Big thanks to Proton VPN for sponsoring this video. To get 64% discount to your Proton VPN Plus subscription, please use the following link: https://protonvpn.com/davidbombal Want a “hacker” laptop without...
To try everything Brilliant has to offer for free for a full 30 days, visit https://brilliant.org/davidbombal or scan the QR code onscreen – You’ll also get 20% off an annual...
Researchers uncovered a critical cross-site scripting (XSS) vulnerability in Lenovo’s AI chatbot (reported by CyberNews). With one ~400-character prompt, they instructed the bot to output HTML, triggered a malicious injection...
VPNs hide your IP address and stop your ISP from seeing your traffic, but they won't make you anonymous and they won't stop hackers. This is what a VPN can...
In this ethical lab demo, David Bombal and Kyle Winters connect Claude (LLM) to Metasploit through an MCP (Model Context Protocol) server to automate real attacks. Watch AI perform recon,...
Governments say we must submit passports and IDs to “protect children” and make the internet safer. But what happens to your data after you hand it over? In this video,...
Cloudflare blocked a record 22.2 Tbps DDoS: a UDP carpet bomb peaking at 10.6B pps on a single IP. See the botnet scale, 31k+ ports per second, and how mitigation...
Hackers claim data on 22,000+ US officials after a Salesforce breach. What does mass data collection mean for privacy, doxing risks, and digital ID pushes in 2025? #databreach #dhs #nsa
At DEF CON 33, a researcher showed how two API authentication flaws in a centralised dealer portal for a top automaker enabled national admin access across 1,000+ US dealers. With...
Apple doubled its top bug bounty to $2M, with bonuses pushing iPhone exploit payouts up to $5M. See what pays most, from Lockdown Mode to wireless proximity attacks. #apple #bugbounty...
Big thanks to ThreatLocker for sponsoring my trip to Black Hat 2025. To start your free trial with ThreatLocker please use the following link: https://www.threatlocker.com/davidbombal Discover “Chasing Your Tail,” an...
SharePoint Zero-Day 2025: ToolPane Authentication Bypass + Deserialization RCE A brand-new, two-stage exploit is hammering SharePoint 2010-2025. OTW joins David Bombal to break down: • How attackers bypass authentication and...
