slack Archives

AI, risk, IT/OT, security, catastrophic, cyber risk, catastrophe, AI risk managed detection and response

The ‘Absolute Nightmare’ in Your DMs: OpenClaw Marries Extreme Utility with ‘Unacceptable’ Risk

Jon Swartz | February 4, 2026 | Agentic AI, AI Bots, Alibaba Cloud, Barracuda, ChatGPT, Claude Code, Cursor, DigitalOcean, Elon Musk, Moltbook, OpenClaw, Remote Code Execution, Skynet, slack, Snyk, Telegram, Tenable, Tencent Cloud, WhatsApp, Zenity Labs

It is the artificial intelligence (AI) assistant that users love and security experts fear. OpenClaw, the agentic AI platform created by Peter Steinberger, is tearing through the tech world, promising a level ...

Security Boulevard

SlackPirate Set Sails Again! Or: How to Send the Entire “Bee Movie” Script to Your Friends in Slack

Daniel Mayer | January 31, 2025 | Penetration Testing, Red Team, slack, specterops, Web security

TLDR: SlackPirate has been defunct for a few years due to a breaking change in how the Slack client interacts with the Slack API. It has a new PR by yours truly ...

Posts By SpecterOps Team Members - Medium

A still from the 1928 animated short, “Steamboat Willie”—the first appearance of Mickey Mouse

Disney 1.2 TB Slack Hack: NullBulge Claims Leak is its Own

Richi Jennings | July 17, 2024 | Disney, hacktivism, Hacktivist, Hacktivists, hacktivity, NullBulge, SB Blogwatch, slack, Slack breach

Steamboat bloat: Hacktivist group wields infostealer Trojan, leaks 1,200 GB of mouse droppings ...

Security Boulevard

Microsoft’s Copilot+ Recall Feature, Slack’s AI Training Controversy

Tom Eston | May 27, 2024 | AI, AI training, chat, Copilot, Cyber Security, Cybersecurity, Data Privacy, Digital Privacy, Episodes, Information Security, Infosec, LLM, machine learning, Microsoft, ML, Podcast, Podcasts, policy, Privacy, Recall, security, slack, technology, Weekly Edition, Windows

Episode 331 of the Shared Security Podcast discusses privacy and security concerns related to two major technological developments: the introduction of Windows PC’s new feature ‘Recall,’ part of Microsoft’s Copilot+, which captures ...

Shared Security Podcast

Smart SOAR's Slack workflow for automated incident alerting and channel creation

Why Smart SOAR is the Best SOAR for Slack

Pierre Noujeim | October 27, 2023 | Automated Incident Alerting, Integration Guide, Post-Incident Review, Real-time Incident Discussion, slack, Smart SOAR, SOAR, SOAR Integration

Effective communication is a critical component in incident response, often making the difference between rapid resolution and prolonged impact. This article explores how the integration between Smart SOAR and Slack provides a ...

D3 Security

Patch EVERYTHING: Widely Used ‘WebP’ Code has Critical Bug

WebP FAIL. Critical vuln in libwebp: Go get updates to Chrome, Firefox, Edge, Slack and more ...

Security Boulevard

Slack Security Breach Highlights Risks of SaaS Session Hijacking

Emile Antone | January 11, 2023 | CrowdStrike, FEATURED, Incident Response, SaaS Security, SaaS threat detection, Security Advisories, slack, Slack breach

Slack Attack: Employee Tokens Stolen On December 29, 2022, workforce collaboration application, Slack posted a security update that announced the discovery of unauthorized access to some of its code repositories. The company ...

Obsidian Security

CircleCI Rotates GitHub OAuth Tokens After Security Incident

Teri Robinson | January 10, 2023 | CircleCI, cyberattack, lastpass, Okta, Secrets, slack, source code breach

Following a security incident, CircleCI has completed the process of rotating GitHub OAuth tokens for their customers. CircleCI said Saturday that while customers could still rotate their own tokens, it has “confidence ...

Security Boulevard

Slack GitHub Account Hacked via Stolen Employee API Token

Ivanwallarm | January 5, 2023 | api leak, API security, Cloud Security, Data breach, DEVOPS, Different attack types, Incident, Researcher Corner, security incidents, slack, Token Leak, Web Application Security

On December 29, 2022, Slack was alerted to suspicious activity on their GitHub account. Upon investigation, the company discovered that a limited number of employee tokens had been stolen and misused to ...

Wallarm

Slack App Leaked Hashed User Passwords for 5 YEARS

Richi Jennings | August 8, 2022 | api, I’m willing to bet someone JSON.stringify’d the entire user object without realizing the password hash is in there, Password, Salesforce, SB Blogwatch, slack, slack technologies, Slack Vulnerability

Since 2017, if you’ve invited anyone to a Slack workspace, your password has leaked. How could this have happened? ...

Security Boulevard

slack

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On