Toute l'actualité de la Cybersécurité


Verizon Call Filter App Vulnerability Let Attackers Access Call History Logs

2025-04-03 09:19:21
A critical security vulnerability in the Verizon Call Filter iOS app exposed the incoming call records of potentially millions of Verizon Wireless customers, allowing unauthorized access to sensitive...

Lire la suite »

Hackers Selling SnowDog RAT Malware With Remote Control Capabilities Online

2025-04-03 09:18:48
A sophisticated remote access trojan (RAT) dubbed SnowDog has surfaced on underground cybercrime forums, prompting alarms among cybersecurity experts. Advertised as a tool for “corporate espionage...

Lire la suite »

1,500+ PostgreSQL Servers Compromised With Fileless Malware Attack

2025-04-03 09:13:32
A widespread cryptojacking campaign targeting poorly secured PostgreSQL database servers has impacted over 1,500 victims globally. The attack leverages fileless execution techniques and credential brute-forcing...

Lire la suite »

Le ministère des Armées déploie son assistant GenAI

2025-04-03 09:07:32
Un agent conversationnel pour les agents du ministère des Armées, disponible sur le réseau interne Intradef. Dévoilé pour (...)

Lire la suite »

Dopé par l'IA, le trafic web est majoritairement généré par des bots

2025-04-03 09:05:29
Faudra-t-il s'attendre à voir augmenter les risques liés aux bots sur les services exposés au web ? Un dernier rapport de F5 (...)

Lire la suite »

Gaia-X : les premiers data space français sortent de terre

2025-04-03 09:04:41
Le hub Gaia-X France a tenu sa plénière le 24 mars 2025 au coeur de Bercy (ministère de l'Économie et des Finances et de la (...)

Lire la suite »

10 Best Open-Source Blue Team Tools – 2025

2025-04-03 08:57:15
Companies evaluate their cybersecurity posture and protect network infrastructure implementations by employing cybersecurity experts to undertake security assessments. The organization may engage penetration...

Lire la suite »

Authorities Shut Down Kidflix Child Abuse Platform in Major Takedown

2025-04-03 08:52:34
In one of the most significant operations against child sexual exploitation in recent history, authorities have announced the shutdown of “Kidflix,” one of the world’s largest platforms...

Lire la suite »

WinRAR “Mark of the Web” Bypass Vulnerability Let Attackers Arbitrary Code

2025-04-03 07:52:02
A newly disclosed vulnerability in WinRAR allows attackers to bypass a core Windows security mechanism, enabling arbitrary code execution on affected systems. Tracked as CVE-2025-31334, this flaw impacts...

Lire la suite »

Journée mondiale de la sécurité du cloud – Nouvel eBook sur le Zero Trust et la sécurité du cloud hybride

2025-04-03 07:45:15
Dans un contexte où les activités et les processus sont de plus en plus dématérialisés, la sécurité des données dans le cloud devient un enjeu stratégique. Plus nos activités quotidiennes, nos...

Lire la suite »

Massive GitHub Leak: 39M API Keys & Credentials Exposed – How to Strengthen Security

2025-04-03 07:44:08
Over 39 million API keys, credentials, and other sensitive secrets were exposed on GitHub in 2024, raising considerable alarm within the developer community and enterprises globally. The scale and impact...

Lire la suite »

Sophisticated QR Code Phishing Attack Targeting Microsoft 365 Users to Steal Logins

2025-04-03 07:41:19
A new sophisticated phishing campaign leveraging QR codes to steal Microsoft 365 login credentials has emerged in the cybersecurity landscape. This attack represents a significant evolution in phishing...

Lire la suite »

GoResolver: A Powerful New Tool for Analyzing Golang Malware

2025-04-03 06:56:30
Analyzing malware has become increasingly challenging, especially with the growing popularity of programming languages like Golang. Golang, or Go, has captivated developers for its extensive features...

Lire la suite »

Cisco Smart Licensing Utility Vulnerabilities Let Attackers Gain Admin Access

2025-04-03 06:46:31
Two critical vulnerabilities were actively exploited in Cisco Smart Licensing Utility, potentially allowing attackers to gain administrative access to affected systems.  Organizations running vulnerable...

Lire la suite »

Le centre de certification de l'ANSSI émet ses premiers certificats EUCC

2025-04-03 06:40:40
Le centre de certification de l'ANSSI émet ses premiers certificats EUCC anssiadm jeu 03/04/2025 - 06:40 Un an après l'adoption du schéma de certification européen...

Lire la suite »

Prince Ransomware – An Open Source Ransomware Builder That Automatically Build Ransomware Freely Available in GitHub

2025-04-03 06:36:18
Cybersecurity experts observed the emergence of a concerning trend in which ransomware attacks leveraging malware created with an open-source tool called “Prince Ransomware.” This Go-language...

Lire la suite »

Cisco Smart Licensing Utility Flaws Allowed Attackers to Gain Admin Access

2025-04-03 06:31:54
Cisco has disclosed critical vulnerabilities in its Smart Licensing Utility software, identified as CVE-2024-20439 and CVE-2024-20440, which could allow unauthenticated, remote attackers to gain administrative...

Lire la suite »

New guidance on securing HTTP-based APIs

2025-04-03 06:28:42
Why it's essential to secure your APIs to build trust with your customers and partners.

Lire la suite »

Verizon Call Filter App Vulnerability Exposed Call Log Data of Customers

2025-04-03 06:10:09
A vulnerability in Verizon’s Call Filter app for iOS has been discovered, allowing unauthorized access to customer call logs. This flaw allowed any individual with the requisite technical knowledge...

Lire la suite »

Israel Enters 'Stage 3' of Cyber Wars With Iran Proxies

2025-04-03 06:00:00
While Israel and Iranian proxies fight it out IRL, their conflict in cyberspace has developed in parallel. These days attacks have decelerated, but advanced in sophistication.

Lire la suite »

New Triada Trojan comes preinstalled on Android devices

2025-04-03 05:16:20
A new Triada trojan variant comes preinstalled on Android devices, stealing data on setup, warn researchers from Kaspersky. Kaspersky researchers discovered a new Triada trojan variant preinstalled on...

Lire la suite »

Gootloader Malware Attacking Users Via Google Search Ads Using Weaponized Documents

2025-04-03 05:07:40
The notorious Gootloader malware has reemerged with evolved tactics, now leveraging Google Search advertisements to target users seeking legal document templates. This sophisticated campaign specifically...

Lire la suite »

Fedora 40: firefox 2025-d48f900812

2025-04-03 01:52:24
Updated to latest upstream (137.0)

Lire la suite »

Fedora 40: corosync 2025-0bafd025de

2025-04-03 01:52:23
Security fix for CVE-2025-30472

Lire la suite »

Fedora 40: suricata 2025-2a295896e6

2025-04-03 01:52:21
This is an extra release to address a critical issue in 7.0.9 affecting AF_PACKET users: setting a BPF would cause Suricata to fail to start up. This has been fixed. Various security, performance, accuracy,...

Lire la suite »

Fedora 40: nextcloud 2025-dbeb2c60c3

2025-04-03 01:52:21
31.0.2 release RHBZ#2345769 RHBZ#2345775 RHBZ#2350414

Lire la suite »

Fedora 41: corosync 2025-c55f39aeb3

2025-04-03 01:37:08
Security fix for CVE-2025-30472

Lire la suite »

Fedora 41: suricata 2025-5fa61dc843

2025-04-03 01:37:06
This is an extra release to address a critical issue in 7.0.9 affecting AF_PACKET users: setting a BPF would cause Suricata to fail to start up. This has been fixed. Various security, performance, accuracy,...

Lire la suite »