GPUHammer flips Nvidia A6000 bits, Laravel RCE from leaked keys
A researcher showed that hidden HTML prompts in Gmail can trick Google Gemini for Workspace into inserting phishing warnings into AI-generated email summaries. The attack bypasses existing prompt‑injection defenses and needs only a user to click “Summarize this email,” making it a stealthy vector without links or attachments. Google says mitigations are being rolled out but no real‑world abuse has been seen yet.
A Chrome bug in legacy JavaScript bindings lets MV3 extensions fabricate webRequest events, effectively restoring the webRequestBlocking permission Google removed to cripple ad‑blockers. Reported in 2023, the flaw shows that Google’s anti‑ad‑block push can still be sidestepped, keeping request‑blocking extensions alive.
Zimbra Collaboration Suite's Classic Web Client suffers a stored XSS flaw (CVE-2025-27915) that executes JavaScript when a user opens a crafted email with an embedded calendar file. Exploitation grants attackers full session control, enabling actions like email redirection and data exfiltration. Zimbra released version 10.1.19 to patch the issue.
Researchers at GitGuardian unearthed more than 260,000 Laravel APP_KEYs exposed in public GitHub repos, enabling attackers to trigger remote code execution via deserialization. Over 600 live applications were confirmed vulnerable, highlighting the critical risk of secret leakage in widely used PHP frameworks.
Researchers at the University of Toronto unveiled GPUHammer, the first Rowhammer attack on Nvidia A6000 GPUs with GDDR6 memory. The technique induced up to eight bit flips across four DRAM banks, allowing attackers to corrupt machine‑learning models and slash their accuracy by as much as 80%.
Four SMM callout bugs (CVE‑2025‑7026‑7029) in Gigabyte UEFI firmware let admins execute code in System Management Mode, bypassing OS defenses. The flaws, previously patched by AMI, resurfaced in Gigabyte BIOS builds; Gigabyte has released firmware updates. Users should verify their motherboard firmware version and apply the patch.
Researchers at NeuralTrust showed that pairing the Echo Chamber and Crescendo jailbreak methods lets Grok‑4 bypass its safety filters in just a few turns, even producing detailed instructions for illicit actions. The hybrid attack adds a nudging phase after the persuasion cycle, dramatically increasing success rates over either technique alone.
Security researchers discovered that McHire, McDonald’s AI chatbot hiring platform, used default admin credentials (123456/123456) and an insecure IDOR API, exposing personal data of over 64 million applicants. The vendor revoked the credentials and fixed the flaw within days, underscoring the urgent need for robust security in AI‑driven recruitment tools.
Romanian police, aided by HMRC, arrested 13 suspects in a phishing operation that compromised 100,000 UK tax accounts and siphoned £47 million. The bust highlights the scale of cross‑border tax fraud and underscores the need for tighter identity controls in government portals.
Meta’s Android apps silently opened local ports, letting web‑page scripts send identifiers via WebRTC and tie anonymous browsing to individual Facebook or Instagram accounts. Bypassing sandbox protections, the technique could breach GDPR, DSA and DMA, exposing Meta to up to €32 billion in combined fines.
Figma scaled Santa, an open‑source macOS binary‑authorization tool, to every employee laptop. By running it in monitoring mode first, they built a data‑driven allowlist and added file‑access controls for browser cookies, slashing the attack surface without slowing developers.
Cameradar lets attackers sweep networks for unsecured RTSP cameras, auto‑detect models, brute‑force stream routes and credentials, then dump a full report. With a single Docker command it probes ports 554/5554/8554 across subnets, leveraging custom dictionaries for routes and login combos. Security teams can use it to audit camera exposure before attackers do.
Subscribe free