attack-surface

The Next Enterprise Exposure Wave: Old Management Surfaces, New Root Paths

John Z Black Mar 18, 2026

Security Operations & Resilience #management-plane #ip-kvm #telnet #linux #root-access #hardening #attack-surface

An unpatched telnetd with unauthenticated root RCE. Nine critical IP-KVM flaws. A Linux privilege escalation tied to systemd timing. Different CVEs, same underlying problem: forgotten management plumbing.

Your AI Assistant Is an Attack Surface Now

John Z Black Mar 10, 2026

AI & Security #ai-security #openclaw #supply-chain #prompt-injection #nation-state #attack-surface

Exposed admin panels leaking API keys, prompt injection as a supply chain weapon, fake installer packages on npm, and nation-states using AI to hack at scale. AI agents just became everyone's security problem.