Toute l'actualité de la Cybersécurité
A week in security (October 27 – November 2)
2025-11-03 08:05:00
A list of topics we covered in the week of October 27 to November 2 of 2025
Conti Ransomware Operator Extradited to the United States
2025-11-03 08:03:33
A Ukrainian national accused of participating in one of the most damaging ransomware campaigns in history has been extradited from Ireland to face charges in the United States. Oleksii Oleksiyovych Lytvynenko,...
Conduent January 2025 breach impacts 10M+ people
2025-11-03 08:00:21
Conduent January 2025 breach exposed personal data of 10M+ people, including names, addresses, DOBs, SSNs, and health and insurance info. Conduent January 2025 breach exposed the personal data of over...
Windows 11 24H2/25H2 Flaw Keeps Task Manager Running After You Close It
2025-11-03 07:50:47
Microsoft has acknowledged a persistent bug affecting Windows 11 versions 24H2 and 25H2 that prevents Task Manager from properly terminating when users close the application. The issue causes multiple...
New BOF Tool Exploits Microsoft Teams' Cookie Encryption Allowing Attackers to Access User Chats
2025-11-03 07:27:49
A specialized Beacon Object File (BOF) designed to extract authentication cookies from Microsoft Teams without disrupting the application. This development builds on recent findings that expose how Teams...
Cette faille permet de contrôler l'IA de votre navigateur sans que vous ne le sachiez
2025-11-03 07:03:23
L'IA s'installe directement dans nos navigateurs, les transformant en véritables assistants autonomes. Une révolution pratique… mais aussi un risque majeur. Derrière cette promesse de confort,...
EDR-Redir V2 Evades Detection on Windows 11 by Faking Program Files
2025-11-03 05:58:05
Security researcher TwoSevenOneT has released EDR-Redir V2, an upgraded evasion tool that exploits Windows bind link technology to bypass endpoint detection and response solutions on Windows 11. The new...
OpenAI Introduces Aardvark, an AI Security Agent Powered by GPT-5
2025-11-03 05:22:17
OpenAI has announced the launch of Aardvark, an autonomous AI security agent powered by GPT-5 that aims to revolutionize how organizations discover and fix software vulnerabilities. The new tool, currently...
Proton Warns of 300 Million Stolen Login Details Circulating on Dark Web
2025-11-03 04:56:05
Privacy-focused technology company Proton has issued a warning about the escalating data breach crisis, revealing that hundreds of millions of stolen login credentials are actively circulating on the...
Fedora 43: Skopeo Advisory Security Fix for CVE-2025-58189 CVE-2025-61725
2025-11-03 01:38:43
Security fix for CVE-2025-58189, CVE-2025-61725
Fedora 43: Thunar 4.20.6 Advisory FEDORA-2025-7a1a0e5bd8
2025-11-03 01:38:37
Update to 4.20.6, the latest stable bugfix release.
Fedora 42: Advisory for Samba CVE-2025-10230 Critical Command Injection
2025-11-03 01:07:59
Update to Samba 4.22.6 - Security fix for CVE-2025-9640 and CVE-2025-10230
Fedora 42: uv 0.9.5 Important Security Fix CVE-2025-62518
2025-11-03 01:07:58
uv 0.9.5 https://github.com/astral-sh/uv/blob/0.9.5/CHANGELOG.md Since uv was built with astral-tokio-tar 0.5.6, this is a security fix for CVE-2025-62518. ruff 0.14.2
Fedora 42: Critical CVE-2025-62518 in rust-reqsign-http-send-reqwest
2025-11-03 01:07:58
uv 0.9.5 https://github.com/astral-sh/uv/blob/0.9.5/CHANGELOG.md Since uv was built with astral-tokio-tar 0.5.6, this is a security fix for CVE-2025-62518. ruff 0.14.2
Fedora 42: rust-tikv-jemallocator Critical CVE-2025-62518 Parser Issue
2025-11-03 01:07:58
uv 0.9.5 https://github.com/astral-sh/uv/blob/0.9.5/CHANGELOG.md Since uv was built with astral-tokio-tar 0.5.6, this is a security fix for CVE-2025-62518. ruff 0.14.2