Toute l'actualité de la Cybersécurité
LevelBlue s'empare de Cybereason
2025-10-17 10:36:57
L'éditeur américain Cybereason, connu pour sa plateforme EDR/XDR, vient de se faire racheter par l'un des plus importants MSSP (Managed Security (...)
Post-exploitation framework now also delivered via npm
2025-10-17 10:00:33
The npm registry contains a malicious package that downloads the AdaptixC2 agent onto victims' devices, Kaspersky experts have found. The threat targets Windows, Linux, and macOS.
Unveiling Hidden AWS Keys In My First Android Pentest
2025-10-17 09:50:19
We often find our greatest challenges — and lessons — in the most unexpected places. For me, it was during a casual, personal engagement…Continue reading...
How I Became an Accidental Admin and Almost Got Fired (From Someone Else's Company)
2025-10-17 09:49:20
Free Link 🎈Continue reading on InfoSec Write-ups »
️ Spring Boot API Security Like a Pro: Rate Limiting, Replay Protection & Signature Validation…
2025-10-17 09:47:51
Learn how to secure your Spring Boot APIs using rate limiting, replay attack prevention, and HMAC signature validation. Includes…Continue reading on InfoSec Write-ups »
25. Monetizing Your Skills Beyond Bug Bounty
2025-10-17 09:47:44
Turn your hacking expertise into a thriving career beyond bounties.Continue reading on InfoSec Write-ups »
Windows GDI Vulnerability in Rust Kernel Module Enables Remote Attacks
2025-10-17 09:46:44
A newly discovered flaw in Microsoft's Rust-based Graphics Device Interface (GDI) kernel component allows unprivileged attackers to crash or take control of Windows systems. Check Point Research (CPR)...
The Art of Breaking OAuth: Real-World Exploit and Misuses
2025-10-17 09:44:58
OAuth isn't broken by design — but in the wild, misconfigurations and clever abuse have made it the hacker's favorite shortcut past MFA.OverviewOAuth 2.0 is the invisible backbone of modern...
Cisco Desk, IP, and Video Phone Vulnerabilities Let Remote Attackers Trigger DoS And XSS Attacks
2025-10-17 09:41:59
Cisco has issued a security advisory warning of multiple vulnerabilities in its Desk Phone 9800 Series, IP Phone 7800 and 8800 Series, and Video Phone 8875 models running Cisco Session Initiation Protocol...
Microsoft revokes 200+ certificates abused by Vanilla Tempest in fake Teams campaign
2025-10-17 09:40:21
Microsoft revoked 200+ certificates used by Vanilla Tempest to sign fake Teams installers spreading Oyster backdoor and Rhysida ransomware. Microsoft revoked over 200 certificates used by the cybercrime...
Researchers Uncover WatchGuard VPN Bug That Could Let Attackers Take Over Devices
2025-10-17 09:25:00
Cybersecurity researchers have disclosed details of a recently patched critical security flaw in WatchGuard Fireware that could allow unauthenticated attackers to execute arbitrary code.
The vulnerability,...
Microsoft Report Warns of AI-Powered Automation in Cyberattacks and Malware Creation
2025-10-17 09:21:01
Cybercriminals are weaponizing artificial intelligence to accelerate malware development, discover vulnerabilities faster, and create more sophisticated phishing campaigns, according to Microsoft’s...
ConnectWise Flaws Let Attackers Deliver Malicious Software Updates
2025-10-17 09:20:17
ConnectWise has issued a critical security update for its Automate™ platform after uncovering vulnerabilities that could allow attackers to intercept and tamper with software updates. The flaws, present...
PowerSchool hacker got four years in prison
2025-10-17 08:59:12
Matthew D. Lane, a Massachusetts student, got four years in prison for hacking and extorting M from PowerSchool and another company. A Massachusetts student, Matthew D. Lane, was sentenced to four years...
Cisco Desk, IP, and Video Phones Vulnerable to Remote DoS and XSS Attacks
2025-10-17 08:57:11
Multiple Cisco desk, IP, and video phones are at risk of remote denial-of-service (DoS) and cross-site scripting (XSS) attacks due to flaws in their Session Initiation Protocol (SIP) software. The weaknesses...
VMware Workstation and Fusion 25H2 Released with New Features and Latest OS Support
2025-10-17 08:55:21
VMware has launched Workstation 25H2 and Fusion 25H2, the newest iterations of its desktop hypervisors, featuring a revamped versioning system, enhanced tools, and broader compatibility with modern hardware...
APT28 Deploys BeardShell and Covenant Modules via Weaponized Office Documents
2025-10-17 08:49:12
Security researchers at Sekoia.io have uncovered a sophisticated cyberattack campaign orchestrated by APT28, the notorious Russian state-sponsored threat actor, targeting Ukrainian military personnel...
North Korean Hackers Using EtherHiding to Deliver Malware and Steal Cryptocurrency
2025-10-17 08:34:58
In recent months, a sophisticated malware campaign—dubbed EtherHiding—has emerged from North Korea-aligned threat actors, sharply escalating the cybersecurity risks facing cryptocurrency exchanges...
Over 269,000 F5 Devices Exposed Online After Major Breach: U.S. Faces Largest Risk
2025-10-17 08:25:46
Over 269,000 F5 devices are reportedly exposed to the public internet daily, according to data from The Shadowserver Foundation. This exposure comes at a critical time following F5’s disclosure...
Under the engineering hood: Why Malwarebytes chose WordPress as its CMS
2025-10-17 08:10:10
It might surprise some that a security company would choose WordPress as the backbone of its digital content operations. Here's what we considered when choosing it.
France Télévisions forme ses journalistes aux ingérences numériques
2025-10-17 08:00:15
Pour un groupe média comme France Télévisions, la lutte contre les fake news, les deep fakes, la désinformation, les fausses (...)
A bout, les RSSI ne restent pas longtemps en poste
2025-10-17 07:59:42
De nos jours, la durée moyenne en poste d'un RSSI est de trois ans, selon Tom Chapman, cofondateur du cabinet de recrutement spécialisé (...)
Over 269,000 F5 Devices Found Exposed Online After Massive Breach
2025-10-17 07:41:47
A recent breach of F5 Networks' infrastructure has left more than 269,000 devices exposed and vulnerable to attack. Security researchers first detected unusual activity on F5's management portal,...
Auction house Sotheby's disclosed a July data breach
2025-10-17 07:38:49
Sotheby's reported a July 24 breach exposing customer and financial data; it took two months to assess the stolen information and affected individuals. Sotheby's reported a data breach that exposed...
SEO spam and hidden links: how to protect your website and your reputation
2025-10-17 07:00:55
Are you seeing your website traffic drop, and security systems blocking it for pornographic content that is not there? Hidden links, a type of SEO spam, could be the cause.
Sécurité applicative : l'IA et la supply chain logicielle, inégalement couverts
2025-10-17 06:46:26
Les principaux fournisseurs de solutions de test de sécurité des applications couvrent assez diversement les composants IA et la chaîne d'approvisionnement logicielle.
The post Sécurité applicative...
F5 Released Security Updates Covering Multiple Products Following Recent Hack
2025-10-17 06:33:41
F5 Networks, a leading provider of application security and delivery solutions, has disclosed a significant security breach involving a nation-state threat actor, prompting the release of critical updates...
LinkPro: An eBPF-Based Rootkit Hiding Malicious Activity on GNU/Linux
2025-10-17 06:25:52
Security researchers from Synacktiv CSIRT have uncovered a sophisticated Linux rootkit dubbed LinkPro that leverages eBPF (extended Berkeley Packet Filter) technology to establish persistent backdoor...
VMware Releases Workstation & Fusion 25H2 With Enhanced Features and OS Support
2025-10-17 06:06:56
VMware has launched the latest versions of its desktop hypervisors, Workstation 25H2 and Fusion 25H2, bringing significant improvements to virtualization technology. These updates introduce a simplified...
Microsoft Revokes 200 Fraudulent Certificates Used in Rhysida Ransomware Campaign
2025-10-17 06:03:00
Microsoft on Thursday disclosed that it revoked more than 200 certificates used by a threat actor it tracks as Vanilla Tempest to fraudulently sign malicious binaries in ransomware attacks.
The certificates...
Critical Cisco IOS and IOS XE Flaws Allow Remote Code Execution
2025-10-17 05:53:52
Cisco has disclosed a serious security vulnerability affecting its IOS and IOS XE Software that could allow attackers to execute remote code or crash affected devices. The flaw, tracked as CVE-2025-20352,...
F5 Issues Security Patches for Multiple Products After Recent Breach
2025-10-17 05:36:56
F5 Networks has released comprehensive security patches addressing multiple critical vulnerabilities across its product portfolio following a recent security incident. The company issued its quarterly...
Mageia 9: Varnish Important DoS Threat MGASA-2025-0239 CVE-2025-8671
2025-10-17 03:41:37
MGASA-2025-0239 - Updated varnish & lighttpd packages fix security vulnerability
Cisco IOS and IOS XE Software Vulnerabilities Let Attackers Execute Remote Code
2025-10-17 02:26:23
Cisco has disclosed a severe vulnerability in its widely used IOS and IOS XE Software, potentially allowing attackers to crash devices or seize full control through remote code execution. The flaw, rooted...
Ubuntu 20.04 LTS: MuPDF Critical Memory Issues Denial of Service USN-7825-1
2025-10-17 01:01:50
Several security issues were fixed in MuPDF.