Olivia
Online
Sentrinus
@sentrinus
Helping businesses monitor & secure every employee device from a single dashboard.
Bangalore
Joined May 2025
3 Following
8 Followers
104 Posts
I didn't expect from my conversation with Parv to be so valuable for the people trying to get started in the field of cybersecurity.
For everyone in my DMs asking how to get started this is it.
We recorded the podcast last week, it went live this Sunday. Full episode below ๐๏ธ
React apps are becoming secret vacuums.
Attackers are now weaponising React2Shell to rip credentials out of vulnerable Next.js servers at scale, fast, and with almost no manual effort. ๐ด
Endpoint agents that monitor CI/CD runtime behavior catch what static scanning misses.
Sentrinus detects anomalous process memory reads and unauthorized outbound connections in real-time. https://t.co/wTJewQJuop ๐ก๏ธ
Your security scanner just became the weapon.
CVE-2026-33634 (CVSS 9.4): Aqua Trivy was compromised.
Every scan silently stole your AWS keys, SSH creds, and Kubernetes tokens. ๐ด
1. Pin GitHub Actions to commit SHAs.
2. Rotate all CI/CD secrets.
3. Block scan[.]aquasecurtiy[.]org and 45.148.10.212.
4. Check for tpcp-docs repos in your org.
This one isn't over.
Zero-day, weaponised in 20 hours.
Langflow (CVE-2026-33017, CVSS 9.3) accepts malicious Python code โ unauthenticated RCE.
One HTTP request. Game over. ๐ด
This isn't a new attack surface.
It's invisible โ until you trace a redirect chain.
That's why endpoint security matters as much as perimeter defence.
Your API just sent your private tokens to a stranger's server.
You didn't get hacked.
Your redirect handler did it for you.
CVE-2026-32913 ๐งต
Fix it:
โ Update to OpenClaw 2026.3.7+
โ Audit your redirect handling now
โ Sentrinus catches these boundary violations before they become breaches
Full details: https://t.co/kiVmOUaHXg
@sentrinus @openclaw @karpathy After configuring it over & over again and really fine tuning it to my workflows, lately it has been surprising me frequently with it's capabilities.
Especially now that it has started working along with the employees at @secureu_in & @sentrinus as their colleague.
You clicked "I'm not a robot."
That one click just installed ransomware.
No phishing link. No suspicious email. No hacked password.
LeakNet's new ClickFix attack turns a fake CAPTCHA into a full ransomware deployment & your antivirus won't catch it.
Here's how it works. ๐งต
Source:
https://t.co/YoafK6uAe9
Critical file upload bypass hits @Microsoft ๐จ
CVE-2026-21536 (CVSS 9.8) lets attackers upload anything โ instant code execution.
No auth needed. Zero clicks required.
Your endpoints need real-time upload monitoring
Sentrinus detects suspicious file behaviour in seconds, before execution.
Stop file-based attacks at the source.
โ https://t.co/30CmZyhB6O | See Everything. Stop Anything.
Trends for you
Most Popular Users
Elon Musk 
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.9M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
86.8M followers
Taylor Swift
@taylorswift13
80.6M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.4M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.5M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers