• AirBorne: Wormable zero-click remote code execution (RCE) in AirPlay protocol https://www.oligo.security/blog/airborne 19 comments 29/4/2025
• 0.0.0.0 Day: Exploiting Localhost APIs from the Browser https://www.oligo.security/blog/0-0-0-0-day-exploiting-localhost-apis-from-the-browser 3 comments 9/8/2024
• 0.0.0.0 Day: Exploiting Localhost APIs from the Browser https://www.oligo.security/blog/0-0-0-0-day-exploiting-localhost-apis-from-the-browser 8 comments 7/8/2024

• Critical zero day found in Airplay. https://www.oligo.security/blog/airborne 9 comments 3/5/2025 technology
• Wormable Zero-Click Remote Code Execution (RCE) in AirPlay Protocol Puts Apple & IoT Devices at Risk https://www.oligo.security/blog/airborne 3 comments 29/4/2025 reverseengineering
• AirBorne: Wormable Zero-Click RCE in Apple AirPlay Puts Billions of Devices at Risk https://www.oligo.security/blog/airborne 24 comments 29/4/2025 netsec
• 0.0.0.0 Day: Exploiting Localhost APIs From the Browser https://www.oligo.security/blog/0-0-0-0-day-exploiting-localhost-apis-from-the-browser 30 comments 7/8/2024 netsec
• Multiple Vulnerabilities in Pytorch Model Server (Torchserve) (CVSS 9.9, CVSS 9.8) Walkthrough https://www.oligo.security/blog/shelltorch-explained-multiple-vulnerabilities-in-pytorch-model-server 2 comments 8/7/2024 netsec
• ShadowRay: First Known Attack Campaign Targeting AI Workloads Exploited In The Wild https://www.oligo.security/blog/shadowray-attack-ai-workloads-actively-exploited-in-the-wild 5 comments 26/3/2024 netsec