Archive - Alex Fadeev

Guarding Large Language Models From Prompt Injection Attacks

How malicious instructions slip through everyday data—and seven practical defenses

Jul 30 •

Master Secrets Management: A Checklist for Every Cloud Stage

From first deployment to multi-cloud scale, here’s a step-by-step playbook for keeping credentials safe and developers productive.

Jul 24 •

May 2025

Crypto Drainers: Understanding the Threat Landscape

How Cybercriminals Leverage Ready-made Tools to Steal Cryptocurrency—and What You Can Do to Protect Yourself

May 27 •

The Hidden Dangers of AI Note-Taking Apps: A Cautionary Tale

How a Hardcoded API Key in Granola AI Exposed Users’ Private Meeting Transcripts

May 26 •

April 2025 MEXC API Keys Breach: How Malicious Packages Can Compromise Your Assets

Understanding the Risks of Insecure API Key Management and How to Protect Your Infrastructure

May 23 •

How an S3 File Upload Trigger Can Lead to AWS Lambda Command Injection

In serverless applications, developers often wire up S3 file uploads to AWS Lambda functions for processing.

May 22 •

Web2 Vulnerabilities: A Hidden Threat to Web3 Security

Web2 Vulnerabilities: A Hidden Threat to Web3 Security

May 21 •

A Hidden Risk in Plain Sight: Email Spoofing in AWS SES

Amazon Simple Email Service (SES) is a reliable and scalable tool for sending transactional and marketing emails.

May 21 •

#nojs-banner { position: fixed; bottom: 0; left: 0; padding: 16px 16px 16px 32px; width: 100%; box-sizing: border-box; background: red; color: white; font-family: -apple-system, "Segoe UI", Roboto, Helvetica, Arial, sans-serif, "Apple Color Emoji", "Segoe UI Emoji", "Segoe UI Symbol"; font-size: 13px; line-height: 13px; } #nojs-banner a { color: inherit; text-decoration: underline; } This site requires JavaScript to run correctly. Please turn on JavaScript or unblock scripts