Zeljka Zorz

@zeljkazorz@infosec.exchange
410 Followers
186 Following
775 Posts

Editor-in-Chief of Help Net Security.

I use this account for work and privately.

Work-related interests: Anything and everything to do with information security and related topics.

Personal interests: As above, + hiking, painting/art, development and use of language, human psychology, gardening and plant ecology... Always open to picking up new ones and often falling down internet rabbit holes.

Help Net Securityhttps://www.helpnetsecurity.com/author/zeljkazorz/
LinkedInhttps://www.linkedin.com/in/zeljka-zorz-ba0065242/
Zeljka Zorz5d ago

https://www.helpnetsecurity.com/2025/08/13/croatian-research-institute-confirms-ransomware-attack-via-toolshell-vulnerabilities/

#Ransomware #ToolShell #EU #Cybersecurity

Croatian research institute confirms ransomware attack via ToolShell vulnerabilities - Help Net Security

The Ruđer Bošković Institute is one of 9,000+ institutions worldwide attacked with ransomware via the SharePoint "ToolShell" vulnerabilities.

Help Net Security
Zeljka Zorz6d ago

https://coindoo.com/violent-crypto-crimes-surge-in-2025-amid-massive-data-leaks/

"Victims have been targeted for as little as $6,000 in crypto, and some attacks have turned deadly over sums under $50,000."

Violent Crypto Crimes Surge in 2025 Amid Massive Data Leaks

Physical attacks on cryptocurrency holders are rising sharply this year, with security experts warning that 2025 could become the most dangerous year yet for investors.

Coindoo
Zeljka Zorz6d ago

https://www.tenable.com/blog/tenable-jailbreaks-gpt-5-gets-it-to-generate-dangerous-info-despite-openais-new-safety-tech

In full cynicism mode today, I posit that OpenAI and other LLM "providers" have never and will never care about making these tools "safe".

Researchers and attackers will always find a way around protections, and these companies will always assert that they added better protections. They will keep making money (well, getting funded), and society will keep getting the short end of the stick in a variety of ways.

#AI

Tenable Jailbreaks GPT-5, Gets It To Generate Dangerous Info Despite OpenAI’s New Safety Tech

Within just 24 hours of the release of OpenAI’s GPT-5, Tenable Research successfully managed to jailbreak the model by getting it to share detailed instructions for how to build an explosive. Our finding is concerning, given that OpenAI described GPT-5's prompt safety technology as significantly more sophisticated than the one used by its predecessors.

Tenable®
Zeljka ZorzAug 11

"In an unusual court document, 58 victims of Amuah's BEC crimes are listed with complete street address and the amount of money stolen. Victims are identified in Alabama, Arizona, California, Colorado, Florida, Georgia, Iowa, Illinois, Michigan, Minnesota, Missouri, North Carolina, Oklahoma, Pennsylvania, Tennessee, Texas, Vermont, Wisconsin, the United Kingdom and Switzerland."

https://garwarner.blogspot.com/2025/08/ghanaian-fraudsters-arrested-for.html

#cybercrime #BEC

Ghanaian fraudsters arrested for BEC/Sakawa

A blog about cybercrime and fraud and the cases and criminals related to those crimes. BEC, scams, fraud, spam, phishing and malware

Zeljka ZorzAug 2
Mark A. RaynerAug 2

Someone needs to put a track of "Eye of the Tiger" under this.

Happy #caturday

#cat #cats #catstodon #catsofmastodon #humor #humour

Zeljka ZorzJul 24

“While there is currently no evidence that this vulnerability is being actively exploited in the wild,” Sonicwall is advising organizations using SMA 210, 410 or 500v appliances to check whether they have been compromised in a recently disclosed ongoing campaign delivering the OVERSTEP backdoor to end-of-life SMA devices.

https://www.helpnetsecurity.com/2025/07/24/sonicwall-fixes-critical-flaw-sma-appliances-urges-customers-to-check-for-compromise-cve-2025-40599/

#Cybersecurity #Sonicwall

Sonicwall fixes critical flaw in SMA appliances, urges customers to check for compromise (CVE-2025-40599) - Help Net Security

Sonicwall is asking customers SMA 100 Series devices to patch a newly uncovered vulnerability (CVE-2025-40599) as soon as possible.

Help Net Security
Zeljka ZorzJul 22

https://www.helpnetsecurity.com/2025/07/22/microsoft-pins-sharepoint-attacks-cve-2025-53770/

#SharePoint #Cybersecurity

Microsoft pins on-prem SharePoint attacks on Chinese threat actors - Help Net Security

Microsoft and various security firms have begun sharing details about the on-prem SharePoint attacks they have detected.

Help Net Security
Zeljka ZorzJul 15
Tom RennerJul 15

Since we’re heading for a future where everyone will have to read my blog post, really you need to ask yourself if you’d like to understand it now, or be left behind.

https://tomrenner.com/posts/llm-inevitabilism/

The sound of inevitability

Have you ever argued with someone who is seriously good at debating? I have. It sucks. You’re constantly thrown off-balance, responding to a point you didn’t expect to. You find yourself defending the weak edges of your argument, while the main thrust gets left behind in the back-and-forth, and you end up losing momentum, confidence, and ultimately, the argument. One of my close friends won international debate competitions for fun while we were at university (he’s now a successful criminal barrister), and he told me that the only trick in the book, once you boil it all down, is to make sure the conversation is framed in your terms. Once that happens, it’s all over bar the shouting.

My place to put things
Zeljka ZorzJul 13
DocAtCDIJul 13
My office computer just crashed and now all the other computers have slowed down so they can see whats happening.
Zeljka ZorzJul 11
Hackread.comJul 11

New study shows Google Tracking stays strong even with privacy tools like DuckDuckGo. Escaping it could be almost impossible.

Read: https://hackread.com/new-study-google-tracking-persists-privacy-tools/

#cybersecurity #privacy #Google #DuckDuckGo #spying

New Study Shows Google Tracking Persists Even With Privacy Tools

Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Hackread - Latest Cybersecurity, Hacking News, Tech, AI & Crypto