Edwin Kwan
  • Home
  • Speaker
  • Podcasts
    • Cyber Bites
    • AppSec Unlocked
    • It’s 5:05 Podcast
  • Journal
  • Publications
Select Page

Security Researchers Demonstrate Devastating Gemini Attacks Through Simple Google Calendar Invites

Aug 18, 2025 | Podcast

Invitation Is All You Need: Invoking Gemini for Workspace Agents with a Simple Google Calendar Invite Security researchers from SafeBreach Labs have unveiled a sophisticated new attack vector called “Targeted Promptware” that enables attackers to remotely...

Over 29,000 Exchange Servers Remain Vulnerable to Critical Flaw Despite Federal Emergency Directive

Aug 15, 2025 | Podcast

https://www.cisa.gov/news-events/directives/ed-25-02-mitigate-microsoft-exchange-vulnerability Security monitoring platform Shadowserver has identified more than 29,000 Microsoft Exchange servers that remain unpatched against a high-severity vulnerability that could...

WinRAR Zero-Day Vulnerability Under Active Exploitation Prompts Emergency Security Update

Aug 14, 2025 | Podcast

https://www.welivesecurity.com/en/eset-research/update-winrar-tools-now-romcom-and-others-exploiting-zero-day-vulnerability WinRAR developers have released an urgent security update to address an actively exploited zero-day vulnerability that allows attackers to...

University of Western Australia Forces All Staff and Students to Reset Passwords After Security Breach

Aug 13, 2025 | Podcast

https://www.abc.net.au/news/2025-08-11/university-of-western-australia-uwa-suffers-major-data-breach/105636074 The University of Western Australia has locked all staff and students out of university systems and mandated password resets following the detection of...

Cybercriminals Deploy 60 Malicious Ruby Gems Downloaded 275,000 Times in Credential Theft Campaign

Aug 12, 2025 | Podcast

https://socket.dev/blog/60-malicious-ruby-gems-used-in-targeted-credential-theft-campaign Security researchers at Socket have uncovered a supply chain attack involving 60 malicious Ruby gems that have been downloaded over 275,000 times since March 2023, primarily...

Google Confirms Data Breach Exposed 2.55 Million Potential Ads Customer Records in Salesforce Attack

Aug 11, 2025 | Podcast

https://cloud.google.com/blog/topics/threat-intelligence/voice-phishing-data-extortion Google has officially confirmed a data breach affecting one of its Salesforce CRM instances that exposed information belonging to potential Google Ads customers, with threat actors...
« Older Entries
Next Entries »

Latest Posts

  • Malicious Websites Are Embedding Hidden Instructions to Hijack AI Agents Through Indirect Prompt Injection
  • Microsoft Introduces Smarter Bot Protection in Microsoft Teams Meetings
  • Anthropic to Restore Claude Fable Access After Export Control Suspension
  • Apple’s Hide My Email Service Has Been Leaking Real Email Addresses for Over a Year Despite Being Reported
  • Massive Automated Password Spray Attack Against Microsoft Azure Compromises 78 Accounts Across 64 Organisations

Speaking Events

  • Guest Lecture at UNSW Business School for INFS5907
  • Speaker at Bugcrowd Luncheon
  • Guest Lecture at UNSW
  • Panelist at SecTalks Legends – 2025
  • Keynote Speaker at Sydney AI Security Summit 2025

More Content

  • Articles (26)
  • Podcast (820)
  • Posts (26)
  • Publications (1)
  • Speaking (50)
  • X
  • RSS
Edwin Kwan