⤷ Title: Jumping the Gap: APT37’s “Ruby Jumper” Campaign Weaponizes Cloud Storage and USBs to Breach Isolated Networks
════════════════════════
𐀪 Author: ddos
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 07:01:03 +0000
════════════════════════
⌗ Tags: #Cybercriminals #air_gapped network #APT37 #Cybersecurity 2026 #RESTLEAF #Ruby Jumper #ScarCruft #SNAKEDROPPER #THUMBSBD #USB Malware #Velvet Chollima #VIRUSTASK #Zoho WorkDrive #Zscaler ThreatLabz
════════════════════════
𐀪 Author: ddos
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 07:01:03 +0000
════════════════════════
⌗ Tags: #Cybercriminals #air_gapped network #APT37 #Cybersecurity 2026 #RESTLEAF #Ruby Jumper #ScarCruft #SNAKEDROPPER #THUMBSBD #USB Malware #Velvet Chollima #VIRUSTASK #Zoho WorkDrive #Zscaler ThreatLabz
Penetration Testing Tools
Jumping the Gap: APT37’s "Ruby Jumper" Campaign Weaponizes Cloud Storage and USBs to Breach Isolated Networks
The DPRK-affiliated syndicate APT37 has augmented its arsenal dedicated to breaching air-gapped networks. The Zscaler ThreatLabz vanguard has
⤷ Title: Context Is Everything: A Practical Guide to XSS
════════════════════════
𐀪 Author: Marduk I Am
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 08:33:05 GMT
════════════════════════
⌗ Tags: #web_security #cross_site_noscripting #cybersecurity #ethical_hacking #bug_bounty
════════════════════════
𐀪 Author: Marduk I Am
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 08:33:05 GMT
════════════════════════
⌗ Tags: #web_security #cross_site_noscripting #cybersecurity #ethical_hacking #bug_bounty
Medium
Context Is Everything: A Practical Guide to XSS
Understanding XSS Using Five Portwigger Labs.
⤷ Title: Building an Enterprise .NET 10 API — Part 2: Security & Authentication
════════════════════════
𐀪 Author: Marc Kenneth Lomio & Melrose Mejidana
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 07:55:40 GMT
════════════════════════
⌗ Tags: #user_authorization #user_authentication #application_security
════════════════════════
𐀪 Author: Marc Kenneth Lomio & Melrose Mejidana
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 07:55:40 GMT
════════════════════════
⌗ Tags: #user_authorization #user_authentication #application_security
Medium
Building an Enterprise .NET 10 API — Part 2: Security & Authentication
Adding JWT authentication, refresh tokens, brute-force protection, and role-based authorization — without changing a single existing…
⤷ Title: Achieving Application Environment Isolation
════════════════════════
𐀪 Author: Robert Broeckelmann
════════════════════════
ⴵ Time: Sun, 01 Mar 2026 14:04:57 GMT
════════════════════════
⌗ Tags: #isolation #software_architecture #application_security #environment_isolation #security
════════════════════════
𐀪 Author: Robert Broeckelmann
════════════════════════
ⴵ Time: Sun, 01 Mar 2026 14:04:57 GMT
════════════════════════
⌗ Tags: #isolation #software_architecture #application_security #environment_isolation #security
Medium
Application Environment Isolation
Your production environment should be isolated from your non-production environments. In fact, every application environment should be…
⤷ Title: I Found Valid VPN Credentials for 7 Out of 10 Companies I Searched
════════════════════════
𐀪 Author: Alexandre Vandamme
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 08:59:41 GMT
════════════════════════
⌗ Tags: #cybersecurity #technology #infosec #data_breach #threat_intelligence
════════════════════════
𐀪 Author: Alexandre Vandamme
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 08:59:41 GMT
════════════════════════
⌗ Tags: #cybersecurity #technology #infosec #data_breach #threat_intelligence
Medium
I Found Valid VPN Credentials for 7 Out of 10 Companies I Searched
I picked 10 random companies. Searched each one on LeakRadar. Filtered for VPN credentials.
⤷ Title: Path Traversal
════════════════════════
𐀪 Author: Abdulnafayk
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 08:32:00 GMT
════════════════════════
⌗ Tags: #cybersecurity #offensive_security #path_traversal #penetration_testing #red_team
════════════════════════
𐀪 Author: Abdulnafayk
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 08:32:00 GMT
════════════════════════
⌗ Tags: #cybersecurity #offensive_security #path_traversal #penetration_testing #red_team
Medium
Path Traversal
Path traversal is also known as directory traversal. These vulnerabilities enable an attacker to read arbitrary files on the server that is…
⤷ Title: TryHackMe - Mr Robot CTF Writeup
════════════════════════
𐀪 Author: giorgi gochitidze
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 08:52:50 GMT
════════════════════════
⌗ Tags: #rce #ethical_hacking #tryhackme_linux_privesc #tryhackme #ctf
════════════════════════
𐀪 Author: giorgi gochitidze
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 08:52:50 GMT
════════════════════════
⌗ Tags: #rce #ethical_hacking #tryhackme_linux_privesc #tryhackme #ctf
Medium
TryHackMe - Mr Robot CTF Writeup 🤖
Difficulty: Medium Platform: TryHackMe Category: Web, WordPress, Privilege Escalation Flags: 3 Keys
⤷ Title: The Cybersecurity Tool Sprawl Problem: How to Organize & Maintain Your Security Toolkit
════════════════════════
𐀪 Author: ATNO For Cybersecurity | Hacking
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 07:55:40 GMT
════════════════════════
⌗ Tags: #cybersecurity #ethical_hacking #cyber_security_awareness #tool_sprawl
════════════════════════
𐀪 Author: ATNO For Cybersecurity | Hacking
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 07:55:40 GMT
════════════════════════
⌗ Tags: #cybersecurity #ethical_hacking #cyber_security_awareness #tool_sprawl
Medium
🧰 The Cybersecurity Tool Sprawl Problem: How to Organize & Maintain Your Security Toolkit
Tool sprawl is what happens when your toolkit grows faster than your ability to manage it.
⤷ Title: Belajar Hacking Itu
Butuh Playground-nya Dulu
════════════════════════
𐀪 Author: Ferdi Maulana Ikhsan
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 07:08:22 GMT
════════════════════════
⌗ Tags: #ethical_hacking #kali_linux #virtualbox #teknologi_informasi #untidar
Butuh Playground-nya Dulu
════════════════════════
𐀪 Author: Ferdi Maulana Ikhsan
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 07:08:22 GMT
════════════════════════
⌗ Tags: #ethical_hacking #kali_linux #virtualbox #teknologi_informasi #untidar
Medium
Belajar Hacking Itu Butuh Playground-nya Dulu
Panduan lengkap instalasi VirtualBox dan Kali Linux dari nol — supaya kamu bisa belajar keamanan siber dengan aman, tanpa merusak sistem…
⤷ Title: Fake Laravel Packages on Packagist Deploy RAT on Windows, macOS, and Linux
════════════════════════
𐀪 Author: Unknown
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 15:07:00 +0530
════════════════════════
⌗ Tags: No_Tags
════════════════════════
𐀪 Author: Unknown
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 15:07:00 +0530
════════════════════════
⌗ Tags: No_Tags
⤷ Title: Telegram Increasingly Used to Sell Access, Malware and Stolen Logs
════════════════════════
𐀪 Author: Deeba Ahmed
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 10:17:42 +0000
════════════════════════
⌗ Tags: #Cyber Crime #Security #Cybersecurity #CYFIRMA #dark web #HACKTIVISM #IndoHaxSec #Telegram #Tor
════════════════════════
𐀪 Author: Deeba Ahmed
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 10:17:42 +0000
════════════════════════
⌗ Tags: #Cyber Crime #Security #Cybersecurity #CYFIRMA #dark web #HACKTIVISM #IndoHaxSec #Telegram #Tor
Hackread
Telegram Increasingly Used to Sell Access, Malware and Stolen Logs
Follow us on all social media platforms @Hackread
⤷ Title: Intigriti launches new global Hacker Ambassador Program
════════════════════════
𐀪 Author: Eleanor Barlow
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 00:00:00 GMT
════════════════════════
⌗ Tags: #Business Insights
════════════════════════
𐀪 Author: Eleanor Barlow
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 00:00:00 GMT
════════════════════════
⌗ Tags: #Business Insights
Intigriti
Intigriti launches new global Hacker Ambassador Program
The Intigriti Hacker Ambassador Program is built to support and empower trusted members of the hacking community who want to make a difference locally and globally.
⤷ Title: FusionCorp — TryHackMe Writeup
════════════════════════
𐀪 Author: Rolando Enriquez
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 10:21:25 GMT
════════════════════════
⌗ Tags: #pentesting #tryhackme #hacking #red_team
════════════════════════
𐀪 Author: Rolando Enriquez
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 10:21:25 GMT
════════════════════════
⌗ Tags: #pentesting #tryhackme #hacking #red_team
Medium
FusionCorp — TryHackMe Writeup
FusionCorp is rated high level machine of the TryHackMe challenges platform.
⤷ Title: AI in cybersecurity is not going to save you (and it’s not going to kill you either)
════════════════════════
𐀪 Author: h@shtalk
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 09:46:47 GMT
════════════════════════
⌗ Tags: #infosec #technology #cybersecurity #ai #ai_security
════════════════════════
𐀪 Author: h@shtalk
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 09:46:47 GMT
════════════════════════
⌗ Tags: #infosec #technology #cybersecurity #ai #ai_security
Medium
AI in cybersecurity is not going to save you (and it’s not going to kill you either)
The hot take nobody in your vendor’s webinar will give you
⤷ Title: Reset — TryHackMe Writeup
════════════════════════
𐀪 Author: Rolando Enriquez
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 10:03:50 GMT
════════════════════════
⌗ Tags: #pentesting #tryhackme #red_team #active_directory #oscp
════════════════════════
𐀪 Author: Rolando Enriquez
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 10:03:50 GMT
════════════════════════
⌗ Tags: #pentesting #tryhackme #red_team #active_directory #oscp
Medium
Reset — TryHackMe Writeup
This is an Active Directory machine in TryHackMe, labeled as Hard. In my opinion, it was a medium level machine.
⤷ Title: Recon Is Not Scanning
════════════════════════
𐀪 Author: Fateyaly
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 10:42:38 GMT
════════════════════════
⌗ Tags: #cybersecurity #programming #technology #ethical_hacking #coding
════════════════════════
𐀪 Author: Fateyaly
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 10:42:38 GMT
════════════════════════
⌗ Tags: #cybersecurity #programming #technology #ethical_hacking #coding
Medium
Recon Is Not Scanning
It’s the Art of Knowing More Than You’re Supposed To
⤷ Title: Day 14 — I Changed One Number and Suddenly Everyone’s Data Was Mine
════════════════════════
𐀪 Author: Issan
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 09:52:01 GMT
════════════════════════
⌗ Tags: #idor #cybersecurity #vapt #ethical_hacking #web_app_pentesting
════════════════════════
𐀪 Author: Issan
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 09:52:01 GMT
════════════════════════
⌗ Tags: #idor #cybersecurity #vapt #ethical_hacking #web_app_pentesting
Medium
🎨 Day 14 — I Changed One Number and Suddenly Everyone’s Data Was Mine
Target Application: https://github.com/Yavuzlar/VulnLab/tree/main
⤷ Title: The curious case of poisoned context
════════════════════════
𐀪 Author: Elina Maliarsky
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 09:35:28 GMT
════════════════════════
⌗ Tags: #ethical_hacking #agentic_ai #context_engineering #generative_ai_tools #large_language_models
════════════════════════
𐀪 Author: Elina Maliarsky
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 09:35:28 GMT
════════════════════════
⌗ Tags: #ethical_hacking #agentic_ai #context_engineering #generative_ai_tools #large_language_models
Medium
The curious case of poisoned context
A Red Team Mystery in Six Acts
⤷ Title: Google’s Docs Says API Keys Are Secrets and Also Not Secrets.2,863
════════════════════════
𐀪 Author: Dhayabaran V
════════════════════════
ⴵ Time: Mon, 02 Mar 2026 19:22:05 GMT
════════════════════════
⌗ Tags: #api_security #cybersecurity #gemini #google_gemini #cloud_security
════════════════════════
𐀪 Author: Dhayabaran V
════════════════════════
ⴵ Time: Mon, 02 Mar 2026 19:22:05 GMT
════════════════════════
⌗ Tags: #api_security #cybersecurity #gemini #google_gemini #cloud_security
Medium
Google’s Documentation Says API Keys Are Secrets and Also Not Secrets. 2,863 Verified Keys Are Already Exposed. | Barrack AI
Google’s Documentation Says API Keys Are Secrets and Also Not Secrets. 2,863 Verified Keys Are Already Exposed. | Barrack AI · 28 min read Google’s Firebase security checklist reads: “You do …
⤷ Title: New RFP Template for AI Usage Control and AI Governance
════════════════════════
𐀪 Author: Unknown
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 17:00:00 +0530
════════════════════════
⌗ Tags: No_Tags
════════════════════════
𐀪 Author: Unknown
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 17:00:00 +0530
════════════════════════
⌗ Tags: No_Tags
⤷ Title: Phishing in 2026: 3 Attack Tactics That Beat Most Enterprise Defenses
════════════════════════
𐀪 Author: Owais Sultan
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 12:51:30 +0000
════════════════════════
⌗ Tags: #Security #Phishing Scam #Cyber Attack #Cybersecurity #Phishing
════════════════════════
𐀪 Author: Owais Sultan
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 12:51:30 +0000
════════════════════════
⌗ Tags: #Security #Phishing Scam #Cyber Attack #Cybersecurity #Phishing
Hackread
Phishing in 2026: 3 Attack Tactics That Beat Most Enterprise Defenses
Follow us on all social media platforms @Hackread