Toute l'actualité de la Cybersécurité
Health Care Data Breach Costs BreachForums Admin 0,000 Fine
2025-05-19 09:26:00
Conor Brian Fitzpatrick, the 22-year-old former administrator of cybercrime forum Breachforums, will forfeit approximately 0,000 to settle a civil lawsuit stemming from a healthcare data breach. The...
Critical Firefox 0-Day Flaws Allow Remote Code Execution
2025-05-19 09:25:55
Mozilla has urgently patched two critical 0-day vulnerabilities in its popular web browser Firefox, both of which could allow remote attackers to execute malicious code on user systems. The flaws, tracked...
,500 Bounty: SQL Injection in WordPress Plugin Leads to PII Exposure at Grab
2025-05-19 09:11:17
How a Plugin Preview Feature Exposed User Data and Nearly Enabled Admin Dashboard PivotingContinue reading on InfoSec Write-ups »
I Broke Rate Limits and Accessed 1000+ User Records — Responsibly
2025-05-19 09:11:09
👉Free Article LinkContinue reading on InfoSec Write-ups »
Write Cybersecurity Blog Titles That Get Clicks
2025-05-19 09:10:54
Write Cybersecurity Blog Titles That Get ClicksCreating excellent content is half the battle, encouraging clicks is the other half. Your blog title is your initial (and sometimes sole) opportunity to...
Millions of Records Exposed via SQL Injection in a Tamil Nadu Government Portal
2025-05-19 09:09:49
Recently, I discovered a critical SQL injection vulnerability in a Tamil Nadu government web portal. This flaw allowed unauthorized access to lakhs of sensitive records including Aadhaar numbers, user...
Crypto Failures | TryHackMe Medium
2025-05-19 09:09:08
Questions: What is the value of the web flag? What is the encryption key? Solution: We are firstly given an IP address. I preformed a…Continue reading on InfoSec Write-ups »
,000 Bounty: How a Leaked Session Cookie Led to Account Takeover on HackerOne
2025-05-19 09:09:03
How one accidental copy-paste exposed sensitive data and what you can learn to find similar bugsContinue reading on InfoSec Write-ups »
CISA to Stop Publishing Cybersecurity Alerts and Advisories on Webpages
2025-05-19 09:08:45
Cybersecurity and Infrastructure Security Agency (CISA) has announced significant changes to how it communicates cybersecurity updates and guidance to stakeholders. In a recent announcement, CISA revealed...
Strengthening Web service security with Apache2: Best practices for 2025
2025-05-19 09:08:29
Keeping your Apache2 web services safe: What you need to know this yearContinue reading on InfoSec Write-ups »
Firefox 0-day Vulnerabilities Let Attackers Execute Malicious Code
2025-05-19 08:57:50
Mozilla has released an emergency security update to address two critical vulnerabilities in Firefox that could allow attackers to execute malicious code on users’ systems. The vulnerabilities...
ModiLoader Malware Attacking Windows Users to Steal Login Credentials
2025-05-19 08:57:50
A sophisticated malware strain called ModiLoader (also known as DBatLoader) has emerged as a significant threat to Windows users, specifically targeting individuals through carefully crafted phishing...
Pwn2Own Day 3: Zero-Day Exploits Windows 11, VMware ESXi, and Firefox
2025-05-19 08:56:18
The Pwn2Own Berlin 2025 last day ended with impressive technological accomplishments, bringing the total prize money over one million dollars. Security researchers demonstrated sophisticated exploitation...
James Comey is under investigation by Secret Service for a seashell photo showing “8647”
2025-05-19 08:08:45
James Comey is under investigation for a seashell photo showing “8647,” seen by some as a coded threat against Trump. Former FBI chief James Comey is under investigation by the Secret Service for...
Pwn2Own Berlin 2025: total prize money reached ,078,750
2025-05-19 07:51:23
Pwn2Own Berlin 2025 wrapped up with 3,750 awarded on the final day, pushing the total prize money to ,078,750 over three days. On the final day of Pwn2Own Berlin 2025, participants earned 3,750...
Cyberattaques par déni de service distribué : la France est ciblée, mais elle est aussi équipée pour faire face
2025-05-19 07:45:39
Ces derniers mois, plusieurs institutions majeures — l'Assemblée nationale, le Sénat, Météo-France, l'Insee, la CAF, la RATP ou encore le Réseau interministériel de l'État — ont été...
glibc Vulnerability Exposes Millions of Linux Systems to Code Execution Attacks
2025-05-19 07:30:48
A critical vulnerability in the GNU C Library (glibc), potentially exposing millions of Linux systems to local privilege escalation attacks. Tracked as CVE-2025-4802 and publicly disclosed on May...
A week in security (May 12 – May 18)
2025-05-19 07:03:00
A list of topics we covered in the week of May 12 to May 18 of 2025
GNU C(glibc) Vulnerability Let Attackers Execute Arbitrary Code on Millions of Linux Systems
2025-05-19 06:23:12
Security researchers have disclosed a significant vulnerability in the GNU C Library (glibc), potentially affecting millions of Linux systems worldwide. The flaw, identified as CVE-2025-4802, involves...
Exploiting dMSA for Advanced Active Directory Persistence
2025-05-19 06:17:20
Security researchers have identified new methods for achieving persistence in Active Directory environments by exploiting Delegated Managed Service Accounts (dMSAs), a new security feature introduced...
Abusing dMSA with Advanced Active Directory Persistence Techniques
2025-05-19 06:10:02
Delegated Managed Service Accounts (dMSAs), introduced in Windows Server 2025, represent Microsoft’s latest innovation in secure service account management. While designed to enhance security...
Windows Remote Desktop Gateway UAF Vulnerability Allows Remote Code Execution
2025-05-19 02:49:29
A critical vulnerability in Microsoft’s Remote Desktop Gateway (RD Gateway) that could allow attackers to execute malicious code on affected systems remotely. The vulnerability, tracked as CVE-2025-21297,...
Fedora 41: FEDORA-2025-c40948de3a moderate: webkitgtk memory crash fixes
2025-05-19 01:33:06
Enable CSS Overscroll Behavior by default. Change threaded rendering implementation to use Skia API instead of WebCore display list that is not thread safe. Fix rendering when device scale factor change...