⤷ Title: TryHackMe | NerdHerd | Walkthrough
════════════════════════
𐀪 Author: Sornphut
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 21:30:10 GMT
════════════════════════
⌗ Tags: #tryhackme_writeup #tryhackme #linux #tryhackme_walkthrough #privilege_escalation
════════════════════════
𐀪 Author: Sornphut
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 21:30:10 GMT
════════════════════════
⌗ Tags: #tryhackme_writeup #tryhackme #linux #tryhackme_walkthrough #privilege_escalation
Medium
TryHackMe | NerdHerd | Walkthrough
Initial Access
⤷ Title: OSCP Command(Educational & Defensive Analysis)
════════════════════════
𐀪 Author: cyber_public_school
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 22:23:07 GMT
════════════════════════
⌗ Tags: #cybersecurity #oscp #cpt #ethical_hacking #information_security
════════════════════════
𐀪 Author: cyber_public_school
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 22:23:07 GMT
════════════════════════
⌗ Tags: #cybersecurity #oscp #cpt #ethical_hacking #information_security
Medium
🔥 OSCP Command(Educational & Defensive Analysis)
By cyber_public_school | Cyber Security Researcher
⤷ Title: Facts Machine HTB Solution
════════════════════════
𐀪 Author: PsYc0
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 21:34:51 GMT
════════════════════════
⌗ Tags: #facts #hackthebox #ethical_hacking
════════════════════════
𐀪 Author: PsYc0
════════════════════════
ⴵ Time: Wed, 04 Mar 2026 21:34:51 GMT
════════════════════════
⌗ Tags: #facts #hackthebox #ethical_hacking
Medium
Facts Machine HTB Solution
Firstly did a nmap scan and found some ports opened
⤷ Title: CVSS 10.0 Unauthenticated Remote Code Execution in FreeScout (Public Proof-of-Concept Disclosed)
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 00:50:37 +0000
════════════════════════
⌗ Tags: #Vulnerability Report #CVE_2026_28289 #CVSS 10.0 #FreeScout #Help Desk Security #infosec #Patch Alert #Remote Code Execution #unauthenticated RCE #Vulnerability #Zero_Width Space
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 00:50:37 +0000
════════════════════════
⌗ Tags: #Vulnerability Report #CVE_2026_28289 #CVSS 10.0 #FreeScout #Help Desk Security #infosec #Patch Alert #Remote Code Execution #unauthenticated RCE #Vulnerability #Zero_Width Space
Daily CyberSecurity
CVSS 10.0 Unauthenticated Remote Code Execution in FreeScout (Public Proof-of-Concept Disclosed)
A critical 10.0 CVSS unauthenticated remote code execution flaw (CVE-2026-28289) in FreeScout allows full server takeover via an invisible character exploit.
⤷ Title: BadPaw and MeowMeow: Russian Cyber Offensive Targets Ukraine with Novel Malware Duo
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 00:42:07 +0000
════════════════════════
⌗ Tags: #Cyber Security #Malware #APT28 #BadPaw #ClearSky #Fancy Bear #infosec #Malware Analysis #MeowMeow #Russian Cyber Attacks #steganography #threat intelligence #Ukraine Cyber War
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 00:42:07 +0000
════════════════════════
⌗ Tags: #Cyber Security #Malware #APT28 #BadPaw #ClearSky #Fancy Bear #infosec #Malware Analysis #MeowMeow #Russian Cyber Attacks #steganography #threat intelligence #Ukraine Cyber War
Daily CyberSecurity
BadPaw and MeowMeow: Russian Cyber Offensive Targets Ukraine with Novel Malware Duo
ClearSky uncovers a Russian campaign targeting Ukraine with BadPaw and MeowMeow malware, using steganography and feline decoys for stealthy espionage.
⤷ Title: Critical Infrastructure Alert: Unauthenticated Flaw in Labkotec Ice Detectors Could Freeze Operations
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 00:39:33 +0000
════════════════════════
⌗ Tags: #Vulnerability Report #Critical Infrastructure #CVE_2026_1775 #cybersecurity #ICS security #infosec #Labkotec #LID_3300IP #OT Security #Vulnerability #Wind Turbines
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 00:39:33 +0000
════════════════════════
⌗ Tags: #Vulnerability Report #Critical Infrastructure #CVE_2026_1775 #cybersecurity #ICS security #infosec #Labkotec #LID_3300IP #OT Security #Vulnerability #Wind Turbines
Daily CyberSecurity
Critical Infrastructure Alert: Unauthenticated Flaw in Labkotec Ice Detectors Could Freeze Operations
A critical 9.4 CVSS flaw (CVE-2026-1775) in Labkotec LID-3300IP ice detectors allows hackers to hijack wind turbines and airports. Hardware upgrade needed.
⤷ Title: Unmasking Silver Dragon: The Chinese-Nexus APT Haunting Southeast Asia and Europe
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 00:33:43 +0000
════════════════════════
⌗ Tags: #Cyber Security #Malware #Advanced Persistent Threat #APT41 #Check Point Research #cybersecurity #GearDoor #Google Drive C2 #infosec #Malware Analysis #Silver Dragon #threat intelligence
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 00:33:43 +0000
════════════════════════
⌗ Tags: #Cyber Security #Malware #Advanced Persistent Threat #APT41 #Check Point Research #cybersecurity #GearDoor #Google Drive C2 #infosec #Malware Analysis #Silver Dragon #threat intelligence
Daily CyberSecurity
Unmasking Silver Dragon: The Chinese-Nexus APT Haunting Southeast Asia and Europe
Check Point Research uncovers Silver Dragon, an APT41-linked group using the GearDoor backdoor and Google Drive for stealthy cyber espionage.
⤷ Title: Coruna: The High-Powered iOS Exploit Kit Proliferating Across the Global Threat Landscape
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 00:32:22 +0000
════════════════════════
⌗ Tags: #Vulnerability Report #Coruna #Crypto theft #cybersecurity #Google Threat Intelligence Group #GTIG #infosec #iOS Exploit Kit #UNC6353 #UNC6691 #vulnerability management #zero_day
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 00:32:22 +0000
════════════════════════
⌗ Tags: #Vulnerability Report #Coruna #Crypto theft #cybersecurity #Google Threat Intelligence Group #GTIG #infosec #iOS Exploit Kit #UNC6353 #UNC6691 #vulnerability management #zero_day
Daily CyberSecurity
Coruna: The High-Powered iOS Exploit Kit Proliferating Across the Global Threat Landscape
Google Threat Intelligence uncovers "Coruna", a repurposed iOS exploit kit now used by state-sponsored and financially motivated hackers to steal crypto.
⤷ Title: RedAlert: Mobile Espionage Exploiting Crisis and Fear
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 00:27:39 +0000
════════════════════════
⌗ Tags: #Malware #CloudSEK #cyber_espionage #infosec #Israel_Iran Conflict #Malware Analysis #mobile security #Red Alert Malware #smishing #SMS Spoofing #Trojanized App
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 00:27:39 +0000
════════════════════════
⌗ Tags: #Malware #CloudSEK #cyber_espionage #infosec #Israel_Iran Conflict #Malware Analysis #mobile security #Red Alert Malware #smishing #SMS Spoofing #Trojanized App
Daily CyberSecurity
RedAlert: Mobile Espionage Exploiting Crisis and Fear
CloudSEK exposes a smishing campaign spreading a trojanized "Red Alert" app. The fake emergency tool tracks locations and steals data during air raids.
⤷ Title: EV Charging Grid Alert: Critical Flaws Exposed in Everon OCPP Backends
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 00:22:23 +0000
════════════════════════
⌗ Tags: #Vulnerability Report #CVE_2026_26288 #cybersecurity #EV Charging Security #Everon #infosec #OCPP #Session Hijacking #Smart Grid #threat intelligence #WebSocket Vulnerability
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 00:22:23 +0000
════════════════════════
⌗ Tags: #Vulnerability Report #CVE_2026_26288 #cybersecurity #EV Charging Security #Everon #infosec #OCPP #Session Hijacking #Smart Grid #threat intelligence #WebSocket Vulnerability
Daily CyberSecurity
EV Charging Grid Alert: Critical Flaws Exposed in Everon OCPP Backends
Critical authentication flaws (CVE-2026-26288) in Everon's OCPP backend allowed hackers to hijack EV chargers, forcing a complete platform shutdown.
⤷ Title: Suspected North Korean Actors Target the Cryptocurrency Supply Chain
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 00:18:38 +0000
════════════════════════
⌗ Tags: #Cybercriminals #AWS Kill Chain #Cloud Security #cryptocurrency #Ctrl_Alt_Intel #CVE_2025_55182 #cybersecurity #DPRK Hackers #infosec #Kubernetes #React2Shell #supply chain attack
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 00:18:38 +0000
════════════════════════
⌗ Tags: #Cybercriminals #AWS Kill Chain #Cloud Security #cryptocurrency #Ctrl_Alt_Intel #CVE_2025_55182 #cybersecurity #DPRK Hackers #infosec #Kubernetes #React2Shell #supply chain attack
Daily CyberSecurity
Suspected North Korean Actors Target the Cryptocurrency Supply Chain
Ctrl-Alt-Intel exposes a suspected DPRK campaign using an 'Amazon Kill Chain' and React2Shell to systematically breach crypto exchanges and steal code.
⤷ Title: Stealth and Deception: Transparent Tribe’s Multi-Stage Assault on Indian Government Entities
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 00:12:45 +0000
════════════════════════
⌗ Tags: #Cyber Security #APT36 #cyber_espionage #Cyfirma #Indian Defense #infosec #Malware Analysis #rat #Remote Access Trojan #social engineering #Transparent Tribe
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 00:12:45 +0000
════════════════════════
⌗ Tags: #Cyber Security #APT36 #cyber_espionage #Cyfirma #Indian Defense #infosec #Malware Analysis #rat #Remote Access Trojan #social engineering #Transparent Tribe
Daily CyberSecurity
Stealth and Deception: Transparent Tribe’s Multi-Stage Assault on Indian Government Entities
CYFIRMA reveals a new cyber espionage campaign by Transparent Tribe (APT36) targeting Indian defense with stealthy multi-stage malware and decoy PDFs.
⤷ Title: Intelligence Compromised: Data Abyss Report Details China’s Exploitation of U.S. IARPA Research
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 00:06:24 +0000
════════════════════════
⌗ Tags: #Cyber Security #cybersecurity #Data Abyss #geopolitics #IARPA #Intelligence Compromised #Military_Civil Fusion #national security #Research Security #threat intelligence #USIC
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 00:06:24 +0000
════════════════════════
⌗ Tags: #Cyber Security #cybersecurity #Data Abyss #geopolitics #IARPA #Intelligence Compromised #Military_Civil Fusion #national security #Research Security #threat intelligence #USIC
Daily CyberSecurity
Intelligence Compromised: Data Abyss Report Details China's Exploitation of U.S. IARPA Research
A new Data Abyss report reveals how PRC-affiliated entities systematically exploited U.S. IARPA research to advance China's military capabilities.
⤷ Title: The Return of Funnull: Rebranded and Ramping Up Supply Chain Attacks
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 00:01:42 +0000
════════════════════════
⌗ Tags: #Cybercriminals #AppleCMS #CDN Hijacking #cybersecurity #Fangneng CDN #Funnull #GoEdge #infosec #RingH23 #supply chain attack #threat intelligence #Traffic Hijacking #XLab
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 00:01:42 +0000
════════════════════════
⌗ Tags: #Cybercriminals #AppleCMS #CDN Hijacking #cybersecurity #Fangneng CDN #Funnull #GoEdge #infosec #RingH23 #supply chain attack #threat intelligence #Traffic Hijacking #XLab
Daily CyberSecurity
The Return of Funnull: Rebranded and Ramping Up Supply Chain Attacks
XLab researchers reveal the return of OFAC-sanctioned Funnull. The group is using the new RingH23 framework to hijack CDNs and poison supply chains.
⤷ Title: Bir Hacker İçin Portlar Ne Anlama Gelir?
════════════════════════
𐀪 Author: Zekikayaalp
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 00:24:22 GMT
════════════════════════
⌗ Tags: #cybersecurity #pentesting #hacking #hacker #cyberattack
════════════════════════
𐀪 Author: Zekikayaalp
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 00:24:22 GMT
════════════════════════
⌗ Tags: #cybersecurity #pentesting #hacking #hacker #cyberattack
Medium
Bir Hacker İçin Portlar Ne Anlama Gelir?
65535 Tane portu tek tek inceleyip bir hacker bakışı vermeye çalışacağımız bu yazımızda …
⤷ Title: Under Attack: Cisco Urges Immediate Action as Hackers Actively Exploit SD-WAN Manager Flaws
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 02:41:40 +0000
════════════════════════
⌗ Tags: #Vulnerability Report #Active Exploitation #Cisco Catalyst #CVE_2026_20122 #CVE_2026_20128 #cybersecurity #infosec #network_security #Patch Alert #privilege escalation #SD_WAN Manager
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 02:41:40 +0000
════════════════════════
⌗ Tags: #Vulnerability Report #Active Exploitation #Cisco Catalyst #CVE_2026_20122 #CVE_2026_20128 #cybersecurity #infosec #network_security #Patch Alert #privilege escalation #SD_WAN Manager
Daily CyberSecurity
Under Attack: Cisco Urges Immediate Action as Hackers Actively Exploit SD-WAN Manager Flaws
Cisco warns that two vulnerabilities (CVE-2026-20122 and CVE-2026-20128) in its Catalyst SD-WAN Manager are being actively exploited. Update immediately.
⤷ Title: Root Access for All: Critical Auth Bypass Hits Cisco Firewall Management Center
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 02:21:59 +0000
════════════════════════
⌗ Tags: #Vulnerability Report #Cisco Secure FMC #CVE_2026_20079 #CVSS 10.0 #cybersecurity #firewall security #infosec #Patch Alert #root access #Vulnerability #zero_click exploit
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 02:21:59 +0000
════════════════════════
⌗ Tags: #Vulnerability Report #Cisco Secure FMC #CVE_2026_20079 #CVSS 10.0 #cybersecurity #firewall security #infosec #Patch Alert #root access #Vulnerability #zero_click exploit
Daily CyberSecurity
Root Access for All: Critical Auth Bypass Hits Cisco Firewall Management Center
A critical 10.0 CVSS zero-click flaw (CVE-2026-20079) in Cisco Secure FMC gives unauthenticated attackers root access. Patch your systems immediately.
⤷ Title: Critical 10.0 CVSS Flaw in pac4j-jwt Lets Hackers Forge Admin Tokens
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 02:00:37 +0000
════════════════════════
⌗ Tags: #Vulnerability Report #Authentication Bypass #CodeAnt AI #CVE_2026_29000 #CVSS 10.0 #infosec #Java security #JSON Web Tokens #JWT Security #pac4j_jwt #Vulnerability
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 02:00:37 +0000
════════════════════════
⌗ Tags: #Vulnerability Report #Authentication Bypass #CodeAnt AI #CVE_2026_29000 #CVSS 10.0 #infosec #Java security #JSON Web Tokens #JWT Security #pac4j_jwt #Vulnerability
Daily CyberSecurity
Critical 10.0 CVSS Flaw in pac4j-jwt Lets Hackers Forge Admin Tokens
A critical 10.0 CVSS flaw (CVE-2026-29000) in the pac4j-jwt library allows attackers to forge JWTs and bypass authentication. Patch immediately.
⤷ Title: Update Chrome Now: Google Patches 3 Critical Flaws and 7 High-Risk Vulnerabilities
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 01:45:49 +0000
════════════════════════
⌗ Tags: #Vulnerability Report #browser security #Chrome Security Update #CVE_2026_3536 #CVE_2026_3537 #CVE_2026_3538 #cybersecurity #google chrome #infosec #Patch Alert #vulnerability management
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 01:45:49 +0000
════════════════════════
⌗ Tags: #Vulnerability Report #browser security #Chrome Security Update #CVE_2026_3536 #CVE_2026_3537 #CVE_2026_3538 #cybersecurity #google chrome #infosec #Patch Alert #vulnerability management
Daily CyberSecurity
Update Chrome Now: Google Patches 3 Critical Flaws and 7 High-Risk Vulnerabilities
Google releases an urgent security update for Chrome, patching 10 flaws including 3 critical memory corruption vulnerabilities. Update to version 145 now.
⤷ Title: Critical 10.0 CVSS Flaw in Cisco Secure FMC Hands Hackers Root Access to Enterprise Firewalls
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 01:37:24 +0000
════════════════════════
⌗ Tags: #Vulnerability Report #Cisco Secure FMC #CVE_2026_20131 #CVSS 10.0 #firewall security #infosec #Insecure Deserialization #Patch Alert #Remote Code Execution #unauthenticated RCE #Vulnerability
════════════════════════
𐀪 Author: Ddos
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 01:37:24 +0000
════════════════════════
⌗ Tags: #Vulnerability Report #Cisco Secure FMC #CVE_2026_20131 #CVSS 10.0 #firewall security #infosec #Insecure Deserialization #Patch Alert #Remote Code Execution #unauthenticated RCE #Vulnerability
Daily CyberSecurity
Critical 10.0 CVSS Flaw in Cisco Secure FMC Hands Hackers Root Access to Enterprise Firewalls
A critical 10.0 CVSS unauthenticated RCE flaw (CVE-2026-20131) in Cisco Secure FMC allows hackers root access via insecure Java deserialization. Patch now.
⤷ Title: How I Passed the CEH v13 Practical Exam: A Structured, Hands-On Approach
════════════════════════
𐀪 Author: Batraju Sairam
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 02:49:48 GMT
════════════════════════
⌗ Tags: #penetration_testing #ethical_hacking #hacking #ceh_practical #cybersecurity
════════════════════════
𐀪 Author: Batraju Sairam
════════════════════════
ⴵ Time: Thu, 05 Mar 2026 02:49:48 GMT
════════════════════════
⌗ Tags: #penetration_testing #ethical_hacking #hacking #ceh_practical #cybersecurity
Medium
How I Passed the CEH v13 Practical Exam: A Structured, Hands-On Approach
Earning the Certified Ethical Hacker (CEH) credential is one thing. Proving you can apply those skills in a live lab environment is…