| Discord | https://discord.gg/7mAHbSJDB |
Black Lantern Security (BLSOPS)
- 20 Followers
- 6 Following
- 46 Posts
By analyzing and simulating the most relevant attacks, Black Lantern Security delivers solutions that provide immediate reductions in organizational risk.
📢 Now hiring: Senior Software Engineer - Python Developer (Remote)
We're looking for someone with deep Python async experience, Rust chops, & a real open-source track record to build security tooling.
Details & apply → https://www.blacklanternsecurity.com/careers/
🚨CVE-2026-10880: OSNEXUS QuantaStor up to v6.6.1 has an unauthenticated blind SQL injection in the login form. No credentials required. Attackers can recover stored password hashes one character at a time using differing login error responses.
https://blog.blacklanternsecurity.com/p/cve-2026-10880-osnexus-quantastor
https://blog.blacklanternsecurity.com/p/cve-2026-10880-osnexus-quantastor
Crow's Nest: A curated weekly cybersecurity digest from BLS that highlights the security news, research, vulnerabilities, exploits, tools, & technical content.
Find it here 👇https://crowsnest.blacklanternsecurity.com
Find it here 👇https://crowsnest.blacklanternsecurity.com
Such an interesting read, not only did the author discover this vulnerability across multiple platforms (while still being too young to drive). But he also wrote a bot within one of the platforms to show the vulnerability in action.
https://gist.github.com/hackermondev/45a3cdfa52246f1d1201c1e8cdef6117
Tags: #redteam #github #vulnerability #discord #signal #cloudflare
Such an interesting read, not only did the author discover this vulnerability across multiple platforms (while still being too young to drive). But he also wrote a bot within one of the platforms to show the vulnerability in action.
https://gist.github.com/hackermondev/45a3cdfa52246f1d1201c1e8cdef6117
Tags: #redteam #github #vulnerability #discord #signal #cloudflare
Crow's Nest: A curated weekly cybersecurity digest from BLS that highlights the security news, research, vulnerabilities, exploits, tools, & technical content.
Find it here 👇https://crowsnest.blacklanternsecurity.com
Find it here 👇https://crowsnest.blacklanternsecurity.com
🚨CVE-2026-10880: OSNEXUS QuantaStor up to v6.6.1 has an unauthenticated blind SQL injection in the login form. No credentials required. Attackers can recover stored password hashes one character at a time using differing login error responses.
https://blog.blacklanternsecurity.com/p/cve-2026-10880-osnexus-quantastor
https://blog.blacklanternsecurity.com/p/cve-2026-10880-osnexus-quantastor
📢 Now hiring: Senior Software Engineer - Python Developer (Remote)
We're looking for someone with deep Python async experience, Rust chops, & a real open-source track record to build security tooling.
Details & apply → https://www.blacklanternsecurity.com/careers/
Our AI chatbot passed every prompt injection test we threw at it. Then we just asked it nicely for customer data, and it happily obliged.
New from our ASMOC team, how a vibe-coded website with LLM became a high-risk finding on a client's attack surface.
https://blog.blacklanternsecurity.com/p/artificial-foolishness-the-hidden
