Tokenmaxxing If you work in cybersecurity, you already know the feeling of having more to investigate than hours in the day. The security research backlog grows while you sleep. Threat feeds update faster than you...

blog.sentry.security/tokenmaxxing/

You wake up and check your token usage before your email.

You have 3 console tabs open: one for your main #AI sub, one for the backup subscription you told yourself was "just for overflow," and one for pricing on a third service you're evaluating "for research purposes.

Abusing Exposed Sourcemaps Information stored in sourcemap files can lead to major security breaches. If you’re looking to keep your production environment safe without sacrificing the benefits of modern build pipelines, read o...

And if you haven’t yet, but want to understand how this attack works and how it can be exploited in real-world scenarios before it’s too late, read Sentry’s original piece:
blog.sentry.security/abusing-expo...

Back in January 2025, we published research on how exposed #sourcemaps can lead to major security breaches.

Little did we, or the industry, know… how soon this would play out at scale, including #Anthropic.

This year, at the author space, you’ll find Drinor Selmanaj signing his book, Adversary Emulation with MITRE ATT&CK. 📚

#defcon #defcon33 #cybersecurity #booksigning

We’re flying to Vegas this August. See you at DEF CON 33.

Our research, “Hijacking AI Agents with ChatML Role Injection” just got accepted at the AppSec Village 💀

#DEFCON#AppSec #AIsecurity #ChatML

AI Red Team: Safety vs. Security AI Red Teaming should differentiate between security and safety to effectively address the unique challenges posed by AI systems, ultimately ensuring that they are secure by design and safe to use.

This is something you might want to keep an eye on when talking about AI.
blog.sentry.security/ai-red-teami...

In this written and documented piece by Arjanit Isufi, you’ll explore a real-world case where Webpack #Sourcemaps exposed an undocumented endpoint, leading to unauthorized password changes and account takeovers. ♞

Read the full piece here: 🔗 bit.ly/43JqoWx

Today in the “Sentry Humans” series, we’re spotlighting 🖤 Adriatik Raci and his impactful work.

♞ Software Engineer at Sentry since 2017

Here - so you can copy/paste and search yourself:
CVE-2023-23512 and CVE-2023-35990
🔗 bit.ly/420GDvX

♞ Here’s a bite-sized breakdown of #AISecurity and #AISafety from a #RedTeam perspective.

Read the full piece here: 🔗 bit.ly/4ihbMSM

Sentry is heading to #PLRB 2025! ♞

We’re excited to be part of it this year! If you’re attending, stop by, let’s connect, and explore how cyber and insurance intersect!

#Insurance #AI #Sentry #PLRB

We won’t say the rest is history. We want you to see the full, detailed breakdown of the attack in action.

♞ Click here to do so: bit.ly/3Xp8DaV

Episode 11: What Does Zero Trust Mean to You? YouTube video by Zero Trust Journey

Grab a cup of coffee ☕ and tune into this thought-evoking episode of Zero Trust Journey, where our co-founder, Drinor Selmanaj, takes the mic as a guest to dive deep into the world of Zero Trust security.

P.S. The coffee cup better be big - there’s a lot to take in! ☕ #ZeroTrust #CyberSecurity

Whether you're part of a red or blue team, a pentester, an information security officer, or someone eager to enhance their hands-on skills by emulating adversary behavior—this book is for you!

Check it out and get it on your Kindle --> bit.ly/3ZUtUuZ

#sentry #cybersecurity #oreilly