Forgot to Update Livewire. Got Hacked

Published by hadi on

Daniel Petrica tells the story of how an unpatched Livewire vulnerability on a forgotten side project exposed Mailcoach API keys and led to 50,000 spam emails being sent. It is a useful reminder to keep dormant apps updated, and a good real-world example of how Docker can limit the blast radius when something goes wrong.

Read more

Categories: PHP
Tags:

Related Posts

PHP

Eloquent Query Classes Pattern

Learn how to use Eloquent Query Classes to organize important database logic in Laravel without adding a full repository layer. Read more

PHP

Architecture Decision Record

A concise explanation of ADRs: short documents that capture an important decision, the context behind it, and its consequences. Good practical advice on keeping them lightweight, readable, and useful over time. Read more

PHP

Building RAG in Laravel: Four Ingestion Bugs That Silently Wreck Retrieval

Every Laravel RAG tutorial builds the same ingestion pipeline (chunk, embed, store) and stops the moment the agent answers on screen. None of them check whether retrieval is any good. But retrieval quality is decided Read more…