⤷ Title: From 403 Forbidden to $$$$ How a Simple Extension Bypass Led to Unauthenticated Access to Private…
════════════════════════
𐀪 Author: KiRaaDx
════════════════════════
ⴵ Time: Tue, 13 Jan 2026 22:09:30 GMT
════════════════════════
⌗ Tags: #cybersecurity #bug_bounty_tips #bug_bounty
════════════════════════
𐀪 Author: KiRaaDx
════════════════════════
ⴵ Time: Tue, 13 Jan 2026 22:09:30 GMT
════════════════════════
⌗ Tags: #cybersecurity #bug_bounty_tips #bug_bounty
Medium
From 403 Forbidden to $$$$ How a Simple Extension Bypass Led to Unauthenticated Access to Private Documents
The target was a private HackerOne program that allows users to create organizations, upload documents, and share them naturally, documents…
⤷ Title: Can you Realistcally Hack a Wifi Network In 2026 — I Tried.
════════════════════════
𐀪 Author: Alex Grande
════════════════════════
ⴵ Time: Tue, 13 Jan 2026 23:32:49 GMT
════════════════════════
⌗ Tags: #security #ethical_hacking #hacking #technology #cybersecurity
════════════════════════
𐀪 Author: Alex Grande
════════════════════════
ⴵ Time: Tue, 13 Jan 2026 23:32:49 GMT
════════════════════════
⌗ Tags: #security #ethical_hacking #hacking #technology #cybersecurity
Medium
Can you Realistcally Hack a Wifi Network In 2026 — I Tried.
I Tried and this Happened…
⤷ Title: Cybersecurity Ethical Hacking — Discover the Top 3 Career Strategies for Career Advancement
════════════════════════
𐀪 Author: Franklin Rhodes
════════════════════════
ⴵ Time: Tue, 13 Jan 2026 23:32:07 GMT
════════════════════════
⌗ Tags: #hacking #cybersecurity #kali_linux #careers #infosec
════════════════════════
𐀪 Author: Franklin Rhodes
════════════════════════
ⴵ Time: Tue, 13 Jan 2026 23:32:07 GMT
════════════════════════
⌗ Tags: #hacking #cybersecurity #kali_linux #careers #infosec
Medium
Cybersecurity Ethical Hacking — Discover the Top 3 Career Strategies for Career Advancement
https://app.heygen.com/videos/39f38a8f25d040bfa12ad55d4eb63b5c
⤷ Title: How IDS, IPS, and Load Balancing Detection Tools Work in Penetration Testing
════════════════════════
𐀪 Author: mohandika
════════════════════════
ⴵ Time: Tue, 13 Jan 2026 23:28:00 GMT
════════════════════════
⌗ Tags: #security #penetration_testing #cybersecurity #load_balancing #ids_ips
════════════════════════
𐀪 Author: mohandika
════════════════════════
ⴵ Time: Tue, 13 Jan 2026 23:28:00 GMT
════════════════════════
⌗ Tags: #security #penetration_testing #cybersecurity #load_balancing #ids_ips
Medium
How IDS, IPS, and Load Balancing Detection Tools Work in Penetration Testing
Using IDS, IPS, and Load Balancing Detection Tools for Better Security
⤷ Title: IPC via Message Queue
════════════════════════
𐀪 Author: S12 - 0x12Dark Development
════════════════════════
ⴵ Time: Tue, 13 Jan 2026 23:05:13 GMT
════════════════════════
⌗ Tags: #cybersecurity #hackthebox #reverse_engineering #tryhackme #malware
════════════════════════
𐀪 Author: S12 - 0x12Dark Development
════════════════════════
ⴵ Time: Tue, 13 Jan 2026 23:05:13 GMT
════════════════════════
⌗ Tags: #cybersecurity #hackthebox #reverse_engineering #tryhackme #malware
Medium
IPC via Message Queue
Welcome to this new Medium post! In it, we’ll explore a lesser-known but highly stealthy inter-process communication (IPC) technique on…
⤷ Title: Advent of Cyber — Day 16 — Forensics: Registry Furensics
════════════════════════
𐀪 Author: Samuel Mikeng Mbongo
════════════════════════
ⴵ Time: Tue, 13 Jan 2026 23:03:16 GMT
════════════════════════
⌗ Tags: #cybersecurity #tryhackme_walkthrough #advent_of_cyber_2025 #tryhackme_writeup #tryhackme
════════════════════════
𐀪 Author: Samuel Mikeng Mbongo
════════════════════════
ⴵ Time: Tue, 13 Jan 2026 23:03:16 GMT
════════════════════════
⌗ Tags: #cybersecurity #tryhackme_walkthrough #advent_of_cyber_2025 #tryhackme_writeup #tryhackme
⤷ Title: Advent of Cyber — Day 15 — Web Attack Forensics: Drone Alone
════════════════════════
𐀪 Author: Samuel Mikeng Mbongo
════════════════════════
ⴵ Time: Tue, 13 Jan 2026 22:53:37 GMT
════════════════════════
⌗ Tags: #cybersecurity #advent_of_cyber_2025 #tryhackme_walkthrough #tryhackme_writeup #tryhackme
════════════════════════
𐀪 Author: Samuel Mikeng Mbongo
════════════════════════
ⴵ Time: Tue, 13 Jan 2026 22:53:37 GMT
════════════════════════
⌗ Tags: #cybersecurity #advent_of_cyber_2025 #tryhackme_walkthrough #tryhackme_writeup #tryhackme
⤷ Title: Siemens Issues Critical Alert for Maximum 10.0 Vulnerability in Industrial Systems
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Wed, 14 Jan 2026 01:44:10 +0000
════════════════════════
⌗ Tags: #Vulnerability #Critical Vulnerability #CVSS 10 #Factory Automation #ICS security #Industrial Edge #Industrial IoT #SCADA #Siemens #SIMATIC
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Wed, 14 Jan 2026 01:44:10 +0000
════════════════════════
⌗ Tags: #Vulnerability #Critical Vulnerability #CVSS 10 #Factory Automation #ICS security #Industrial Edge #Industrial IoT #SCADA #Siemens #SIMATIC
Daily CyberSecurity
Siemens Issues Critical Alert for Maximum 10.0 Vulnerability in Industrial Systems
Urgent: Siemens Edge flaw CVE-2025-40805 (CVSS 10) allows remote account takeover. Update SIMATIC & IOT2050 devices immediately to secure ops.
⤷ Title: Critical SAP Alert: S/4HANA SQL Injection & Wily RCE Threaten Financial Data
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Wed, 14 Jan 2026 01:29:08 +0000
════════════════════════
⌗ Tags: #Vulnerability Report #ABAP Security #CVE_2026_0500 #CVE_2026_0501 #ERP Security #Patch Day #Remote Code Execution #SAP S/4HANA #SAP Security #sql injection #Wily Introscope
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Wed, 14 Jan 2026 01:29:08 +0000
════════════════════════
⌗ Tags: #Vulnerability Report #ABAP Security #CVE_2026_0500 #CVE_2026_0501 #ERP Security #Patch Day #Remote Code Execution #SAP S/4HANA #SAP Security #sql injection #Wily Introscope
Daily CyberSecurity
Critical SAP Alert: S/4HANA SQL Injection & Wily RCE Threaten Financial Data
SAP Jan 2026 update fixes 17 flaws, including S/4HANA SQL Injection (CVSS 9.9) & Wily RCE (CVSS 9.6). Patch now to prevent full system compromise.
⤷ Title: Fortinet Critical Alert: CVE-2025-64155 RCE & Config Leaks Exposed
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Wed, 14 Jan 2026 00:29:27 +0000
════════════════════════
⌗ Tags: #Vulnerability Report
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Wed, 14 Jan 2026 00:29:27 +0000
════════════════════════
⌗ Tags: #Vulnerability Report
Daily CyberSecurity
Fortinet Critical Alert: CVE-2025-64155 RCE & Config Leaks Exposed
Urgent: Fortinet fixes critical RCE in FortiSIEM (CVE-2025-64155) & FortiOS. CVSS 9.4 flaw allows unauthenticated attacks. Patch immediately.
⤷ Title: VoidLink: The “Cloud-First” Malware Hunting Your Linux Servers
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Wed, 14 Jan 2026 00:21:17 +0000
════════════════════════
⌗ Tags: #Malware #Check Point Research #Chinese Threat Actor #Cloud Security #Cobalt Strike #container security #DevOps Security #eBPF #Kubernetes Security #Linux Malware #supply chain attack #VoidLink #Zig Programming Language
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Wed, 14 Jan 2026 00:21:17 +0000
════════════════════════
⌗ Tags: #Malware #Check Point Research #Chinese Threat Actor #Cloud Security #Cobalt Strike #container security #DevOps Security #eBPF #Kubernetes Security #Linux Malware #supply chain attack #VoidLink #Zig Programming Language
Daily CyberSecurity
VoidLink: The "Cloud-First" Malware Hunting Your Linux Servers
New "cloud-first" malware VoidLink targets Linux & containers with advanced stealth. Written in Zig, it mimics Cobalt Strike to evade EDR. Check your cloud.
⤷ Title: Chrome 144 Released: 10 Security Fixes Patch Dangerous V8 Engine Flaws
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Wed, 14 Jan 2026 00:16:25 +0000
════════════════════════
⌗ Tags: #Vulnerability Report #Blink Engine #browser security #Chrome 144 #CVE_2026_0899 #google chrome #infosec #Patch Alert #V8 JavaScript engine #Web Security
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Wed, 14 Jan 2026 00:16:25 +0000
════════════════════════
⌗ Tags: #Vulnerability Report #Blink Engine #browser security #Chrome 144 #CVE_2026_0899 #google chrome #infosec #Patch Alert #V8 JavaScript engine #Web Security
Daily CyberSecurity
Chrome 144 Released: 10 Security Fixes Patch Dangerous V8 Engine Flaws
Chrome 144 fixes 10 vulnerabilities, including high-severity V8 flaw CVE-2026-0899. Update Windows, Mac & Linux immediately to secure your browser.
⤷ Title: Critical OpenCode Flaws Let Websites Hijack Your PC
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Wed, 14 Jan 2026 00:16:21 +0000
════════════════════════
⌗ Tags: #Vulnerability Report #AI security #Cross_Site Scripting #CVE_2026_22812 #CVE_2026_22813 #Developer Tools #Drive_by Attack #OpenCode #rce #Remote Code Execution #XSS
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Wed, 14 Jan 2026 00:16:21 +0000
════════════════════════
⌗ Tags: #Vulnerability Report #AI security #Cross_Site Scripting #CVE_2026_22812 #CVE_2026_22813 #Developer Tools #Drive_by Attack #OpenCode #rce #Remote Code Execution #XSS
Daily CyberSecurity
Critical OpenCode Flaws Let Websites Hijack Your PC
Critical OpenCode flaws (CVE-2026-22813) allow drive-by RCE via malicious sites. Update to v1.0.216 immediately to stop unauthorized command execution.
⤷ Title: Patch Tuesday Jan 2026: Microsoft Fixes 114 Flaws & 3 Zero-Days
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Wed, 14 Jan 2026 00:11:47 +0000
════════════════════════
⌗ Tags: #Vulnerability Report #Agere Soft Modem #CISA #CVE_2026_20805 #LSASS #Microsoft #Office Vulnerability #Patch Tuesday #Secure Boot #Windows Security #zero_day
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Wed, 14 Jan 2026 00:11:47 +0000
════════════════════════
⌗ Tags: #Vulnerability Report #Agere Soft Modem #CISA #CVE_2026_20805 #LSASS #Microsoft #Office Vulnerability #Patch Tuesday #Secure Boot #Windows Security #zero_day
Daily CyberSecurity
Patch Tuesday Jan 2026: Microsoft Fixes 114 Flaws & 3 Zero-Days
Microsoft Jan 2026 Patch Tuesday fixes 114 flaws, including 3 zero-days. CVE-2026-20805 is actively exploited. Update Windows & Office immediately.
⤷ Title: Spy, Steal, Lock: deVixor Android Trojan Hits Banking & Crypto Users
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Wed, 14 Jan 2026 00:11:08 +0000
════════════════════════
⌗ Tags: #Malware #Android Malware #Banking Trojan #Cyble Research #deVixor #Iran Cyber Threat #mobile security #phishing #ransomware #Remote Access Trojan (RAT) #SMS Stealer
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Wed, 14 Jan 2026 00:11:08 +0000
════════════════════════
⌗ Tags: #Malware #Android Malware #Banking Trojan #Cyble Research #deVixor #Iran Cyber Threat #mobile security #phishing #ransomware #Remote Access Trojan (RAT) #SMS Stealer
Daily CyberSecurity
Spy, Steal, Lock: deVixor Android Trojan Hits Banking & Crypto Users
New deVixor Android malware combines banking fraud with ransomware. Targeting Iranian users, it steals credentials and locks devices. Avoid APKs.
⤷ Title: Critical Appsmith Flaw CVE-2026-22794 Allows Account Takeover
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Wed, 14 Jan 2026 00:06:38 +0000
════════════════════════
⌗ Tags: #Vulnerability Report #Account Takeover #API security #Appsmith #CVE_2026_22794 #host header injection #Low Code Platform #Open Source Security #Password Reset Vulnerability
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Wed, 14 Jan 2026 00:06:38 +0000
════════════════════════
⌗ Tags: #Vulnerability Report #Account Takeover #API security #Appsmith #CVE_2026_22794 #host header injection #Low Code Platform #Open Source Security #Password Reset Vulnerability
Daily CyberSecurity
Critical Appsmith Flaw CVE-2026-22794 Allows Account Takeover
Critical Appsmith flaw CVE-2026-22794 (CVSS 9.7) allows account takeover via Host Header Injection. Update to v1.93 immediately to secure your data.
⤷ Title: Elastic Stack Under Fire: 7 New Flaws Expose Files & Crash Servers
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Wed, 14 Jan 2026 00:04:13 +0000
════════════════════════
⌗ Tags: #Vulnerability Report #Cloud Security #CVE_2026_0532 #Denial of Service #Elastic Stack #Elasticsearch #Kibana #LZ4 Vulnerability #Metricbeat #Packetbeat #Patch Alert #ssrf
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Wed, 14 Jan 2026 00:04:13 +0000
════════════════════════
⌗ Tags: #Vulnerability Report #Cloud Security #CVE_2026_0532 #Denial of Service #Elastic Stack #Elasticsearch #Kibana #LZ4 Vulnerability #Metricbeat #Packetbeat #Patch Alert #ssrf
Daily CyberSecurity
Elastic Stack Under Fire: 7 New Flaws Expose Files & Crash Servers
Elastic patches 7 high-severity flaws (CVSS 8.6) in Kibana & Elasticsearch. CVE-2026-0532 allows SSRF & file theft. Update to v8.19.10 now.
⤷ Title: Malicious Chrome Extension Drains Crypto via Secret API Keys
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Wed, 14 Jan 2026 00:01:12 +0000
════════════════════════
⌗ Tags: #Malware #API Key Theft #Chrome Extension Malware #crypto security #Cryptocurrency Scam #MEXC Exchange #Russian cybercrime #Socket Threat Research #Wallet drainer
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Wed, 14 Jan 2026 00:01:12 +0000
════════════════════════
⌗ Tags: #Malware #API Key Theft #Chrome Extension Malware #crypto security #Cryptocurrency Scam #MEXC Exchange #Russian cybercrime #Socket Threat Research #Wallet drainer
Daily CyberSecurity
Malicious Chrome Extension Drains Crypto via Secret API Keys
Malicious Chrome extension "MEXC API Automator" hijacks API keys to drain crypto wallets. Russian-linked malware hides withdrawal permissions. Remove now.
⤷ Title: Masscan vs. Nmap: Port Scanning Guide for Bug Bounty
════════════════════════
𐀪 Author: JPablo13
════════════════════════
ⴵ Time: Wed, 14 Jan 2026 00:02:50 GMT
════════════════════════
⌗ Tags: #bug_bounty #cybersecurity #reconnaissance #hacking #technology
════════════════════════
𐀪 Author: JPablo13
════════════════════════
ⴵ Time: Wed, 14 Jan 2026 00:02:50 GMT
════════════════════════
⌗ Tags: #bug_bounty #cybersecurity #reconnaissance #hacking #technology
Medium
Masscan vs. Nmap: Port Scanning Guide for Bug Bounty
Learn how to combine Masscan and Nmap for efficient Bug Bounty reconnaissance. Optimize your offensive security pipeline.
⤷ Title: SBOMs vs Asset Inventories: Bridging the Visibility Gap in Software Security
════════════════════════
𐀪 Author: Praveen Malhan
════════════════════════
ⴵ Time: Wed, 14 Jan 2026 00:48:21 GMT
════════════════════════
⌗ Tags: #sbom #open_source_security #asset_inventory #supply_chain_security #application_security
════════════════════════
𐀪 Author: Praveen Malhan
════════════════════════
ⴵ Time: Wed, 14 Jan 2026 00:48:21 GMT
════════════════════════
⌗ Tags: #sbom #open_source_security #asset_inventory #supply_chain_security #application_security
Medium
SBOMs vs Asset Inventories: Bridging the Visibility Gap in Software Security
Introduction
⤷ Title: Malware Development with NIM — Malicious Self-Replication
════════════════════════
𐀪 Author: Edgar Huemac Sanchez Hernandez
════════════════════════
ⴵ Time: Wed, 14 Jan 2026 00:47:18 GMT
════════════════════════
⌗ Tags: #infosec #programming #cybersecurity #nim #malware
════════════════════════
𐀪 Author: Edgar Huemac Sanchez Hernandez
════════════════════════
ⴵ Time: Wed, 14 Jan 2026 00:47:18 GMT
════════════════════════
⌗ Tags: #infosec #programming #cybersecurity #nim #malware
Medium
Malware Development with NIM — Malicious Self-Replication
Hello, I’m back. I’m sorry for not having posted anything for months, but to be fair (and, even if this apology is mainly directed to…