ZARZA We are Zarza, the prestigious firm behind major projects in information technology.
Listen "Ep. 8 - Hijacking, Crashing & Controlling: The Creative Side of Cyberattacks (Black Hat/DEFCON 2025)"
Episode Synopsis
In this special Black Hat/DEFCON 2025 edition of The Cybersecurity Brief, host Tova Dvorin sits down with SafeBreach Labs researchers Or Yair and Ron Ben-Yizhak to unpack three groundbreaking discoveries shaking up the cybersecurity world.
From abusing Windows RPC for devastating DoS and DDoS attacks, to exploiting Google Gemini through nothing more than a calendar invite, to hijacking RPC endpoints before privileged services even launch — these exploits highlight how creativity, not just technical skill, can redefine the threat landscape.
Tune in for live-demo insights, real-world attack scenarios, and actionable takeaways you can use today to strengthen your defenses.
. . .
Curious about the research we reveal in this episode?
Learn more in our blogs:
Invitation is All You Need: Invoking Gemini for Workspace Agents with a Simple Google Calendar Invite
You Snooze You Lose: RPC-Racer Winning RPC Endpoints Against Services
Win-DoS Epidemic: A Crash Course in Abusing RPC for Win-DoS & Win-DDoS
From abusing Windows RPC for devastating DoS and DDoS attacks, to exploiting Google Gemini through nothing more than a calendar invite, to hijacking RPC endpoints before privileged services even launch — these exploits highlight how creativity, not just technical skill, can redefine the threat landscape.
Tune in for live-demo insights, real-world attack scenarios, and actionable takeaways you can use today to strengthen your defenses.
. . .
Curious about the research we reveal in this episode?
Learn more in our blogs:
Invitation is All You Need: Invoking Gemini for Workspace Agents with a Simple Google Calendar Invite
You Snooze You Lose: RPC-Racer Winning RPC Endpoints Against Services
Win-DoS Epidemic: A Crash Course in Abusing RPC for Win-DoS & Win-DDoS
In God we trust