New in pandoc 3.9: Passing a filepath with a `.zip` extension to the `--extract-media` command line parameter now collects all media files in that zip.
E.g.
pandoc --extract-media=images.zip …

#pandoc #zip #media_files

CVE Alert: CVE-2020-37193 - Top Password Software - ZIP Password Recovery - https://www.redpacketsecurity.com/cve-alert-cve-2020-37193-top-password-software-zip-password-recovery/

#OSINT #ThreatIntel #CyberSecurity #cve-2020-37193 #top-password-software #zip-password-recovery

Fake 7-Zip downloads are turning home PCs into proxy nodes

A convincing lookalike of the popular 7-Zip archiver site has been serving a trojanized installer that silently converts victims' machines into residential proxy nodes. The fake site, 7zip[.]com, distributes a functional copy of 7-Zip alongside concealed malware. The malware deploys three components: Uphero.exe (service manager), hero.exe (proxy payload), and hero.dll (supporting library). It establishes persistence through Windows services, manipulates firewall rules, and profiles the host system. The primary function is to enroll infected hosts as residential proxy nodes, allowing third parties to route traffic through victims' IP addresses. This campaign appears to be part of a broader operation with similar tactics used for other fake installers. The malware incorporates multiple evasion techniques and uses encrypted communications.

Pulse ID: 698d9d85f511c437a687cbad
Pulse Link: https://otx.alienvault.com/pulse/698d9d85f511c437a687cbad
Pulse Author: AlienVault
Created: 2026-02-12 09:29:41

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#7Zip #CyberSecurity #ICS #InfoSec #Mac #Malware #OTX #OpenThreatExchange #Proxy #RAT #Trojan #Windows #ZIP #bot #AlienVault

Punishing Owl Attacks Russia: A New Owl in the Hacktivists' Forest

A new hacking group called Punishing Owl has emerged, targeting Russian critical infrastructure. Their first attack on December 12, 2025, compromised a Russian state security agency, leaking internal documents. The group used DNS manipulation, created fake subdomains, and sent phishing emails to the victim's partners. They employed a PowerShell stealer called ZipWhisper to exfiltrate browser data. Punishing Owl's attacks are politically motivated and focus exclusively on Russian targets, including government agencies, scientific institutions, and IT organizations. The group has established a presence on cybercriminal forums and social media, likely operating from Kazakhstan. Experts predict this group will continue to be a persistent threat in the Russian cyberspace.

Pulse ID: 698365328fd4c9202353787c
Pulse Link: https://otx.alienvault.com/pulse/698365328fd4c9202353787c
Pulse Author: AlienVault
Created: 2026-02-04 15:26:42

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Browser #CyberSecurity #DNS #Email #Government #Hacktivist #InfoSec #Kazakhstan #OTX #OpenThreatExchange #Phishing #PowerShell #RAT #Russia #SocialMedia #ZIP #bot #AlienVault

Can't Purge a Post on .zip

https://piefed.social/c/piefed_meta/p/1714921/can-t-purge-a-post-on-zip

Broke a zip slider on my winter work jacket, so basically extreme emergency.

I've got a pack of easy-fix replacement sliders, but they didn't work last time and I had to replace the entire zipper, which is a lot of tedious unpicking, pinning and sewing.

This time it luckily fit and works well, although unzipping is not as good because the pull cord is unbalanced at the top. Pulls up fine but down you have to grab the slider with your fingers.

#Zip #Zipper #Clothing #Clothes #Repair #DIY