Feed Details
- Title
Scott Helme- URL
-
https:
/ / scotthelme. co. uk/ rss/ - Subscriber count
- 2
- Next scheduled update
Items
-
A dead CDN,
a wildcard, and an attack waiting to happen: the netdna-ssl. com takeover
https:/ / scotthelme. ghost. io/ a-dead-cdn-a-wildcard-and-an-attack-waiting-to-happen-the-netdna-ssl-com-takeover/
-
Why No Passkeys?
Naming the Top Sites That Still Don' t Support Them
https:/ / scotthelme. ghost. io/ why-no-passkeys-naming-the-top-sites-that-still-dont-support-them/
-
The Instructure Canvas Breach (
2026) : How XSS in a Support Ticket Compromised 275 Million Students
https:/ / scotthelme. ghost. io/ the-instructure-canvas-breach-2026-how-xss-in-a-support-ticket-compromised-275-million-students/
-
Open-Sourcing dbsc-php:
a Server Library for Device Bound Session Credentials in PHP
https:/ / scotthelme. ghost. io/ open-sourcing-dbsc-php-a-server-library-for-device-bound-session-credentials-in-php/
-
DBSC Beta at Report URI
https:/ / scotthelme. ghost. io/ dbsc-beta-at-report-uri/
-
Device Bound Session Credentials:
Making Stolen Cookies Useless
https:/ / scotthelme. ghost. io/ device-bound-session-credentials-making-stolen-cookies-useless/
-
Passkeys,
Permissions Policy and Bug Hunting in 1Password' s WebAuthn Wrapper
https:/ / scotthelme. ghost. io/ passkeys-permissions-policy-and-bug-hunting-in-1passwords-webauthn-wrapper/
-
Open-Sourcing passkeys-php:
A Security-Focused WebAuthn Library for PHP
https:/ / scotthelme. ghost. io/ open-sourcing-passkeys-php-a-security-focused-webauthn-library-for-php/
-
XSS Is Deadly for Passkeys:
The Hidden Risk of Attestation None
https:/ / scotthelme. ghost. io/ xss-is-deadly-for-passkeys-the-hidden-risk-of-attestation-none/
-
Passkeys 101:
An Introduction to Passkeys and How They Work
https:/ / scotthelme. ghost. io/ passkeys-101-an-introduction-to-passkeys-and-how-they-work/
-
Anatomy of a WooCommerce Skimmer:
A Technical Deep-Dive
https:/ / scotthelme. ghost. io/ anatomy-of-a-woocommerce-skimmer-a-technical-deep-dive/
-
Under Attack:
Responding to the Rise of Info-Stealer Threats
https:/ / scotthelme. ghost. io/ under-attack-responding-to-the-rise-of-info-stealer-threats/
-
Security considerations when using Passkeys on your website
https:/ / scotthelme. ghost. io/ security-considerations-when-using-passkeys-on-your-website/
-
Fighting an active Magecart Campaign
https:/ / scotthelme. ghost. io/ fighting-an-active-magecart-campaign/
-
Amazing Refresh —
A Malicious Chrome Extension Running Malware in the Browser
https:/ / scotthelme. ghost. io/ amazing-refresh-a-malicious-chrome-extension-running-malware-in-the-browser/
-
Bringing in the experts;
Having our Passkeys implementation Security Tested
https:/ / scotthelme. ghost. io/ bringing-in-the-experts-having-our-passkeys-implementation-security-tested/
-
Launching Passkeys support on Report URI!
🗝️
https:/ / scotthelme. ghost. io/ launching-passkeys-support-on-report-uri/
-
When “
One in a Billion” Happens Every Day: Scaling Redis at Report URI
https:/ / scotthelme. ghost. io/ when-one-in-a-billion-happens-every-day-scaling-redis-at-report-uri/
-
Leverage our treasure trove of Threat Intelligence data
https:/ / scotthelme. ghost. io/ leverage-our-treasure-trove-of-threat-intelligence-data/
-
XSS Ranked #
1 Top Threat of 2025 by MITRE and CISA
https:/ / scotthelme. ghost. io/ xss-ranked-1-top-threat-of-2025-by-mitre-and-cisa/
