Toute l'actualité de la Cybersécurité


LevelBlue s'empare de Cybereason

2025-10-17 10:36:57
L'éditeur américain Cybereason, connu pour sa plateforme EDR/XDR, vient de se faire racheter par l'un des plus importants MSSP (Managed Security (...)

Lire la suite »

Post-exploitation framework now also delivered via npm

2025-10-17 10:00:33
The npm registry contains a malicious package that downloads the AdaptixC2 agent onto victims' devices, Kaspersky experts have found. The threat targets Windows, Linux, and macOS.

Lire la suite »

Unveiling Hidden AWS Keys In My First Android Pentest

2025-10-17 09:50:19
We often find our greatest challenges — and lessons — in the most unexpected places. For me, it was during a casual, personal engagement…Continue reading...

Lire la suite »

How I Became an Accidental Admin and Almost Got Fired (From Someone Else's Company)

2025-10-17 09:49:20
Free Link 🎈Continue reading on InfoSec Write-ups »

Lire la suite »

️ Spring Boot API Security Like a Pro: Rate Limiting, Replay Protection & Signature Validation…

2025-10-17 09:47:51
Learn how to secure your Spring Boot APIs using rate limiting, replay attack prevention, and HMAC signature validation. Includes…Continue reading on InfoSec Write-ups »

Lire la suite »

25. Monetizing Your Skills Beyond Bug Bounty

2025-10-17 09:47:44
Turn your hacking expertise into a thriving career beyond bounties.Continue reading on InfoSec Write-ups »

Lire la suite »

Windows GDI Vulnerability in Rust Kernel Module Enables Remote Attacks

2025-10-17 09:46:44
A newly discovered flaw in Microsoft's Rust-based Graphics Device Interface (GDI) kernel component allows unprivileged attackers to crash or take control of Windows systems. Check Point Research (CPR)...

Lire la suite »

The Art of Breaking OAuth: Real-World Exploit and Misuses

2025-10-17 09:44:58
OAuth isn't broken by design — but in the wild, misconfigurations and clever abuse have made it the hacker's favorite shortcut past MFA.OverviewOAuth 2.0 is the invisible backbone of modern...

Lire la suite »

Cisco Desk, IP, and Video Phone Vulnerabilities Let Remote Attackers Trigger DoS And XSS Attacks

2025-10-17 09:41:59
Cisco has issued a security advisory warning of multiple vulnerabilities in its Desk Phone 9800 Series, IP Phone 7800 and 8800 Series, and Video Phone 8875 models running Cisco Session Initiation Protocol...

Lire la suite »

Microsoft revokes 200+ certificates abused by Vanilla Tempest in fake Teams campaign

2025-10-17 09:40:21
Microsoft revoked 200+ certificates used by Vanilla Tempest to sign fake Teams installers spreading Oyster backdoor and Rhysida ransomware. Microsoft revoked over 200 certificates used by the cybercrime...

Lire la suite »

Researchers Uncover WatchGuard VPN Bug That Could Let Attackers Take Over Devices

2025-10-17 09:25:00
Cybersecurity researchers have disclosed details of a recently patched critical security flaw in WatchGuard Fireware that could allow unauthenticated attackers to execute arbitrary code. The vulnerability,...

Lire la suite »

Microsoft Report Warns of AI-Powered Automation in Cyberattacks and Malware Creation

2025-10-17 09:21:01
Cybercriminals are weaponizing artificial intelligence to accelerate malware development, discover vulnerabilities faster, and create more sophisticated phishing campaigns, according to Microsoft’s...

Lire la suite »

ConnectWise Flaws Let Attackers Deliver Malicious Software Updates

2025-10-17 09:20:17
ConnectWise has issued a critical security update for its Automate™ platform after uncovering vulnerabilities that could allow attackers to intercept and tamper with software updates. The flaws, present...

Lire la suite »

PowerSchool hacker got four years in prison

2025-10-17 08:59:12
Matthew D. Lane, a Massachusetts student, got four years in prison for hacking and extorting M from PowerSchool and another company. A Massachusetts student, Matthew D. Lane, was sentenced to four years...

Lire la suite »

Cisco Desk, IP, and Video Phones Vulnerable to Remote DoS and XSS Attacks

2025-10-17 08:57:11
Multiple Cisco desk, IP, and video phones are at risk of remote denial-of-service (DoS) and cross-site scripting (XSS) attacks due to flaws in their Session Initiation Protocol (SIP) software. The weaknesses...

Lire la suite »

VMware Workstation and Fusion 25H2 Released with New Features and Latest OS Support

2025-10-17 08:55:21
VMware has launched Workstation 25H2 and Fusion 25H2, the newest iterations of its desktop hypervisors, featuring a revamped versioning system, enhanced tools, and broader compatibility with modern hardware...

Lire la suite »

APT28 Deploys BeardShell and Covenant Modules via Weaponized Office Documents

2025-10-17 08:49:12
Security researchers at Sekoia.io have uncovered a sophisticated cyberattack campaign orchestrated by APT28, the notorious Russian state-sponsored threat actor, targeting Ukrainian military personnel...

Lire la suite »

North Korean Hackers Using EtherHiding to Deliver Malware and Steal Cryptocurrency

2025-10-17 08:34:58
In recent months, a sophisticated malware campaign—dubbed EtherHiding—has emerged from North Korea-aligned threat actors, sharply escalating the cybersecurity risks facing cryptocurrency exchanges...

Lire la suite »

Over 269,000 F5 Devices Exposed Online After Major Breach: U.S. Faces Largest Risk

2025-10-17 08:25:46
Over 269,000 F5 devices are reportedly exposed to the public internet daily, according to data from The Shadowserver Foundation. This exposure comes at a critical time following F5’s disclosure...

Lire la suite »

Under the engineering hood: Why Malwarebytes chose WordPress as its CMS

2025-10-17 08:10:10
It might surprise some that a security company would choose WordPress as the backbone of its digital content operations. Here's what we considered when choosing it.

Lire la suite »

France Télévisions forme ses journalistes aux ingérences numériques

2025-10-17 08:00:15
Pour un groupe média comme France Télévisions, la lutte contre les fake news, les deep fakes, la désinformation, les fausses (...)

Lire la suite »

A bout, les RSSI ne restent pas longtemps en poste

2025-10-17 07:59:42
De nos jours, la durée moyenne en poste d'un RSSI est de trois ans, selon Tom Chapman, cofondateur du cabinet de recrutement spécialisé (...)

Lire la suite »

Over 269,000 F5 Devices Found Exposed Online After Massive Breach

2025-10-17 07:41:47
A recent breach of F5 Networks' infrastructure has left more than 269,000 devices exposed and vulnerable to attack. Security researchers first detected unusual activity on F5's management portal,...

Lire la suite »

Auction house Sotheby's disclosed a July data breach

2025-10-17 07:38:49
Sotheby's reported a July 24 breach exposing customer and financial data; it took two months to assess the stolen information and affected individuals. Sotheby's reported a data breach that exposed...

Lire la suite »

SEO spam and hidden links: how to protect your website and your reputation

2025-10-17 07:00:55
Are you seeing your website traffic drop, and security systems blocking it for pornographic content that is not there? Hidden links, a type of SEO spam, could be the cause.

Lire la suite »

Sécurité applicative : l'IA et la supply chain logicielle, inégalement couverts

2025-10-17 06:46:26
Les principaux fournisseurs de solutions de test de sécurité des applications couvrent assez diversement les composants IA et la chaîne d'approvisionnement logicielle. The post Sécurité applicative...

Lire la suite »

F5 Released Security Updates Covering Multiple Products Following Recent Hack

2025-10-17 06:33:41
F5 Networks, a leading provider of application security and delivery solutions, has disclosed a significant security breach involving a nation-state threat actor, prompting the release of critical updates...

Lire la suite »

LinkPro: An eBPF-Based Rootkit Hiding Malicious Activity on GNU/Linux

2025-10-17 06:25:52
Security researchers from Synacktiv CSIRT have uncovered a sophisticated Linux rootkit dubbed LinkPro that leverages eBPF (extended Berkeley Packet Filter) technology to establish persistent backdoor...

Lire la suite »

VMware Releases Workstation & Fusion 25H2 With Enhanced Features and OS Support

2025-10-17 06:06:56
VMware has launched the latest versions of its desktop hypervisors, Workstation 25H2 and Fusion 25H2, bringing significant improvements to virtualization technology. These updates introduce a simplified...

Lire la suite »

Microsoft Revokes 200 Fraudulent Certificates Used in Rhysida Ransomware Campaign

2025-10-17 06:03:00
Microsoft on Thursday disclosed that it revoked more than 200 certificates used by a threat actor it tracks as Vanilla Tempest to fraudulently sign malicious binaries in ransomware attacks. The certificates...

Lire la suite »

Critical Cisco IOS and IOS XE Flaws Allow Remote Code Execution

2025-10-17 05:53:52
Cisco has disclosed a serious security vulnerability affecting its IOS and IOS XE Software that could allow attackers to execute remote code or crash affected devices. The flaw, tracked as CVE-2025-20352,...

Lire la suite »

F5 Issues Security Patches for Multiple Products After Recent Breach

2025-10-17 05:36:56
F5 Networks has released comprehensive security patches addressing multiple critical vulnerabilities across its product portfolio following a recent security incident. The company issued its quarterly...

Lire la suite »

Mageia 9: Varnish Important DoS Threat MGASA-2025-0239 CVE-2025-8671

2025-10-17 03:41:37
MGASA-2025-0239 - Updated varnish & lighttpd packages fix security vulnerability

Lire la suite »

Cisco IOS and IOS XE Software Vulnerabilities Let Attackers Execute Remote Code

2025-10-17 02:26:23
Cisco has disclosed a severe vulnerability in its widely used IOS and IOS XE Software, potentially allowing attackers to crash devices or seize full control through remote code execution. The flaw, rooted...

Lire la suite »

Ubuntu 20.04 LTS: MuPDF Critical Memory Issues Denial of Service USN-7825-1

2025-10-17 01:01:50
Several security issues were fixed in MuPDF.

Lire la suite »