Security Insights

Practical cybersecurity guidance, threat intelligence, and industry perspectives from the Helm team.

May 20, 2026
The worms will continue until the ecosystem improves

458 packages. 5 ship to production. The rest are attack surface.

Read on Substack →
April 30, 2026
Building an AI App on Azure: What I Actually Learned

A serverless pipeline that watches RSS feeds, summarizes new posts with an LLM, and emails subscribers, built entirely with Azure Logic Apps, Terraform, and no long-lived secrets.

Read on Substack →
April 22, 2026
Mythos Zero Days Aren't the Real Problem

Vulnerability management hinges on good architecture practices. AI-powered vulnerability discovery doesn't solve for this in any meaningful way.

Read on Substack →
April 20, 2026
Your Google Workspace Has Hundreds of OAuth Grants. Do You Know What They Can Do?

The Vercel incident is a good reminder: do you actually control what OAuth apps can access your Google Workspace?

Read on Substack →
March 24, 2026
Supply chain attack alert: LiteLLM 1.82.8 is compromised.

Textbook PyPI supply chain attack, now targeting AI infrastructure. Treat your LLM stack like any other production dependency.

Read on Substack →
March 4, 2025
Your Free Email Might Be Pretty Expensive in a Data Breach

Read on Substack →
March 4, 2025
Easy Playbooks to Make Ransomware Criminals Cry

Read on Substack →
March 4, 2025
You’ve got Mail (and Misdirected Funds): A live demo of email hacking

Read on Substack →
March 4, 2025
Threat Alert! How to Check and Secure your Google, Microsoft, and Apple Accounts

Read on Substack →

Read all articles and subscribe for weekly insights.

Subscribe on Substack →

Topics We Cover

🚨
Incident Response

Breach analysis, response lessons, and IR best practices

🔍
Threat Intelligence

Emerging attack techniques and threat actor TTPs

🤖
AI Security

Securing AI tools, prompt injection, and AI governance

📋
Compliance

HIPAA, NIST, and practical compliance guidance