Toute l'actualité de la Cybersécurité
Verizon Call Filter App Vulnerability Let Attackers Access Call History Logs
2025-04-03 09:19:21
A critical security vulnerability in the Verizon Call Filter iOS app exposed the incoming call records of potentially millions of Verizon Wireless customers, allowing unauthorized access to sensitive...
Hackers Selling SnowDog RAT Malware With Remote Control Capabilities Online
2025-04-03 09:18:48
A sophisticated remote access trojan (RAT) dubbed SnowDog has surfaced on underground cybercrime forums, prompting alarms among cybersecurity experts. Advertised as a tool for “corporate espionage...
1,500+ PostgreSQL Servers Compromised With Fileless Malware Attack
2025-04-03 09:13:32
A widespread cryptojacking campaign targeting poorly secured PostgreSQL database servers has impacted over 1,500 victims globally. The attack leverages fileless execution techniques and credential brute-forcing...
Le ministère des Armées déploie son assistant GenAI
2025-04-03 09:07:32
Un agent conversationnel pour les agents du ministère des Armées, disponible sur le réseau interne Intradef. Dévoilé pour (...)
Dopé par l'IA, le trafic web est majoritairement généré par des bots
2025-04-03 09:05:29
Faudra-t-il s'attendre à voir augmenter les risques liés aux bots sur les services exposés au web ? Un dernier rapport de F5 (...)
Gaia-X : les premiers data space français sortent de terre
2025-04-03 09:04:41
Le hub Gaia-X France a tenu sa plénière le 24 mars 2025 au coeur de Bercy (ministère de l'Économie et des Finances et de la (...)
10 Best Open-Source Blue Team Tools – 2025
2025-04-03 08:57:15
Companies evaluate their cybersecurity posture and protect network infrastructure implementations by employing cybersecurity experts to undertake security assessments. The organization may engage penetration...
Authorities Shut Down Kidflix Child Abuse Platform in Major Takedown
2025-04-03 08:52:34
In one of the most significant operations against child sexual exploitation in recent history, authorities have announced the shutdown of “Kidflix,” one of the world’s largest platforms...
WinRAR “Mark of the Web” Bypass Vulnerability Let Attackers Arbitrary Code
2025-04-03 07:52:02
A newly disclosed vulnerability in WinRAR allows attackers to bypass a core Windows security mechanism, enabling arbitrary code execution on affected systems. Tracked as CVE-2025-31334, this flaw impacts...
Journée mondiale de la sécurité du cloud – Nouvel eBook sur le Zero Trust et la sécurité du cloud hybride
2025-04-03 07:45:15
Dans un contexte où les activités et les processus sont de plus en plus dématérialisés, la sécurité des données dans le cloud devient un enjeu stratégique. Plus nos activités quotidiennes, nos...
Massive GitHub Leak: 39M API Keys & Credentials Exposed – How to Strengthen Security
2025-04-03 07:44:08
Over 39 million API keys, credentials, and other sensitive secrets were exposed on GitHub in 2024, raising considerable alarm within the developer community and enterprises globally. The scale and impact...
Sophisticated QR Code Phishing Attack Targeting Microsoft 365 Users to Steal Logins
2025-04-03 07:41:19
A new sophisticated phishing campaign leveraging QR codes to steal Microsoft 365 login credentials has emerged in the cybersecurity landscape. This attack represents a significant evolution in phishing...
GoResolver: A Powerful New Tool for Analyzing Golang Malware
2025-04-03 06:56:30
Analyzing malware has become increasingly challenging, especially with the growing popularity of programming languages like Golang. Golang, or Go, has captivated developers for its extensive features...
Cisco Smart Licensing Utility Vulnerabilities Let Attackers Gain Admin Access
2025-04-03 06:46:31
Two critical vulnerabilities were actively exploited in Cisco Smart Licensing Utility, potentially allowing attackers to gain administrative access to affected systems. Organizations running vulnerable...
Le centre de certification de l'ANSSI émet ses premiers certificats EUCC
2025-04-03 06:40:40
Le centre de certification de l'ANSSI émet ses premiers certificats EUCC
anssiadm
jeu 03/04/2025 - 06:40
Un an après l'adoption du schéma de certification européen...
Prince Ransomware – An Open Source Ransomware Builder That Automatically Build Ransomware Freely Available in GitHub
2025-04-03 06:36:18
Cybersecurity experts observed the emergence of a concerning trend in which ransomware attacks leveraging malware created with an open-source tool called “Prince Ransomware.” This Go-language...
Cisco Smart Licensing Utility Flaws Allowed Attackers to Gain Admin Access
2025-04-03 06:31:54
Cisco has disclosed critical vulnerabilities in its Smart Licensing Utility software, identified as CVE-2024-20439 and CVE-2024-20440, which could allow unauthenticated, remote attackers to gain administrative...
New guidance on securing HTTP-based APIs
2025-04-03 06:28:42
Why it's essential to secure your APIs to build trust with your customers and partners.
Verizon Call Filter App Vulnerability Exposed Call Log Data of Customers
2025-04-03 06:10:09
A vulnerability in Verizon’s Call Filter app for iOS has been discovered, allowing unauthorized access to customer call logs. This flaw allowed any individual with the requisite technical knowledge...
Israel Enters 'Stage 3' of Cyber Wars With Iran Proxies
2025-04-03 06:00:00
While Israel and Iranian proxies fight it out IRL, their conflict in cyberspace has developed in parallel. These days attacks have decelerated, but advanced in sophistication.
New Triada Trojan comes preinstalled on Android devices
2025-04-03 05:16:20
A new Triada trojan variant comes preinstalled on Android devices, stealing data on setup, warn researchers from Kaspersky. Kaspersky researchers discovered a new Triada trojan variant preinstalled on...
Gootloader Malware Attacking Users Via Google Search Ads Using Weaponized Documents
2025-04-03 05:07:40
The notorious Gootloader malware has reemerged with evolved tactics, now leveraging Google Search advertisements to target users seeking legal document templates. This sophisticated campaign specifically...
Fedora 40: firefox 2025-d48f900812
2025-04-03 01:52:24
Updated to latest upstream (137.0)
Fedora 40: corosync 2025-0bafd025de
2025-04-03 01:52:23
Security fix for CVE-2025-30472
Fedora 40: suricata 2025-2a295896e6
2025-04-03 01:52:21
This is an extra release to address a critical issue in 7.0.9 affecting AF_PACKET users: setting a BPF would cause Suricata to fail to start up. This has been fixed. Various security, performance, accuracy,...
Fedora 40: nextcloud 2025-dbeb2c60c3
2025-04-03 01:52:21
31.0.2 release RHBZ#2345769 RHBZ#2345775 RHBZ#2350414
Fedora 41: corosync 2025-c55f39aeb3
2025-04-03 01:37:08
Security fix for CVE-2025-30472
Fedora 41: suricata 2025-5fa61dc843
2025-04-03 01:37:06
This is an extra release to address a critical issue in 7.0.9 affecting AF_PACKET users: setting a BPF would cause Suricata to fail to start up. This has been fixed. Various security, performance, accuracy,...