Toute l'actualité de la Cybersécurité
Un copier-coller de code fragilise plusieurs frameworks d'inférence
2025-11-20 11:01:11
La sécurité de l’IA prend une place de plus en plus importante au fur et à mesure que la technologie se développe. Des (...)
Avec Delos Cloud, SAP assure la continuité des services Azure en Europe
2025-11-20 10:23:22
A l’occasion du sommet franco-allemand sur la souveraineté numérique qui s’est déroulé à Berlin le 17 novembre, (...)
Blockchain and Node.js abused by Tsundere: an emerging botnet
2025-11-20 10:00:13
Kaspersky GReAT experts discovered a new campaign featuring the Tsundere botnet. Node.js-based bots abuse web3 smart contracts and are spread via MSI installers and PowerShell scripts.
Multi-threat Android malware Sturnus steals Signal, WhatsApp messages
2025-11-20 10:00:00
A new Android banking trojan named Sturnus can capture communication from end-to-end encrypted messaging platforms like Signal, WhatsApp, and Telegram, as well as take complete control of the device....
NSA Issues Guidance for ISPs and Network Defenders to Combat Malicious Activity
2025-11-20 09:41:42
The National Security Agency (NSA), in collaboration with the Cybersecurity and Infrastructure Security Agency (CISA), the FBI, and multiple international partners, has released a comprehensive cybersecurity...
Le partenariat SAP-Mistral AI trouve un relais dans l'administration publique
2025-11-20 09:23:51
En partenariat depuis mi-2024, SAP et Mistral AI vont signer un accord-cadre avec Paris et Berlin pour servir les administrations publiques.
The post Le partenariat SAP-Mistral AI trouve un relais dans...
Ollama Vulnerabilities Let Attackers Execute Arbitrary Code by Parsing of Malicious Model Files
2025-11-20 09:16:05
A severe vulnerability in Ollama, one of GitHub’s most popular open-source projects, with over 155,000 stars. The flaw enables attackers to execute arbitrary code on systems running vulnerable versions...
CISA Warns of Google Chrome 0-Day Vulnerability Exploited in Attacks
2025-11-20 08:58:51
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert about a zero-day vulnerability in Google Chrome, actively exploited by threat actors. CVE-2025-13223 is a flaw...
Les pratiques cloud d'AWS et Microsoft dans le viseur de l'Europe
2025-11-20 08:55:46
A souveraineté, souveraineté et demie ! Le sommet franco-allemand sur la souveraineté numérique européenne, qui réunit (...)
Les cybercriminels créent plus de 30 sites web frauduleux utilisant COP 30 comme appât pour tromper leurs victimes
2025-11-20 08:16:33
Kaspersky alerte sur l’émergence d’escroqueries exploitant l’engouement autour de la conférence pour dérober des données personnelles et des informations confidentielles. Tribune...
pi GPT Tool Turns Your Raspberry Pi into A ChatGPT Powered AI-managed device
2025-11-20 08:07:56
pi GPT, a custom integration for OpenAI’s ChatGPT that transforms everyday Raspberry Pi devices into fully managed AI-powered workstations. Announced on November 18, 2025, this tool empowers developers,...
Iran-Linked Hackers Mapped Ship AIS Data Days Before Real-World Missile Strike Attempt
2025-11-20 07:35:00
Threat actors with ties to Iran engaged in cyber warfare as part of efforts to facilitate and enhance physical, real-world attacks, a trend that Amazon has called cyber-enabled kinetic targeting.
The...
Agent 365 : après l'orchestration, Microsoft promet l'encadrement de l'IA agentique
2025-11-20 07:11:15
Sous la bannière Agent 365, Microsoft adapte son socle Entra-Purview-Defender pour constituer un plan de contrôle - mais pas d'orchestration - des agents IA.
The post Agent 365 : après l’orchestration,...
China-Nexus APT Group Leverages DLL Sideloading Technique to Attack Government and Media Sectors
2025-11-20 05:50:10
A targeted cyber espionage campaign has emerged across Southeast Asia, specifically affecting government and media organizations in countries surrounding the South China Sea. The campaign, which has been...
Beckett Collectibles - 541,132 breached accounts
2025-11-20 05:41:12
In November 2025, Beckett Collectibles experienced a data breach accompanied by website content defacement. The stolen data was later advertised for sale on a prominent hacking forum, with portions subsequently...
Hackers Can Exploit Default ServiceNow AI Assistants Configurations to Launch Prompt Injection Attacks
2025-11-20 05:26:32
A dangerous vulnerability in ServiceNow’s Now Assist AI platform allows attackers to execute second-order prompt injection attacks via default agent configuration settings. The flaw enables unauthorized...
Cline AI Coding Agent Vulnerabilities Enables Prompt Injection, Code Execution, and Data Leakage
2025-11-20 05:19:35
Cline is an open-source AI coding agent with 3.8 million installs and over 52,000 GitHub stars. Contains four critical security vulnerabilities that enable attackers to execute arbitrary code and exfiltrate...
TamperedChef Malware Spreads via Fake Software Installers in Ongoing Global Campaign
2025-11-20 04:06:00
Threat actors are leveraging bogus installers masquerading as popular software to trick users into installing malware as part of a global malvertising campaign dubbed TamperedChef.
The end goal of the...
Hackers Attacking Palo Alto Networks' GlobalProtect VPN Portals with 2.3 Million Attacks
2025-11-20 03:29:48
Hackers have unleashed over 2.3 million malicious sessions against Palo Alto Networks’ GlobalProtect VPN portals since November 14, 2025, according to threat intelligence firm GreyNoise. This surge,...
Eurofiber - 10,003 breached accounts
2025-11-20 02:44:14
In November 2025, Eurofiber France disclosed a data breach of its ticket management platform. Data containing 10k unique email addresses and a smaller number of names and phone numbers was subsequently...
Vultr - 187,872 breached accounts
2025-11-20 01:22:52
In March 2023, the "AI-first global cloud platform" Vultr disclosed a security incident at a third-party vendor. Dating back to the previous year, the incident was attributed to the ActiveCampaign email...
OpenAI says its latest GPT-5.1 Codex can code independently for hours
2025-11-20 00:00:00
OpenAI has started rolling out GPT 5.1-Codex-Max on Codex with a better performance on coding tasks. [...]