https://stream.echo6.co/videos/watch/cf649daa-f16c-43d9-97d5-f1cb638737b3 ⬇️ OPEN FOR LINKS TO ARTICLES TO LEARN MORE ⬇️ @endingwithali → Twitch: https://twitch.tv/endingwithali Twitter: https://twitter.com/endingwithali YouTube: https://youtube.com/@endingwithali Everywhere else: https://links.ali.dev Want to work with Ali? endingwithalicollabs@gmail.com [❗] Join the Patreon→ https://patreon.com/threatwire 00:00 0 - Intro 00:11 1 - Critical NextJS CVE Found 01:29 2 - Wiz sold to Google 02:34 3 - MAJOR CVEs for Ingress NGINX Controller 05:07 4 - Popular Github Actions Compromised 06:14 5 - Outro LINKS 🔗 Story 1: Critical NextJS CVE Found https://github.com/vercel/next.js/security/advisories/GHSA-f82v-jwr5-mffw https://zhero-web-sec.github.io/research-and-things/nextjs-and-the-corrupt-middleware https://nextjs.org/blog/cve-2025-29927 https://search.censys.io/search?resource=hosts&sort=RELEVANCE&per_page=25&virtual_hosts=EXCLUDE&q=(next.js)+and+services.software.product%3D'Next.js' 🔗 Story 2: Wiz sold to Google https://www.statista.com/statistics/478176/google-public-cloud-revenue/ https://blog.google/inside-google/company-announcements/google-agreement-acquire-wiz/ https://cloud.google.com/blog/products/identity-security/google-completes-acquisition-of-mandiant https://techcrunch.com/2022/09/12/google-closes-5-4b-mandiant-acquisition/ https://blog.google/inside-google/company-announcements/google-agreement-acquire-wiz/ https://techcrunch.com/2024/11/02/why-wiz-really-turned-down-googles-23b-offer/ 🔗 Story 3: MAJOR CVEs for Ingress NGINX Controller https://thehackernews.com/2025/03/critical-ingress-nginx-controller.html https://www.wiz.io/blog/ingress-nginx-kubernetes-vulnerabilities https://x.com/LitMoose/status/1904289876947751147 https://kubernetes.io/blog/2025/03/24/ingress-nginx-cve-2025-1974/ 🔗 Story 4: Popular Github Actions Compromised https://www.stepsecurity.io/blog/harden-runner-detection-tj-actions-changed-files-action-is-compromised https://www.wiz.io/blog/github-action-tj-actions-changed-files-supply-chain-attack-cve-2025-30066 -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆ Our Site → https://www.hak5.org Shop → http://hakshop.myshopify.com/ Community → https://www.hak5.org/community Subscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1 Support → https://www.patreon.com/threatwire Contact Us → http://www.twitter.com/hak5 Founded in 2005, Hak5's mission is to advance the InfoSec industry. We do this through our award winning educational podcasts, leading pentest gear, and inclusive community – where all hackers belong. Mon, 13 Apr 2026 20:49:38 GMT https://validator.w3.org/feed/docs/rss2.html PeerTube - https://stream.echo6.co https://stream.echo6.co/client/assets/images/icons/icon-512x512.png https://stream.echo6.co/videos/watch/cf649daa-f16c-43d9-97d5-f1cb638737b3 All rights reserved, unless otherwise specified in the terms specified at https://stream.echo6.co/about and potential licenses granted by each content's rightholder.