Cybersecurity Blog | Penetration Testing, Website Security & Incident Response | Red Secure Tech

Cybersecurity Insights
& Security Research

Expert analysis, threat intelligence, and practical guidance from Red Secure Tech's security specialists — covering penetration testing, vulnerability assessment, incident response, and secure development for UK businesses.

GootLoader Uses Malformed ZIPs to Evade Detection

The JavaScript-based malware loader GootLoader has adopted a novel anti-analysis technique that abuses malformed ZIP archives to evade security detection while still functioning seamlessly on Windows...

Eng. Donya Bino January 17, 2026

Read Full Article

All Articles 1098 articles — Page 55 of 183

Hacking

GootLoader Uses Malformed ZIPs to Evade Detection

The JavaScript-based malware loader GootLoader has adopted a novel anti-analysis technique that abuses malformed ZIP archives to evade security detection w...

Eng. Donya Bino
Jan 17, 2026

Read Article

Red Teaming

How Red Teams Discover XSS Others Miss

Most teams already run scanners.Many still miss XSS.That’s because XSS is rarely a simple input problem.It’s a data-flow and context problem.Re...

Eng. Donya Bino
Jan 17, 2026

Read Article

Hacking

China-linked APT Targets North American Critical Infrastructure

A China-nexus advanced persistent threat (APT), tracked as UAT-8837 by Cisco Talos, has been observed targeting critical infrastructure sectors in North Am...

Eng. Donya Bino
Jan 16, 2026

Read Article

Hacking

AWS CodeBuild Flaw Could Have Enabled Massive Supply Chain Attacks

An Amazon Web Services (AWS) CodeBuild critical misconfiguration could allow an attacker to fully compromise all of the AWS-managed GitHub repositories inc...

Eng. Donya Bino
Jan 16, 2026

Read Article

Awareness

Cross‑Site Scripting (XSS) Explained Simply

Cross Site Scripting, usually called XSS, happens when a website shows user input without properly checking it first.In simple terms:the website trusts dat...

Eng. Donya Bino
Jan 16, 2026

Read Article

Hacking

Why Web Apps Are Still the #1 Target for Cyber Attacks

Companies today rely heavily on web applications for conducting their business. From online banking sites to ecommerce stores, web applications serve three...

Eng. Donya Bino
Jan 16, 2026

Read Article

Cybersecurity Insights
& Security Research

Editor's Pick

GootLoader Uses Malformed ZIPs to Evade Detection

GootLoader Uses Malformed ZIPs to Evade Detection

How Red Teams Discover XSS Others Miss

China-linked APT Targets North American Critical Infrastructure

AWS CodeBuild Flaw Could Have Enabled Massive Supply Chain Attacks

Cross‑Site Scripting (XSS) Explained Simply

Why Web Apps Are Still the #1 Target for Cyber Attacks

Explore Our Cybersecurity Services

Website Recovery

Penetration Testing

Vulnerability Assessment

Secure Web Development

Red Teaming

Threat Intelligence

Cybersecurity Insights & Security Research

GootLoader Uses Malformed ZIPs to Evade Detection

GootLoader Uses Malformed ZIPs to Evade Detection

How Red Teams Discover XSS Others Miss

China-linked APT Targets North American Critical Infrastructure

AWS CodeBuild Flaw Could Have Enabled Massive Supply Chain Attacks

Cross‑Site Scripting (XSS) Explained Simply

Why Web Apps Are Still the #1 Target for Cyber Attacks

Website Recovery

Penetration Testing

Vulnerability Assessment

Secure Web Development

Red Teaming

Threat Intelligence

Cybersecurity Insights
& Security Research