Insights

Security notes & articles

Short, practical notes from VEXA on what we see in real work – SaaS pentests, cloud reviews, Kubernetes security and AI security experiments. These topics can also be expanded into talks or training modules on request.

Featured topics

These are example topics that VEXA can write or speak about. For now they are placeholders – you can later link them to full blog posts or slide decks.

Common issues in B2B SaaS pentests

Notes on authentication, authorisation (IDOR), tenant isolation and API mistakes we regularly see in B2B and finance-style products.

Cloud misconfigurations that matter

Examples of IAM, network and storage issues in AWS/Azure that create real attack paths – beyond basic “open port” findings.

Kubernetes security for busy teams

How to think about namespaces, RBAC, pod security and workload isolation without getting lost in every single YAML detail.

AI assistants & prompt injection

How LLM-based copilots can be abused when they are connected to email, tickets, files or finance systems – and what safer patterns look like.

Security careers: practical view

A simple breakdown of roles (pentest, AppSec, cloud security, AI security) and how students can navigate the noise and focus on skills that matter.

Designing better security reports

Thoughts on making reports more useful to engineers and leadership – clear impact, realistic recommendations and less noise.

Want a talk or workshop on these topics?

If you are a company or a college and would like one of these topics delivered as a focused session, reach out with your audience level and time available.

Share your requirement via the Contact page and mention which topic you are interested in. We can suggest a realistic session format (1–2 hour talk, half-day workshop or 1–3 day program).