Your data](https://studio.bishopfox.com/image/tile-bg/11/22/1122951231/eyJ0IjoidGlsZS1iZyIsInMiOjExMjI5NTEyMzEsInAiOltdLCJ2IjoxfQ.ec3db1e619f44e137331382b92f214d67cdebfe6f0ab817cbb546dfd39bfa4da.webp) Oct 17, 2025 AI and SaaS have transformed how people work, but security hasn’t kept up. New data shows most data exposure now stems from human behavior—copy, paste, and upload actions inside unmanaged browsers and AI tools. By Bishop Fox](https://bishopfox.com/blog/small-actions-big-breaches-the-silent-offensive-against-your-data)[Industry SaaS Threats are Escalating: A Follow-Up to Our Recent Analysis ![Image 43: SaaS Threats are Escalating: A Follow-Up to Our Recent Analysis](https://studio.bishopfox.com/image/tile-bg/67/75/677555883/eyJ0IjoidGlsZS1iZyIsInMiOjY3NzU1NTg4MywicCI6W10sInYiOjF9.b8c380f5bb4ade663c127e699321d68bcb01c65b58408bf2065b751a567aa93b.webp) Oct 14, 2025 SaaS attacks are accelerating fast. Our latest research and fireside chat with experts from AppOmni and Bishop Fox expose how threat actors are exploiting OAuth, targeting admins, and moving laterally across cloud apps—and what defenders can do to stop them. By Christie Terrill](https://bishopfox.com/blog/saas-threats-are-escalating-a-follow-up-to-our-recent-analysis)[Industry Burp Variables: A Burp Suite Extension ![Image 44: Burp Variables: A Burp Suite Extension](https://studio.bishopfox.com/image/tile-bg/81/38/81388728/eyJ0IjoidGlsZS1iZyIsInMiOjgxMzg4NzI4LCJwIjpbXSwidiI6MX0.bb7b50a0590a2a941aec714a700fa2d52ed75fd92342fa831ac739f44f5c4dd3.webp) Oct 10, 2025 Burp Suite has long been the industry standard for web application testing, thanks in large part to its extensibility. Bishop Fox has built on that tradition with Burp Variables, a new extension that fills a major gap in Burp’s workflow: variable handling. By Bishop Fox](https://bishopfox.com/blog/burp-variables-burp-suite-extension)[Technical Research How a $20 Smart Device Gave Me Access to Your Home ![Image 45: How a $20 Smart Device Gave Me Access to Your Home](https://studio.bishopfox.com/image/tile-bg/43/04/430489006/eyJ0IjoidGlsZS1iZyIsInMiOjQzMDQ4OTAwNiwicCI6W10sInYiOjF9.8681039d48e2281300ef2a7477f2fab63479cc9fc6bf1944db09727388493449.webp) Oct 2, 2025 Bishop Fox research uncovered zero-day vulnerabilities in the YoLink Smart Hub. Anyone using the YoLink Smart Hub v0382 is at risk. By Nick Cerne](https://bishopfox.com/blog/how-a-20-smart-device-gave-me-access-to-your-home)[Advisory YoSmart YoLink Hub version 0382 ![Image 46: YoSmart YoLink Hub version 0382](https://studio.bishopfox.com/image/tile-bg/14/19/141900569/eyJ0IjoidGlsZS1iZyIsInMiOjE0MTkwMDU2OSwicCI6W10sInYiOjF9.15e31431d13fe5816a6f039de3449b66119db4e6abd81ebc1af9c8bd066900be.webp) Oct 2, 2025 The following document describes identified vulnerabilities in the YoLink Hub smart device version 0382. By Nick Cerne](https://bishopfox.com/blog/yosmart-yolink-hub-version-0382)[Industry What Does “Good” Look Like in Red Teaming ![Image 47: What Does “Good” Look Like in Red Teaming](https://studio.bishopfox.com/image/tile-bg/16/38/1638708720/eyJ0IjoidGlsZS1iZyIsInMiOjE2Mzg3MDg3MjAsInAiOltdLCJ2IjoxfQ.5bd03208ed1fcab5ad8801783484289737f7884599d9503404af427d719ae83e.webp) Sep 22, 2025 Most red team exercises fail to deliver real value. They check compliance boxes but don't address actual business risks. Learn the difference between good and bad offensive security, plus the strategic framework that transforms red teaming from expense into ROI. By Trevin Edgeworth](https://bishopfox.com/blog/what-does-good-look-like-in-red-teaming)[Industry State of the SaaS Security Union ![Image 48: State of the SaaS Security Union](https://studio.bishopfox.com/image/tile-bg/14/08/1408101299/eyJ0IjoidGlsZS1iZyIsInMiOjE0MDgxMDEyOTksInAiOltdLCJ2IjoxfQ.be7721b73015f9c7675f0b034e66d6d5c88c661fce8c05fcf5ae1a0330b86f0f.webp) Sep 16, 2025 Two threat groups are exploiting SaaS at scale: one with phishing and data theft, the other with nation-state level tactics exploiting integrations and credentials. Here’s what you need to know and how to protect against the next wave. By Brian Soby Bio](https://bishopfox.com/blog/state-of-the-saas-security-union)[Technical Research Demystifying 5G Security: Understanding the Registration Protocol ![Image 49: Demystifying 5G Security: Understanding the Registration Protocol](https://studio.bishopfox.com/image/tile-bg/21/33/21336972/eyJ0IjoidGlsZS1iZyIsInMiOjIxMzM2OTcyLCJwIjpbXSwidiI6MX0.d283aec294d7ad902663a9cc34e633daa2cab5cc07ea259f49342ad63abbf365.webp) Sep 4, 2025 5G networks face critical security gaps during device registration. Despite improved architecture, unprotected initial messages and weak encryption negotiation create attack windows. Learn how to identify and mitigate these vulnerabilities. By Drew Jones](https://bishopfox.com/blog/demystifying-5g-security-understanding-the-registration-protocol)[Industry The Top Reasons Security Leaders Choose Red Teaming ![Image 50: The Top Reasons Security Leaders Choose Red Teaming](https://studio.bishopfox.com/image/tile-bg/65/05/650510247/eyJ0IjoidGlsZS1iZyIsInMiOjY1MDUxMDI0NywicCI6W10sInYiOjF9.47b2ce88605b8b9945e630fa44d049f9257154e83fe5a22d355a53ef4688e331.webp) Aug 27, 2025 Security leaders are turning to red teaming to test defenses against real-world adversaries. From validating investments to sharpening blue team skills, discover why this strategy is becoming a must-have for organizations serious about cyber resilience. By Trevin Edgeworth](https://bishopfox.com/blog/top-reasons-security-leaders-choose-red-teaming)