News

Latest product updates and announcements

08/01/2026

Broken Auth.api - Holiday 2025

In modern APIs, authentication isn’t just about checking a username and password, it’s about establishing trust boundaries and enforcing them...

02/01/2026

Happy New Year 2026 - Holiday 7x7 Wargame

Start 2026 by Leveling Up Your Secure Coding Skills As we step into 2026, many developers and security engineers are...

24/12/2025

Holiday 7x7 Wargame - OAuth.py

OAuth vulnerabilities aren’t always obvious. Sometimes they hide in code that appears to work. In our Holiday 7×7 Wargame, we’ve...

18/12/2025

Holiday 7x7 Wargame

Our Holiday 7×7 Wargame is now live! Over the next 7 weeks, we’re bringing you bite-sized AppSec, DevSecOps, and AI...

10/12/2025

AI Wargame at Black Hat EU London 2025

We are hosting an AI Attack and Defense Wargame at BlackHat EU London, Today 10th December 2025. This year we...

07/12/2025

React2Shell Incident Response Learning Challenge

In December 2025, a critical security vulnerability with a CVSS base score of 10.0 (the maximum) was disclosed: React2Shell (CVE-2025-55182),...

28/11/2025

Shai Hulud Incident DevSecOps Training Challenge

In Novermber 2025, JavaScript ecosystem has just gone through one of the largest npm supply-chain compromises in years: the Shai...

27/11/2025

Season Recap - 2025 (September to November)

Hey everyone , This last season was packed and the SecDim ecosystem saw a full slate of updates, releases, and...

26/11/2025

XSS in Copilot Studio (CVE-2024-49038)

Real-World XSS / Privilege-Escalation Incident: Copilot Studio (CVE-2024-49038) On November 26, 2024, Microsoft fixed a critical XSS vulnerability in Copilot...