QR codes are designed for usability, not security. Using QRLJacking, a victim can unknowingly grant access to their account by scanning a QR code.

Another day, another CVE. It is possible to recover the master password in cleartext for KeePass. Write up, examples and a POC to demonstrate CVE-2023-32784

Combining two advanced phishing techniques

Browser In The Browser (BITB) phishing attacks are less common but very effective when used. They’re hard to identify and easy to setup!