Writing at Stonebrief

A. Shah

CVEs don't lie. Here's what this one actually does.

Apr 20, 2026

A single compromised email led to 7.7TB of LAPD data exfiltration - here's what telemetry actually showed

A compromised email credential at the LA City Attorney's Office led to the exfiltration of 7.7TB of sensitive LAPD records-case files, forensic evidence, and internal communications. No vulnerability was exploited. No malware was deployed. The attacker authenticated through the…

Continue reading

Archive

  1. Apr 20, 2026Axios Compromise: What Actually Happened
  2. Apr 20, 2026Chrome Zero-Day Exploited in 2026
  3. Apr 20, 2026CVE-2025-1234: Type Confusion in V8 JavaScript Engine Exploited in the Wild
  4. Apr 20, 2026CVE-2024-21412: SmartScreen Bypass via Internet Shortcut Files
  5. Apr 20, 2026Chrome's Renderer Process Vulnerability: Understanding the Exploit Window
  6. Apr 20, 2026axios CVE-2025-3891: What the Advisories Don't Say About Immutable Images