A critical vulnerability in the popular 7-Zip file archiver, identified as CVE-2025-0411, has been actively exploited in the wild, primarily targeting Ukrainian entities[1]. This zero-day flaw allows attackers to bypass Windows’ Mark of the Web (MoTW) security feature, enabling the execution of malicious code without user warnings. This poses a significant threat, as it lowers …
Continue reading “7-Zip Zero-Day Exploited in Targeted Attacks: A Deep Dive into CVE-2025-0411”
I am glad to share my teaching aid on wireless security with a focus in safeguarding IoT devices. In this teaching aide I talk all about wireless connectivity and authentication modes. Then, I delve into analyzing risks, challenges in securing our home wireless networks and steps we can take to secure our home Wi-Fi. The …
Continue reading “Teaching Aid: Understanding Wireless Security and securing home IoT network”
“OpenAI says it has disrupted 20-plus foreign influence networks in past year”[4] It was about time when analysts and researchers will find AI-generated malware in the wild. Last month, a report published by HP wolf Security[5] highlighted the malicious code has been detected in the recent targeted email campaigns to French users to deliver AsyncRAT …
Continue reading “Generative AI used in developing malwares”
Kryptina, once an overlooked free to use Ransomeware as a service available in dark web has resurfaced in recent enterprise attacks. [4]Its return has been marked by an advanced and potent version as per research presented by SentilLabs in LABScon 2024 reported by infosec-magazine. Mallox Linux 1.0 Mallox Ransomware Group also known as , a …
Powered by UCalgary
The views, information, or opinions expressed on this site are solely those of the individual(s) involved and do not necessarily represent the position of the University of Calgary as an institution.
Website Terms & Conditions | Privacy Policy | Copyright © 2024
