Olivia
Online
FixitGearWare-Security
@fixitgearware
An organization that offers Cyber Security news & services, Information Security training, threat and vulnerability Assessment, web-app development.© 2019-2026.
Joined December 2019
0 Following
277 Followers
1.6K Posts
Pinned Tweet
OUR JOURNEY FOR 2026:
- The goal is to bring knowledge in a different form, from what is familiar.
- With great insight on terminologies, its theoretical and practical applications.
- You don't just learn from our courses, but also infused with knowledge on how to connect the dots.
#FixitgearwareSecurity #RoadMap2026
Thanks for showing so much Love and Loyalty. Let's talk about Artificial Intelligence on the 14th-June-2026 (US-Time).
On our official YouTube Channel.
YouTube:
https://t.co/vk03T9oCcN
#FixitgearwareSecurity #Cybersecurity
Hello family, sorry we didn't miss out. And we have lots of goodies from both events, conferences, and more to share.
Please permit us, to extend the publication of
"The Introduction to C-programming" paid course to
21-June-2026.
We care about teaching, and publishing substandard contents is not our forte. Be rest assured, that the wait will be worth it, and the cost as well.
Our courses is not only grounding you on the fundamentals, but more on technical concept "We will explain in due time. Best Kept secret.😇😎" .
In the mean time, our LAB Publication is back.
1. Pawning The @hackthebox_eu Redeemer here:
https://t.co/37MKOPmUXc
2. Pawning the Explosion Lab here:
https://t.co/0cgv0752Ax
Breaking News:
@Meta @instagram & @WhatsApp roles out premium subscription.
In its new post, user’s are now required to pay to use advanced features.
According to sources:
“Pricing structure is as follows: Instagram Plus and Facebook Plus cost US$3.99 per month, while WhatsApp Plus costs US$2.99 per month”
Well seems social media has become one big booming and lucrative franchise, with advanced features being tied to a dollar fee, while your data and contents belongs to the platform for free. 😎
#FixitgearwareSecurity #Cybersecurity
Early era of desktop computers needed this, desktop CPU got burnt without it, and was a necessity for pentium based machine’s.
But now? disappeared.
What happened, whose idea was it, and why did we need this then but not now ?
#FixitgearwareSecurity #ComputerFunFacts
We have always been warning ⛔️, it is your duty to implement practises that keeps you safe from Threat Actors:
Few Week(s) ago, we talked about the dangers of supply chain attack with the advent of Ai, and why code auditing has moved from just trusting the developer or publisher, to a more sophisticated demand of packages and dependencies auditing which these Ai Agents require.
Well! Well!! Well!!! If @github has this to say, brace up fellas, we are not only cooked, but also completely burnt 🥵.
Still on our best Security Hygiene and Practises, always:
1. Audit Software packages and plugins before installing them.
2. OSINT should be not only be a process to be taken seriously before using an author package, but also your primary GoTo, before using any authored packages or Plugins.
Read more below 👇:
1/ We are sharing additional details regarding our investigation into unauthorized access to GitHub's internal repositories.
Yesterday we detected and contained a compromise of an employee device involving a poisoned VS Code extension. We removed the malicious extension version, isolated the endpoint, and began incident response immediately.
Take a read, and don’t just clone agents locally on your machines, do a deep auditing of what these agents do and required packages.
A more complex advice ?
1. Continually Audit these agents to see if there has been security weaknesses reported.
2. Do a deep background check of these agent developers, and study if any of their social trail, has rogue tendencies.
Agents + MCP are the new PyPi-packages kind of attack surfaces, dealing with multiple vulnerability exposure all at a go.
Tracing the anomaly is the new complex task in forensics.
Cybersecurity investigators will have to not only deal with the infestation of malware’s, but also:
1. What prompt was injected leading to exploitation.
2. Supply chain risk, and specific package which enabled the prompt to go through.
3. What sort of permission the agent + MCP server had/has prior/post exploitation.
4. Local/cloud credentials that was exploited.
A.I just made cybersecurity, one of the on demand jobs for the next 2-decades or should we say, as long as A.I is in use.
Blue teaming / SOC / Forensics, is the new El-Dorado.
#Cybersecurity #ArtificialIntelligence #FixitgearwareSecurity
Few Week(s) ago, we talked about the dangers of supply chain attack with the advent of Ai, and why code auditing has moved from just trusting the developer or publisher, to a more sophisticated demand of packages and dependencies auditing which these Ai Agents require.
Well! Well!! Well!!! If @github has this to say, brace up fellas, we are not only cooked, but also completely burnt 🥵.
We are investigating unauthorized access to GitHub’s internal repositories. While we currently have no evidence of impact to customer information stored outside of GitHub’s internal repositories (such as our customers’ enterprises, organizations, and repositories), we are closely monitoring our infrastructure for follow-on activity.
Our Par Score playing the Digital Golf. 😎
The recent rise of unengaging cybersecurity content(s) and poor-quality information(s) underscores the need for strong foundational cybersecurity education.
Timelines are increasingly filled with recycled ideas and vague claims that lack substance. AI should help make cybersecurity more engaging, but much of the content instead leans toward entertainment.
Although we are hesitant to agree with Anthropic @claudeai co-founder Dario Amodei, the trend is difficult to ignore: many junior-level roles may disappear within the next few years, leaving senior professionals and experts in greater demand.
A quick look at current timelines and recent YouTube content reveals a strong focus on bug bounties and AI-driven hacking content, without fully exploring the depth of the profession cybersecurity.
This deep concern and fear that we feel will widen even more, the lack of skillsets in the industry. Hence, a reason why we are intending to gradually integrate Ai contents on our official YouTube channel starting the second week of June, upon dropping our C-programming course, by the end of this month.
In addition to these contents, adopting Ai, we also intend to enhance our paid Cybersecurity course and training schedule for this year, to have a touch of Ai on our introductory training and knowledge with regards to the profession.
It will be worth it. 😎
IMPORTANT:
See Pinned post, for our Timeline for the year 2026.
#FixitgearwareSecurity #Cybersecurity #Ai #ArtificialIntelligence
Checkout various Community Groups here:
https://t.co/feODxZ9RsH
Based on our years of experience, it takes at least 10-years to be in a Senior Role of Cybersecurity, and morethan 15-years to be on a professional/executive position.
If you are between the age of 19-25, start now.
Don’t let anyone fool you.
The question you might be asking after reading this, is how do I get started ?
1. Start with Desktop support roles, everything you secure, pentestest, or conduct risk assessment on starts with these.
Endpoint devices and infrastructure, are the key components to compromise or expose to vulnerabilities. e.g Computers and Servers.
2. Learn how attackers get an initial foot hold, escalate, and maintain consistency via privileged escalation.
Every principle applies even with the advent of Ai (Artificial Intelligence).
3. Never undermine/underestimate Social engineering. Everybody talks, everybody is needy. Learn, how to tweak, for them to expose their deepest desires.
4. Ai makes it easy, having the knowledge on fundamentals makes Ai do your bidding’s.
5. Never stop learning, spend more time on researching, and most importantly fall in-love with the profession, that will be a source of motivation that keeps you going.
💯🫶🏻😎.
#FixitgearwareSecurity #Cybersecurity
@CriticalScot A reason why the propagation of Cybersecurity as an industry should be properly segmented in accordance to their respective field e.g. hacking solely on Red Teaming, and not classifying hacking with the parent node Cybersecurity. 🫶🏻💯
Cybersecurity Influencing is a catastrophe, especially when those influencing the profession have no idea of what they are talking about.
Open a post ✉️ on social platforms, and you see contents like this:
1. Learn Cybersecurity by solving “TryHackMe Labs”.
2. Learn Cybersecurity by solving “Port-swigger Academy Labs.”
These are the people creating garbage contents that go viral, leading to people learning and still feel empty.
Lab solving platforms aren’t Cybersecurity they are a subset of Cybersecurity (A one giant big tree of profession).
Depending on the nature of Lab and Solving the Labs, you can say things like:
1. Learn or Begin your Career in Cybersecurity Penetration Testing by solving TryHackMe Labs or HTB Labs, if your content is focused on Red Teaming.
2. Learn or Begin your Career in Cybersecurity Forensic Investigation by solving Blue Team Labs, if your content is focused on Blue Teaming.
3. Learn or Begin your Career in Cybersecurity SOC analyst & SIEM, by solving SIEM based Labs etc.
We can go on and on.
When an influencer has little or lots of garbage knowledge, they start posting shitty (sorry for the word but has to be said) contents, deceiving naive people who then think cybersecurity is a walk in the park, only to run insane when they don’t have any idea of what they are doing.
Cybersecurity comprises of a lot of fields; cloud, network, cryptography, risk governance & data privacy etc.
If you don’t know much about the profession, or lack the knowledge, study and stop putting out garbage for people to consume. 😎😅
#FixitgearwareSecurity #Cybersecurity
😎
https://t.co/vLC973iLoJ
okay im calling it officially. codex is cracked.
if you're a bb hunter and you dont have a hackbot set up yet, i recommend codex with gpt5.5 over claude code.
Beyond these fundamentals, understand the services offered by the organization you are assessing, then apply this knowledge to identify potential vulnerabilities in its systems.
Learning The Fundamentals of Modern Red Teaming: Identifying Security Gaps in AI Systems and Agents.
Vulnerability research now extends beyond traditional web penetration testing to include AI systems and agents.
As organizations increasingly adopt AI to improve efficiency and support business goals, red teaming is evolving to address these emerging technologies.
Below are the key concepts security researchers should understand before assessing AI systems and agents for security weaknesses.
1. Understand how large language models (LLMs) work and the core concepts behind them.
2. Study retrieval-augmented generation (RAG) to understand how AI systems can be manipulated into producing hallucinations and false information.
3. Learn how agentic AI operates and how it integrates with AI service providers, especially where those integrations may introduce risks such as unauthorized access or remote code execution.
4. Understand how generative AI works, including how direct and indirect prompt injection can lead to data poisoning, backdoor behaviour, and other security risks.
5. Study prompt engineering and encoded inputs. For example, attackers may use formats such as Morse code to bypass safeguards and trigger unintended actions in AI systems.
6. Review AI service provider documentation to better understand API key management and how exposed keys can be discovered through third-party agents.
7. Develop a strong understanding of supply chain risk and attacks, including how trust in third-party vendors can be abused as a path to privilege escalation.
These fundamentals provide a solid foundation for building effective prompts and conducting AI and agent penetration testing.
Follow us for more Cybersecurity contents.
#FixitgearwareSecurity #Ai #Agents #LLM #OpenAi #OpenClaw #Claude
Trends for you
Most Popular Users
Elon Musk
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.7M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
60.9M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers