What's New
Fresh skills, courses, tracks, and platform updates from Defend the Org.
Latest release
Megalodon — Mass GitHub Workflow Backdooring
On 2026-05-18, an attacker pushed malicious .github/workflows/ entries into thousands of GitHub repos in a six-hour window, exfiltrating CI secrets and cloud…
Last Week
Log Analysis Methodology
The substrate skill underneath detection, hunting, IR, and SOC. Learn how a defender thinks about logs through the loop: Anchor, Scope, Pivot, Corroborate,…
RubyGems GemStuffer
A public supply-chain disclosure (GemStuffer, 2026-05-13) describes 150+ malicious RubyGems published as a data-exfiltration dead-drop. As the security…
May 2026
Notifications
A bell icon in the top right keeps you in the loop on new labs, friend requests, and platform updates. Tune what you hear about in account settings.
The Fracture Within
A ransomware alert detonates across your finance department — but something deeper is moving through the network. A nation-state actor has been inside for…
What's New page
Browse every recent skill, course, track, and platform update in one place. Subscribe to the RSS feed to get drops as they ship.
RSS feed for releases
Subscribe to /whats-new/feed.xml to get every new skill, course, and feature in your RSS reader.
Defend the Org Public Launch
May 6, 2026
Defend the Org launches publicly
The platform goes live with 5 Skills, 59 Labs, 3 Courses, 6 Tracks.