A week in security (August 4 – August 10)
August 7, 2025 – We found a host of blogspot pages involved in a malware campaign to promote their own...
Read more →Author: Cybernoz
MedusaLocker ransomware group is looking for pentesters
MedusaLocker ransomware group is looking for pentesters Pierluigi Paganini August 11, 2025 MedusaLocker ransomware gang announced on its Tor data...
Read more →
Google Calendar invites let researchers hijack Gemini to leak user data
Google fixed a bug that allowed maliciously crafted Google Calendar invites to remotely take over Gemini agents running on the...
Read more →
WinRAR 0-Day in Phishing Attacks to Deploy RomCom Malware
A critical zero-day vulnerability has been identified in WinRAR that cybercriminals are actively exploiting through sophisticated phishing campaigns to distribute...
Read more →
How to restore GPT-4o when you’ve GPT-5
Sam Altman overhyped GPT-5 and the results are underwhelming. Some users are upset with GPT-5’s new personality, but you can...
Read more →
WinRAR Zero-Day Under Active Exploitation – Update to Latest Version Immediately
Aug 11, 2025Ravie LakshmananZero-Day / Vulnerability The maintainers of the WinRAR file archiving utility have released an update to address...
Read more →
Linux Webcams Abused For Stealthy BadUSB Attacks
A new class of USB-based attacks has come to light. These attacks are not just targeting removable devices, but existing,...
Read more →
GPT-5 Jailbreaked With Echo Chamber and Storytelling Attacks
Researchers have compromised OpenAI’s latest GPT-5 model using sophisticated echo chamber and storytelling attack vectors, revealing critical vulnerabilities in the...
Read more →
Breaches are up, budgets are too, so why isn’t healthcare safer?
A new report from Resilience outlines a growing cyber crisis in the U.S. healthcare sector, where ransomware attacks, vendor compromise,...
Read more →
7-Zip Arbitrary File Write Vulnerability Allows Attackers to Execute Code
A newly disclosed security vulnerability in the popular 7-Zip file compression software has raised significant concerns in the cybersecurity community....
Read more →
Review: From Day Zero to Zero Day
From Day Zero to Zero Day is a practical guide for cybersecurity pros who want to move beyond reading about...
Read more →
Pentesting is now central to CISO strategy
Security leaders are rethinking their approach to cybersecurity as digital supply chains expand and generative AI becomes embedded in critical...
Read more →