Skip to content

Matt Austin, Director of Security Research

Matt is an accomplished application security expert with over 11 years of experience focused on security research, development, and engineering.

Subscribe Now
    Topics
    Contrast Blocked Confluence CVE Attacks—Even Before the Patch

    Contrast Blocked Confluence CVE Attacks—Even Before the Patch

    On August 25, Atlassian released security updates to address a remote code execution vulnerability (CVE-2021-26084)..

    How It Took Two Years to Resolve Remote Code Execution Vulnerability CVE-2020-17091

    How It Took Two Years to Resolve Remote Code Execution Vulnerability CVE-2020-17091

    Microsoft Teams vulnerability exposed serious risk to the software supply chain

    CONTRAST LABS REVEALS DEPENDENCY CONFUSION VULNERABILITY IN MICROSOFT TEAMS

    CONTRAST LABS REVEALS DEPENDENCY CONFUSION VULNERABILITY IN MICROSOFT TEAMS

    When the COVID-19 pandemic forced a large percentage of the world’s office workers to begin working remotely a year..

    DEPENDENCY CONFUSION: A NEW THIRD-PARTY RISK FOR THE SOFTWARE FACTORY

    DEPENDENCY CONFUSION: A NEW THIRD-PARTY RISK FOR THE SOFTWARE FACTORY

    The SolarWinds attack has been extensively covered over the past two months—and rightly so. It has been characterized..

    CVE-2018-15685 - Electron WebPreferences Remote Code Execution Finding

    Contrast Labs has discovered a remote code execution (RCE) vulnerability affecting apps with the ability to open nested..

    Google Docs May Still be Vulnerable to Phishing Attacks

    Google Docs May Still be Vulnerable to Phishing Attacks

    On Tuesday, users of Google Docs were targeted with an email phishing attack. The email content was a ruse to trick..

    DOM XSS in wix.com

    DOM XSS in wix.com

    Wix.com, a hosting provider which claims to host millions of websites, contains an XSS that leads to administrator..