News

Latest product updates and announcements

24/12/2025

Holiday 7x7 Wargame - OAuth.py

OAuth vulnerabilities aren’t always obvious. Sometimes they hide in code that appears to work. In our Holiday 7×7 Wargame, we’ve...

18/12/2025

Holiday 7x7 Wargame

Our Holiday 7×7 Wargame is now live! Over the next 7 weeks, we’re bringing you bite-sized AppSec, DevSecOps, and AI...

10/12/2025

AI Wargame at Black Hat EU London 2025

We are hosting an AI Attack and Defense Wargame at BlackHat EU London, Today 10th December 2025. This year we...

07/12/2025

React2Shell Incident Response Learning Challenge

In December 2025, a critical security vulnerability with a CVSS base score of 10.0 (the maximum) was disclosed: React2Shell (CVE-2025-55182),...

28/11/2025

Shai Hulud Incident DevSecOps Training Challenge

In Novermber 2025, JavaScript ecosystem has just gone through one of the largest npm supply-chain compromises in years: the Shai...

27/11/2025

Season Recap - 2025 (September to November)

Hey everyone , This last season was packed and the SecDim ecosystem saw a full slate of updates, releases, and...

26/11/2025

XSS in Copilot Studio (CVE-2024-49038)

Real-World XSS / Privilege-Escalation Incident: Copilot Studio (CVE-2024-49038) On November 26, 2024, Microsoft fixed a critical XSS vulnerability in Copilot...

20/11/2025

SecDim Patch Reward System

The SecDim Patch Reward System Hey everyone We’re excited to roll out a feature that has been brewing internally for...

19/11/2025

Challenge Release: Ruby on Rails Cross-Site Request Forgery Incident

In 2025, a critical vulnerability in Ruby on Rails Cross-Site Request Forgery (CSRF) protection mechanism has been identified, affecting all...