Research & Intelligence

Eresus research, advisory, and security news

We collect writing, advisories, and current-event analysis around AI security, the MCP ecosystem, application security, and real attack chaining here.

Advisory Analysis · 3Guide · 1News · 3Research · 100

Featured Posts

Advisory AnalysisAI Infrastructure

CVE-2026-7482: Ollama GGUF Heap Out-of-Bounds Read — Full Technical Analysis

CVE-2026-7482 is a critical heap out-of-bounds read in Ollama's GGUF model loader (CVSS 9.1). Unauthenticated remote attackers can leak ~2 MB of heap memory per request — including environment variables, API keys, system prompts, and concurrent users' conversation data. Two-bug chain, full PoC, patch diff, and Ollama 0.17.1 fix.

2026-05-05Read

Advisory AnalysisHosting

CVE-2026-41940: Emergency Action Plan for cPanel & WHM Authentication Bypass

CVE-2026-41940 is a critical authentication bypass in cPanel & WHM affecting all versions after 11.40. Covers affected versions, patch commands, temporary firewall mitigations, session IOC checks, and a fleet action checklist for hosting teams.

2026-05-05Read

Advisory AnalysisInfrastructure

Copy Fail CVE-2026-31431: Linux Kernel Local Privilege Escalation

CVE-2026-31431 (Copy Fail) is a local privilege escalation vulnerability in the Linux kernel's algif_aead cryptographic interface. Affects kernels from 4.14 to 6.12.x across Ubuntu, RHEL, Debian, Amazon Linux, and more. Includes a kernel module workaround, container hardening steps, and a patch strategy for Kubernetes nodes and CI runners.

2026-05-05Read

Latest Posts

GuideDevSecOps

What Is AWS IAM in Cloud Security?

Learn how AWS Identity and Access Management (IAM) controls access, prevents data breaches, and serves as the ultimate perimeter in modern cloud security.

2026-04-24Read

NewsCloud Security

Vercel, Context.ai, and AI SaaS Security

Eresus analyzes the April 20, 2026 Vercel incident linked to Context.ai and explains why OAuth-connected AI tools now belong in the core SaaS attack surface.

2026-04-22Read

NewsAI Infrastructure

The April 2026 MCP RCE Wave

Why MCP security depends on architecture, identity, tool isolation, and registration control more than a single CVE.

2026-04-22Read

NewsAI Security

AI Agent Traps: Web Attacks Against Agents

How hidden web content, poisoned context, and tool access can manipulate autonomous AI agents in real enterprise workflows.

2026-04-22Read

DevSecOps

Building a Zero Trust Architecture for Enterprise AI and LLM Deployment

Why integrating an LLM requires strict micro-segmentation. Learn how to construct a Zero Trust framework to prevent GenAI from becoming an internal...

2026-04-14Read

Adversarial ML

What is AI Security? A Complete Enterprise Blueprint for Securing Machine Learning Ecosystems

A deep dive into the complex world of AI Security. Understand the mechanics behind data poisoning, adversarial ML evasion, and prompt injection attacks...

2026-04-14Read

AI Security

OWASP Top 10 for LLMs: The Definitive Guide to AI Vulnerabilities

Explore the official OWASP Top 10 for Large Language Models (LLMs). From Prompt Injection to Supply Chain Attacks, learn how to secure your enterprise...

2026-04-14Read

Red Teaming

The Art of LLM Jailbreaking: Demystifying Offensive Prompt Engineering

How do Red Teamers bypass the safety filters of Large Language Models? Dive deep into the manipulative art of LLM Jailbreaking, DAN prompts, and...

2026-04-14Read

AI Security

AI Compliance Crisis: Navigating GDPR/KVKK in RAG Architectures

Discover the severe data privacy risks of Enterprise RAG models. Learn how to align Large Language Models with GDPR mandates like the 'Right to be...

2026-04-14Read

1 2 3 4 5 6 7 8 9 10 11 12