Toute l'actualité de la Cybersécurité
CISA Flags Critical WatchGuard Fireware Flaw Exposing 54,000 Fireboxes to No-Login Attacks
2025-11-13 07:23:00
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added a critical security flaw impacting WatchGuard Fireware to its Known Exploited Vulnerabilities (KEV) catalog, based on...
Critical Dell Data Lakehouse Flaw Allows Remote Attackers to Escalate Privileges
2025-11-13 07:20:32
Dell Technologies has disclosed a critical security vulnerability affecting its Data Lakehouse platform that could allow attackers with high-level privileges to escalate their access and compromise system...
CISA Warns of Federal Agencies Not Fully Patching Actively Exploited Cisco ASA or Firepower Devices
2025-11-13 07:18:57
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical alert regarding federal agencies. Failing to properly patch Cisco Adaptive Security Appliances (ASA) and Firepower Threat...
Kenya Kicks Off 'Code Nation' With a Nod to Cybersecurity
2025-11-13 07:00:00
The African country aims to train 1 million workers in tech skills in the short term, with a focus on software engineering, cybersecurity, and data science.
Beware of Fake Bitcoin Tools Concealing DarkComet RAT Malware
2025-11-13 06:06:23
A newly discovered malware campaign is leveraging one of cybercriminals’ most effective lures cryptocurrency to distribute DarkComet RAT. This notorious remote access trojan continues to plague...
New Phishing Attack Targeting iPhone Owners Who've Lost Their Devices
2025-11-13 05:56:20
A new phishing campaign is targeting iPhone owners who have lost their devices, exploiting their hope of recovery to steal Apple ID credentials. The National Cyber Security Centre (NCSC) has received...
CISA Warns of Active Exploitation of WatchGuard Firebox Out-of-Bounds Write Flaw
2025-11-13 05:53:21
The Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability affecting WatchGuard Firebox firewalls to its Known Exploited Vulnerabilities (KEV) catalog, warning of active...
Citrix NetScaler ADC and Gateway Flaw Allows Cross-Site Scripting (XSS) Attacks
2025-11-13 05:41:30
Cloud Software Group has disclosed a cross-site scripting (XSS) vulnerability affecting NetScaler ADC and NetScaler Gateway platforms. The flaw, tracked as CVE-2025-12101, poses a moderate security risk...
BreachLock and Vanta Bridge the Gap Between Continuous Security Testing and Compliance with New Integration
2025-11-13 05:35:51
New York, New York, 13th November 2025, CyberNewsWire
Hackers Using RMM Tools LogMeIn and PDQ Connect to Deploy Malware as Legitimate Software
2025-11-13 05:35:41
Cybersecurity researchers at AhnLab Security Intelligence Center (ASEC) have uncovered a sophisticated attack campaign leveraging legitimate Remote Monitoring and Management (RMM) tools to deploy backdoor...
Active Exploitation of Cisco and Citrix 0-Day Vulnerabilities Allows Webshell Deployment
2025-11-13 05:29:28
Amazon’s threat intelligence team has uncovered a sophisticated cyber campaign exploiting previously undisclosed zero-day vulnerabilities in critical enterprise infrastructure. Advanced threat actors...
Over 67,000 Fake npm Packages Flood Registry in Worm-Like Spam Attack
2025-11-13 04:58:00
Cybersecurity researchers are calling attention to a large-scale spam campaign that has flooded the npm registry with thousands of fake packages since early 2024 as part of a likely financially motivated...
Google Sues “Lighthouse” Over Massive Phishing Attacks
2025-11-13 04:54:06
That text message you got about a “stuck package” from USPS, or an “unpaid road toll” notice, isn't just random spam it's become the signature move of an international criminal outfit that's...
Chinese National Jailed for Laundering Over £5 Billion by Defrauding Over 128,000 Victims
2025-11-13 03:38:10
A Chinese national has been sentenced to over 11 years in prison following one of the most significant cryptocurrency fraud investigations in history. Zhimin Qian, 47, received an 11-year and eight-month...
Lite XL Text editor Vulnerability Let Attackers Execute Arbitrary Code
2025-11-13 03:13:24
A vulnerability has been discovered in Lite XL, a lightweight text editor, that could allow attackers to execute arbitrary code on affected systems. Carnegie Mellon University experts identified CVE-2025-12120,...
ThreatBook Peer-Recognized as a Strong Performer in the 2025 Gartner® Peer Insights™ Voice of the Customer for Network Detection and Response — for the Third Consecutive Year
2025-11-13 01:01:16
Singapore, Singapore, 13th November 2025, CyberNewsWire
Fedora 41: Critical Log Injection and DoS Risks in rubygem-rack 2.2.21
2025-11-13 01:23:33
Update to Rack 2.2.21
Fedora 42: Critical Audio Playback Issues in WebKitGTK Resolved Now
2025-11-13 01:10:51
Update to WebKitGTK 2.50.1: Improve text rendering performance. Fix audio playback broken on instagram. Fix rendering of layers with fractional transforms. Fix several crashes and rendering issues.
Fedora 42: rubygem-rack Critical Denial Of Service Fix 2025-eae2126736
2025-11-13 01:10:48
Update to Rack 2.2.21
Fedora 42: Skopeo Critical Security Issue CVE-2025-58189, CVE-2025-61725
2025-11-13 01:10:44
Security fix for CVE-2025-58189 and CVE-2025-61725
Fedora 43: firefox 145.0 Important Update 2025-2d9e01e0fc
2025-11-13 00:51:49
Updated to latest upstream (145.0)
Fedora 43: rubygem-rack Moderate Denial Service Update 2025-b6e0f437b6
2025-11-13 00:51:40
Update to Rack 3.1.19