Aug 4-6 · Las VegasCantina is at Black Hat USA · Booth 5200, AI ZoneBook a meeting
Blog

The Loop

Closing the loop on security. Research, perspectives, and field notes on where security is heading - from emerging threats to the ideas closing the gap between finding issues and solving them.

What we learned hunting for bugs in over 1500 codebases with AI

What we learned hunting for bugs in over 1500 codebases with AI

Read more
What Four RabbitMQ Advisories Reveal About Broker Security Boundaries

What Four RabbitMQ Advisories Reveal About Broker Security Boundaries

Research
Read more
After TrustLaunder: Apex's Other Four Pathling Findings

After TrustLaunder: Apex's Other Four Pathling Findings

Research
Read more
TrustLaunder: How a Healthcare FHIR Server Turned Attacker URLs Into Trusted Patient Data

TrustLaunder: How a Healthcare FHIR Server Turned Attacker URLs Into Trusted Patient Data

Research
Read more
Cantina Threat Discovery: swift-crypto X-Wing HPKE Overread

Cantina Threat Discovery: swift-crypto X-Wing HPKE Overread

Research
Read more
Cantina Threat Discovery: Race Condition in Ruby Core

Cantina Threat Discovery: Race Condition in Ruby Core

Research
Read more
Apex Found a 13-Year-Old Bug in WebKit. Apple Patched It Yesterday.

Apex Found a 13-Year-Old Bug in WebKit. Apple Patched It Yesterday.

Research
Read more
Cantina Case Study: Apex Finds 44-Year-Old Bugs in OpenSSH

Cantina Case Study: Apex Finds 44-Year-Old Bugs in OpenSSH

Research
Read more
Cantina Case Study: SpEL Injection in Spring AI Explained

Cantina Case Study: SpEL Injection in Spring AI Explained

Research
Read more
Cantina Case Study: Catching a 15-Year-Old Dependency Bug Before Attackers Did

Cantina Case Study: Catching a 15-Year-Old Dependency Bug Before Attackers Did

Research
Read more
Cantina Case Study: How Apex found a high-severity bug in Spring AI

Cantina Case Study: How Apex found a high-severity bug in Spring AI

Research
Read more
Cantina Case Study: How Apex Found a Critical RCE Bug in Spring AI

Cantina Case Study: How Apex Found a Critical RCE Bug in Spring AI

Research
Read more
Cantina Case Study: How Apex Found a Silent Privilege Escalation in Anthropic's Claude Code

Cantina Case Study: How Apex Found a Silent Privilege Escalation in Anthropic's Claude Code

Research
Read more