Security Articles

Explore real-world engineering experiences from top tech companies.

필터 초기화

Endigest

About
Privacy
Terms
Contact
RSS

Security Articles

Explore real-world engineering experiences from top tech companies.

⌘K

All Frontend Backend AI / ML ML Ops DevOps Mobile Architecture Data Eng Security Product Culture

필터 초기화

Get the latest tech trends every morning

Receive daily AI-curated summaries of engineering articles from top tech companies worldwide.

⌘K

All Frontend Backend AI / ML ML Ops DevOps Mobile Architecture Data Eng Security Product Culture

Trending Posts

Making User-Sequence Data More Cost-Efficient, Faster, and Easier to Use

9 views2026-05-21

The Hacker News

Agent AI is Coming. Are You Ready?

9 views2026-05-20

Google Cloud

The agentic era: Architecting the blueprint for mission impact across the public sector

6 views2026-05-19

Hugging Face

Specialization Beats Scale: A Strategic Variable Most AI Procurement Decisions Overlook

5 views2026-05-22

CSS-Tricks

The State of CSS Centering in 2026

4 views2026-05-22

Databricks

Pharma launch analytics: How to compress the first 90 days and win the three years that follow

3 views2026-05-23

Get the latest tech trends every morning

Receive daily AI-curated summaries of engineering articles from top tech companies worldwide.

Email address

Supabase

31 min read

Security•2026-01-07

Supabase Security Retro: 2025

This post reviews Supabase platform security changes made throughout 2025 and outlines the security defaults planned for 2026.

Cloudflare

51 min read

Security•2026-01-06

A closer look at a BGP anomaly in Venezuela

This post analyzes a BGP route leak involving Venezuela's state-run ISP CANTV (AS8048), arguing the anomaly was likely due to poor routing policy rather than malicious intent.

Innovating to address streaming abuse — and our latest transparency report

Cloudflare's latest transparency report (H1 2025) highlights its evolving approach to combating streaming abuse and copyright infringement.

Streamlining Security Investigations with Agents

Slack's Security Engineering team built an AI agent system to automate and improve security alert investigations at scale.

A Decade of Defense: Celebrating Grab's 10th Year Bug Bounty Program

Grab celebrates the 10th anniversary of its bug bounty program in partnership with HackerOne, reflecting on a decade of collaborative security research.

Post-quantum security for SSH access on GitHub

GitHub is adding a post-quantum secure SSH key exchange algorithm to protect Git data access against future quantum computing threats.

Slack

71 min read

Security•2025-09-04

Building Slack’s Anomaly Event Response

This post introduces Slack's Anomaly Event Response (AER), a proactive security system that automatically terminates user sessions upon detecting suspicious behavior.

Hijacking Amazon EventBridge for launching Cross-Account attacks

This article explores how AWS EventBridge cross-account configurations can be exploited for infiltration, exfiltration, and persistent attacks.

How we built enterprise search to be secure and private

Slack's enterprise search architecture prioritizes security and privacy when integrating external data sources like Google Drive and GitHub into Slack search.

Kube-Policies: Guardrails for Apps Running in Kubernetes

This post describes how a Compute Security team built kube-policies, a custom Kubernetes admission controller on top of Open Policy Agent (OPA) to replace Pod Security Policies with adaptive security guardrails.

Enhanced Authorization with Square

This post covers Square's three key tools for enhancing payment authorization rates and reducing fraud.

Common annotated security keys

The article introduces Microsoft's Common Annotated Security Key (CASK) standard, an open format for minting identifiable security tokens that improve secret detection accuracy.

Engineering@Microsoft

1ES

ADO Azure DevOps GHAS

GitHub Advanced Security

sdl

security

Static analysis