Alex Macra

@techsplicer
174 Followers
455 Following
72 Posts

🔐 Web Dev turned Security Researcher.

#CyberSecurity

Cybersecurity Bloghttps://alexmacra.com
Photography & Travelhttps://journeypixel.com
Alex MacraJan 23

AI Automated Pentesting: The Good, The Bad, The Ugly

https://alexmacra.com/career-hub/ai-automated-pentesting-the-good-the-bad-the-ugly/

#cybersecurity #pentesting #AI #ethicalhacking

AI Automated Pentesting: The Good, The Bad, The Ugly

As with any recent domain, I’ve heard the term “AI pentesting” more often than one would want to. From my perspective, it feels tiring to hear that artificial intelligence touches every conceivable…

TechSplicer Blog
Alex MacraOct 7

CI/CD Security in Automotive Software: More Questions than Answers

https://alexmacra.com/insights/ci-cd-security-in-automotive-software-more-questions-than-answers/

#CyberSecurity #AutomotiveSecurity #DevSecOps #CICD #InfoSec

CI/CD Security in Automotive Software: More Questions than Answers

There are many challenges in automotive software development. Not only with the need to deliver fast, while making sure that the software actually works as intended inside the car. Once it’s deployed…

TechSplicer Blog
Alex MacraJul 30, 2025

Pentesting a Web Application: A Case Study

https://alexmacra.com/career-hub/pentesting-a-web-application-a-case-study/

#cybersecurity #PenetrationTesting

Pentesting a Web Application: A Case Study

Following my previous case study on Windows application security testing, I returned to my area of expertise: web applications. Familiarity doesn’t guarantee ease, particularly when facing deadlines…

TechSplicer Blog
Alex MacraJul 21, 2025
🛡️ Web App Security Architecture: Implementing Defense-in-Depth
https://alexmacra.com/cybersecurity-guides/web-app-security-architecture-implementing-defense-in-depth/
#WebSecurity #DefenseInDepth #CyberSecurity #AppSec
Web App Security Architecture: Implementing Defense-in-Depth

In this article, we are going to explore the defense-in-depth principle applied to web applications. Actually, it can apply to most software. Nowadays, modern software is designed with an internet…

TechSplicer Blog
Alex MacraJul 4, 2025

🚨 LLMs are becoming our biggest security threat 🚨

https://alexmacra.com/insights/llms-are-on-their-way-to-becoming-our-greatest-security-vulnerability/

#CyberSecurity #AI #LLM #InfoSec

LLMs are on their way to becoming our greatest security vulnerability

LLMs are currently transforming all fields and are being weaponized by cyber attackers. In a brief span of time, GenAI has left its mark on cybersecurity as well. While gaining traction…

TechSplicer Blog
Alex MacraJun 26, 2025
🚫📱 WhatsApp gets the boot: House of Representatives bans the app from official devices
🔗 https://alexmacra.com/news/whatsapp-gets-the-boot-house-of-representatives-the-app-from-official-devices/
#WhatsApp #CyberSecurity #DataPrivacy
WhatsApp gets the boot: House of Representatives the app from official devices

The US Office of Cybersecurity finally banned WhatsApp on all staff devices, a move that has left many wondering why it took so long. The memo: Meta also confirmed this announcement…

TechSplicer Blog
Alex MacraJun 16, 2025

🧬💸 23andMe bankruptcy sale: Privacy concerns escalating as genetic data hangs in the balance

What happens to your DNA when the company holding it goes under?

🔗 https://alexmacra.com/news/23andme-bankrupcy-sell-privacy-concerns-and-escalating-tensions-surrounding-the-headline/

#23andMe #Privacy

23andMe bankrupcy sell: Privacy concerns and escalating tensions surrounding the headline

23andMe’s bankruptcy is making constant headlines. A while back Regeneron Pharmaceuticals bought genomics firm 23andMe for $256 million, after a court-supervised sale [source]. Despite the company’s…

TechSplicer Blog
Alex MacraMar 28, 2025

Signal is in the news and for the wrong reasons, yet again

https://techsplicer.com/news/signal-is-in-the-news-and-for-the-wrong-reasons-yet-again/

#cybersecurity

Signal is in the news and for the wrong reasons, yet again

“The human is the weakest link in the security chain.” Recent events in Washington have demonstrated this cliche with clarity. This week, we’ve all witnessed yet another high-profile security breach…

TechSplicer Blog
Alex MacraMar 25, 2025

🔍 Just published my latest case study on pentesting a Windows application! Discoveries:

👔 Disabled security flags, that lead to uncovering of many high risk vulnerabilities
🔐 Plaintext credentials
🚪 A backdoor that bypasses authentication

Read more: 🔗 https://techsplicer.com/career-hub/pentesting-a-windows-application-a-case-study/

#dev #cyber #pentest #infosec #windowssecurity

Pentesting a Windows Application: A Case Study

With time, pentesting develops into a somewhat predictable process. Years spent coding web applications now frequently result in web penetration testing assignments for me.

TechSplicer Blog
Alex MacraMar 11, 2025

Mitigation Strategies for Desktop and Web Applications - practical security approaches for developers and architects to protect against common vulnerabilities.

Check it out here: https://techsplicer.com/career-hub/mitigation-strategies-for-desktop-and-web-applications/

#InfoSec #WebSecurity #AppDev #CyberSecurity 🛡️ #tech #dev

Mitigation Strategies for Desktop and Web Applications

Lately, we’ve faced some interesting new challenges. Security layers are being implemented more frequently in the Software Development Lifecycle and this leads to issues that were not present before…

TechSplicer Blog