Laura Verheyde

Smiling woman with short brown hair wearing a yellow top and backpack with purple flowers in background.
About

Laura Verheyde

Resource hub

Articles by Laura Verheyde

more posts
Close-up of an orange circuit board pattern with the Secure Code Warrior logo in the top left corner.
Blog
Filter Label
This is some text inside of a div block.

What is Trojan Source and how does it sneak into your source code

Learn More
Close-up of a coiled bright green snake resting on a branch against a dark background.
Blog
Filter Label
This is some text inside of a div block.

Understand the path traversal bug in Python’s tarfile module

Recently, a team of security researchers announced their finding of a fifteen year old bug in Python’s tar file extraction functionality. The vulnerability was first disclosed in 2007 and tracked as CVE-2007-4559. A note was added to the official Python documentation, but the bug itself was left unpatched.

Learn More
Driver navigating city traffic with GPS phone mounted on dashboard inside car.
Blog
Filter Label
This is some text inside of a div block.

Hardcoded credentials can introduce security risks

Learn more about the risks associated with hardcoded credentials and social engineering as we discuss Uber's recent security incident and why it's so important for organizations to shift left and ensure their developers are up-to-date on secure coding best practices.

Learn More
Cursor hand pointing to the word 'Security' next to a security shield icon on a digital screen.
Blog
Filter Label
This is some text inside of a div block.

The Log4j vulnerability explained - Its attack vector and how to prevent it

In December 2021, a critical security vulnerability Log4Shell was disclosed in the Java library Log4j. In this article, we breakdown the Log4Shell vulnerability into the simplest form for you to grasp the basic and introduce you to a mission - a playground where you can try exploiting a simulated website using the knowledge of this vulnerability.

Learn More
White icon of a laptop with a bug under a magnifying glass on a dark blue and gold chain background.
Blog
Filter Label
This is some text inside of a div block.

Deep-Dive: Up close and personal with the MOVEit zero-day vulnerability

The MOVEit scenario is a little different from what many developers and AppSec professionals may have previously experienced, and you can test your SQLi-slaying skills in a live simulation right here.

Learn More
Abstract overlapping translucent pink geometric shapes on a dark blue background.
Blog
Filter Label
This is some text inside of a div block.

Deep-Dive: Finding and fixing high-severity libcurl/curl vulnerabilities

Affected versions of the curl library are susceptible to a Heap-based buffer overflow vulnerability, related to a legacy issue with the SOCKS5 proxy protocol. Learn how to find and fix this vulnerability type with a playable mission.

Learn More
Blue hexagonal background with a yellow tab labeled Blog and a dark robot icon on the right.
Blog
Filter Label
This is some text inside of a div block.

Deep-dive: Navigating vulnerabilities generated by AI coding assistants

Explore the security risks of AI in software development and learn how to navigate these challenges effectively with Secure Code Warrior.

Learn More
Office printer on desk with a printed paper coming out, surrounded by blue and purple lighting.
Blog
Filter Label
This is some text inside of a div block.

Deep Dive: Navigating the Critical CUPS Vulnerability in GNU-Linux Systems

Discover the latest security challenges facing Linux users as we explore recent high-severity vulnerabilities in the Common UNIX Printing System (CUPS). Learn how these issues may lead to potential Remote Code Execution (RCE) and what you can do to protect your systems.

Learn More