https://protocolreport.com/ Security reporting, protocol comparisons, and privacy-focused software analysis. en-us https://protocolreport.com/blog/red-hat-npm-provenance-gap/ protocolreport:red-hat-npm-provenance-gap Red Hat confirmed a supply-chain compromise in @redhat-cloud-services npm packages. The harder lesson is that signed provenance can still carry malicious code when the trusted workflow itself is abused. Thu, 04 Jun 2026 00:00:00 GMT https://protocolreport.com/blog/android-linux-kev-patch-triage/ protocolreport:android-linux-kev-patch-triage Google's June Android bulletin and CISA's KEV additions put an Android Framework flaw and a Linux cgroups flaw into the same urgent patch window. The practical work is mobile and container exposure scoping. Thu, 04 Jun 2026 00:00:00 GMT https://protocolreport.com/blog/dashlane-brute-force-vault-risk/ protocolreport:dashlane-brute-force-vault-risk Dashlane confirmed a brute-force campaign against user accounts, while reporting says encrypted vault data for a small number of accounts was downloaded. The practical lesson is account hardening, cryptography settings, device approval, and response planning. Wed, 03 Jun 2026 00:00:00 GMT https://protocolreport.com/blog/storm-2949-sspr-cloud-breach/ protocolreport:storm-2949-sspr-cloud-breach Microsoft's Storm-2949 report shows how self-service password reset abuse can become cloud-wide access across Key Vault, web apps, SQL, storage, VMs, and MFA registration. Wed, 03 Jun 2026 00:00:00 GMT https://protocolreport.com/blog/passkeys-account-recovery-risk/ protocolreport:passkeys-account-recovery-risk Passkeys remove the reusable password from login, but the hard security work moves to recovery, sync, device binding, fallback methods, and privileged account policy. Tue, 02 Jun 2026 00:00:00 GMT https://protocolreport.com/blog/post-quantum-messaging-migration/ protocolreport:post-quantum-messaging-migration Quantum-safe messaging is not a single algorithm swap. Teams need to understand hybrid key agreement, ratchets, group behavior, backups, identity keys, and migration transparency. Tue, 02 Jun 2026 00:00:00 GMT https://protocolreport.com/blog/discord-e2ee-voice-video-default/ protocolreport:discord-e2ee-voice-video-default Discord says every voice and video call outside Stage channels now uses end-to-end encryption by default. The practical result is stronger media confidentiality, with clear limits around text, metadata, verification, previews, and device compromise. Mon, 01 Jun 2026 00:00:00 GMT https://protocolreport.com/blog/instagram-encrypted-dms-removed/ protocolreport:instagram-encrypted-dms-removed Instagram ended support for optional end-to-end encrypted direct messages on May 8, 2026. The change does not prove misuse, but it changes what users, creators, and community operators should assume about sensitive conversations. Mon, 01 Jun 2026 00:00:00 GMT https://protocolreport.com/blog/globalprotect-cookie-bypass-vpn-risk/ protocolreport:globalprotect-cookie-bypass-vpn-risk Palo Alto Networks updated CVE-2026-0257 after limited exploit attempts against unpatched GlobalProtect deployments. The practical response is configuration review, fixed PAN-OS versions, and VPN-edge incident triage. Sun, 31 May 2026 00:00:00 GMT https://protocolreport.com/blog/composio-ai-connector-token-incident/ protocolreport:composio-ai-connector-token-incident Composio's May 2026 incident exposed the security reality of agent connector platforms: a single tool hub may hold GitHub, email, chat, calendar, cloud, and API-key access that must be revocable under pressure. Sun, 31 May 2026 00:00:00 GMT https://protocolreport.com/blog/glassworm-developer-botnet-takedown/ protocolreport:glassworm-developer-botnet-takedown CrowdStrike's May 2026 Glassworm takedown cut off a developer-targeting botnet, but teams still need to treat infected workstations, tokens, packages, and repositories as an active supply-chain risk. Sat, 30 May 2026 00:00:00 GMT https://protocolreport.com/blog/google-workspace-dbsc-session-cookie-theft/ protocolreport:google-workspace-dbsc-session-cookie-theft Google made Device Bound Session Credentials generally available for Workspace users in Chrome on Windows. The useful change is narrower than passwordless login: it targets session theft after authentication. Sat, 30 May 2026 00:00:00 GMT https://protocolreport.com/blog/github-enterprise-signing-key-rotation/ protocolreport:github-enterprise-signing-key-rotation GitHub's May 2026 Enterprise Server signing-key rotation shows how a poisoned developer tool can force enterprise software verification, release, and secret-rotation decisions. Fri, 29 May 2026 00:00:00 GMT https://protocolreport.com/blog/whatsapp-encryption-lawsuit-privacy-claims/ protocolreport:whatsapp-encryption-lawsuit-privacy-claims Texas sued Meta and WhatsApp over end-to-end encryption claims. The useful question is where personal chats, business chats, backups, reports, AI features, and metadata actually sit. Fri, 29 May 2026 00:00:00 GMT https://protocolreport.com/blog/kali365-microsoft-365-oauth-token-phishing/ protocolreport:kali365-oauth-token-phishing The FBI's May 2026 Kali365 alert shows why Microsoft 365 teams need to treat device-code OAuth flows, refresh tokens, and session revocation as first-class controls. Fri, 29 May 2026 00:00:00 GMT https://protocolreport.com/blog/privage-vs-discord-security-privacy-comparison/ protocolreport:privage-discord-comparison A practical comparison of Privage and Discord for private communities, paid groups, gaming teams, and crypto-native teams deciding where their conversations should live. Thu, 28 May 2026 00:00:00 GMT https://protocolreport.com/blog/end-to-end-encryption-failing-ux-test/ protocolreport:e2ee-ux-test A rigorous technical teardown of top-tier messaging protocols and how cryptographic certainty can collapse under poor product design. Thu, 28 May 2026 00:00:00 GMT https://protocolreport.com/blog/slack-vs-signal-enterprise-security-review/ protocolreport:slack-signal-enterprise-review A security review comparing Slack and Signal across encryption, metadata retention, open source posture, and enterprise risk. Thu, 28 May 2026 00:00:00 GMT https://protocolreport.com/blog/best-discord-alternatives-communities-teams-private-groups/ protocolreport:discord-alternatives-guide A security-first evaluation of chat platforms that can replace Discord when moderation controls, data ownership, privacy, or professional workflows matter more than gaming-native defaults. Thu, 28 May 2026 00:00:00 GMT https://protocolreport.com/blog/zero-log-claims-under-pressure-2024-server-seizure-report/ protocolreport:zero-log-claims-report Analyzing the technical infrastructure of leading VPN providers after international law enforcement audits. Thu, 28 May 2026 00:00:00 GMT https://protocolreport.com/blog/misconfigured-s3-buckets-automated-exploitation-crisis/ protocolreport:s3-bucket-exposure-analysis How simple policy errors in AWS environments are leading to sophisticated, automated data exfiltration pipelines. Thu, 28 May 2026 00:00:00 GMT https://protocolreport.com/blog/bypassing-biometrics-synthetic-identity-injections/ protocolreport:biometric-injection-analysis Exploring vulnerabilities in mobile trusted execution environments and sensor spoofing methodologies. Thu, 28 May 2026 00:00:00 GMT