Toute l'actualité de la Cybersécurité
WorldLeaks ransomware group breached the City of Los Angels
2026-03-21 17:34:26
WorldLeaks group hit Los Angeles and its Metro system, forcing a shutdown, while two Bay Area cities declared emergencies after ransomware attacks. WorldLeaks group hit Los Angeles and its Metro, forcing...
Trivy vulnerability scanner breach pushed infostealer via GitHub Actions
2026-03-21 17:30:41
The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed credential-stealing malware through official releases and GitHub Actions....
Google adds ‘Advanced Flow' for safe APK sideloading on Android
2026-03-21 14:18:23
Google has announced a new mechanism in Android called Advanced Flow that will allow sideloading APKs from unverified developers for power users in a more secure way. [...]
Microsoft Azure Monitor alerts abused for callback phishing attacks
2026-03-21 14:09:19
Microsoft Azure Monitor alerts are being abused to send callback phishing emails that impersonate warnings from the Microsoft Security Team about unauthorized charges on your account. [...]
FBI Warns Russian Hackers Target Signal, WhatsApp in Mass Phishing Attacks
2026-03-21 13:17:00
Threat actors affiliated with Russian Intelligence Services are conducting phishing campaigns to compromise commercial messaging applications (CMAs) like WhatsApp and Signal to seize control of accounts...
A New Way to Train AI on Graph Data Without Supervision
2026-03-21 11:16:15
Researchers introduce Graphical Mutual Information (GMI), a new way for AI to learn from graph data without labels. By maximizing information between node features, structure, and embeddings, it captures...
Debian webkit2gtk Critical Process Crash and DoS Advisory DSA-6172-1
2026-03-21 11:11:23
The following vulnerabilities have been discovered in the WebKitGTK web engine: CVE-2025-43214 shandikri discovered that processing maliciously crafted web content may lead to an unexpected process crash....
Cyber actualités ZATAZ de la semaine du 16 au 21 mars 2026
2026-03-21 10:48:14
IPTV pirate, BreachForums, fuite de données, OFII, Cl0p, ShinyHunters, Signal, WhatsApp : retour sur une semaine cyber sous très haute tension.
Oracle Patches Critical CVE-2026-21992 Enabling Unauthenticated RCE in Identity Manager
2026-03-21 10:24:00
Oracle has released security updates to address a critical security flaw impacting Identity Manager and Web Services Manager that could be exploited to achieve remote code execution.
The vulnerability,...
IPTV pirate : la LFP frappe aussi les abonnés
2026-03-21 10:21:00
IPTV pirate : 19 utilisateurs condamnés à Arras, deux revendeurs jugés, un tournant dans la lutte contre le piratage Tv ?
PolyShell flaw exposes Magento and Adobe Commerce to file upload attacks
2026-03-21 10:09:50
Sansec found a Magento and Adobe Commerce REST API flaw, named PolyShell, which allows unauthenticated file uploads and possible XSS in older versions. Sansec disclosed a critical flaw in the Magento...
Inside ByteDance's Monolith: The Engine Powering Smarter, Faster Content Feeds
2026-03-21 09:54:43
Monolith is ByteDance's real-time recommendation system that updates itself using live user behavior instead of waiting for batch retraining. It solves major issues like data sparsity and changing user...
This New AI Model Could Replace Half Your Coding Workflow
2026-03-21 09:46:57
IBM's Granite Code models are a new family of AI systems built to handle real-world coding tasks—writing, fixing, explaining, and translating code across 116 languages. Despite being smaller than...
Hackers Compromise Trivy Scanner to Inject malicious Scripts and Steal Login Credentials
2026-03-21 08:53:35
A sophisticated supply chain attack targeting the official Trivy GitHub Action (aquasecurity/trivy-action) has compromised continuous integration and continuous deployment (CI/CD) pipelines globally....
Trivy Supply Chain Attack Triggers Self-Spreading CanisterWorm Across 47 npm Packages
2026-03-21 08:25:00
The threat actors behind the supply chain attack targeting the popular Trivy scanner are suspected to be conducting follow-on attacks that have led to the compromise of a large number of npm packages...
CISA Flags Apple, Craft CMS, Laravel Bugs in KEV, Orders Patching by April 3, 2026
2026-03-21 08:25:00
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added five security flaws impacting Apple, Craft CMS, and Laravel Livewire to its Known Exploited Vulnerabilities (KEV) catalog,...
FBI, CISA Warn Russian Hackers Are Targeting High-Value Individuals Through Signal
2026-03-21 05:21:21
The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) have recently released a joint cybersecurity advisory regarding a widespread phishing campaign....
Chrome Security Update Fixes 26 Vulnerabilities Allowing Remote Code Execution
2026-03-21 02:15:30
Google has released a substantial security update for its Chrome web browser, addressing 26 distinct vulnerabilities that could allow unauthenticated attackers to execute malicious code remotely. The...
Oracle Issues Urgent Security Update for Critical RCE Flaw in Identity Manager and Web Services Manager
2026-03-21 01:56:09
Oracle has issued an out-of-band Security Alert addressing a critical remote code execution (RCE) vulnerability, CVE-2026-21992, affecting two widely deployed Fusion Middleware components, Oracle Identity...
Fedora 42 OpenSSH Important Info Disclosure DoS Fix FEDORA-2026-39819a3d62
2026-03-21 01:11:14
CVE-2026-3497: Fix information disclosure or denial of service due to uninitialized variables in gssapi-keyex
Fedora 42 WordPress 6.9.4 Notification 2026-675dd9b166 Unauthorized Access
2026-03-21 01:11:09
Upstream announcements: WordPress 6.9.2 Release WordPress 6.9.3 and 7.0 beta 4 WordPress 6.9.4 Release
Fedora 42 uxplay 1.73.3 Advisory RHBZ-2426392 Bug Fix Released
2026-03-21 01:11:08
Update to 1.73.3; Fixes: RHBZ#2426392, RHBZ#2415186
Fedora 42 cpp-httplib Update 0.37.1 Fixes Denial of Service 2026-6ed9c65eaf
2026-03-21 01:11:06
Update to 0.37.1 (rbhz#2445943) Fixes Denial of Service via malformed Content-Length header (CVE-2026-31870 Reenables 32-bit build Update to 0.37.0 (rhbz#2441656)
Fedora 43 libsoup3 Moderate Credential Leak Patch CVE-2026-1539
2026-03-21 00:55:47
Add patch for CVE-2026-1539 (Also remove Proxy-Authorization header on cross origin redirect)
List of 54 new domains
2026-03-21 00:00:00
.fr akiya-bank[.fr] (registrar: OVH)
akiyabank[.fr] (registrar: OVH)
bilucky-fr[.fr] (registrar: Hosting Concepts B.V. d/b/a Openprovider)
brutal-casino-24[.fr] (registrar: Dynadot Inc)
brutal-casino-365[.fr]...