by Syndicated News Feed | Aug 11, 2025 | IT Security
ESET researchers have discovered a previously unknown vulnerability in WinRAR, being exploited in the wild by Russia-aligned group RomCom. This is at least the third time that RomCom has been caught exploiting a significant zero-day vulnerability in the wild. Previous...
by Syndicated News Feed | Aug 11, 2025 | IT Security
The job market is queasy and since you’re reading this, you need to upgrade your CV. It’s going to require some work to game the poorly trained AIs now doing so much of the heavy lifting. I know you don’t want to, but it’s best to think of this...
by Syndicated News Feed | Aug 10, 2025 | IT Security
Infosec In Brief A critical vulnerability in the on-prem version of Trend Micro’s Apex One endpoint security platform is under active exploitation, the company admitted last week, and there’s no patch available. Trend Micro last week warned Apex One 2019...
by Syndicated News Feed | Aug 10, 2025 | IT Security
def con A DEF CON hacker walks into a small-town water facility…no, this is not the setup for a joke or a (super-geeky) odd-couple rom-com. It’s a true story that happened at five utilities across four states. And now, nine months into providing free...
by Syndicated News Feed | Aug 9, 2025 | IT Security
Google has confirmed that a recently disclosed data breach of one of its Salesforce CRM instances involved the information of potential Google Ads customers. “We’re writing to let you know about an event that affected a limited set of data in one of...
by Syndicated News Feed | Aug 9, 2025 | IT Security
Sixty malicious Ruby gems containing credential-stealing code have been downloaded over 275,000 times since March 2023, targeting developer accounts. The malicious Ruby gems were discovered by Socket, which reports they targeted primarily South Korean users of...
by Syndicated News Feed | Aug 8, 2025 | IT Security
OpenAI’s CEO, Sam Altman, overpromised on GPT-5, and real-life results are underwhelming, but it looks like a new update is rolling out that might address some of the concerns. GPT-5 is a state-of-the-art model. In our tests, BleepingComputer found that GPT-5...
by Syndicated News Feed | Aug 8, 2025 | IT Security
A recently fixed WinRAR vulnerability tracked as CVE-2025-8088 was exploited as a zero-day in phishing attacks to install the RomCom malware. The flaw is a directory traversal vulnerability that was fixed in WinRAR 7.13, which allows specially crafted archives to...
by Syndicated News Feed | Aug 8, 2025 | IT Security
DEF CON A cache of documents uncovered by Vanderbilt University has revealed disturbing details about how a Chinese company is building up a database of US politicians and influencers with whom to share propaganda. A Vanderbilt security researcher says documents show...
by Syndicated News Feed | Aug 8, 2025 | IT Security
Americans aged 60 and older lost a staggering $700 million to online scams in 2024, marking a sharp rise in fraud targeting seniors, according to the Federal Trade Commission. This figure, presented in the agency’s latest Consumer Protection Data Spotlight,...
