6 liens privés
OpenSSL patched the vulnerability CVE-2024-12797, a high-severity flaw found by Apple that enables man-in-the-middle attacks.
Law enforcement seizes 8Base ransomware’s dark web sites, arresting four suspects linked to Phobos ransomware and $16M in global cyber extortion.
Cisco has patched two critical ISE vulnerabilities (CVEs 2025-20124, 2025-20125) allowing remote command execution and privilege escalation. Update no
Discover the details of CVE-2025-21293, an elevation of privilege vulnerability in Active Directory that allows attackers to escalate privileges to SYSTEM.
Unicode codepoint truncation - also called a Unicode overflow attack - happens when a server tries to store a Unicode character in a single byte. Because the maximum value of a byte is 255, an overflo
Casio UK's e-shop at casio.co.uk was hacked to include malicious scripts that stole credit card and customer information between January 14 and 24, 2025.
Sophos vient de finaliser le rachat de Secureworks, jusqu'alors majoritairement détenu par Dell. Le géant de la cybersécurité affirme que cette...-Cybersécurité
Three critical vulnerabilities in PHP Voyager allow remote code execution, XSS, and file deletion, with no patches since disclosure on September 11, 2
Welcome to Monday, and what an excitingly fresh start to the week we're all having. Grab your coffee, grab your vodka - we're diving into a currently exploited-in-the-wild critical Authentication Bypass affecting foRtinet's (we are returning the misspelling gesture 🥰) flagship SSLVPN appliance, the FortiGate. Imagine please that we inserted a
Residents of Tbilisi, the capital city of Georgia, experienced an unexpected and unusual start to their Friday morning commute.
Quelques jours avant Noël fut jugé à la 13ème chambre du tribunal correctionnel de Paris, le hacker français qui se dit "le plus recherché par la CIA". Florent Curtet, ex-hackeur à la tête d’une entreprise de cybersécurité, était soupçonné d’avoir profité d’un vol de données liées à l’instruction de l’attentat contre Charlie Hebdo pour extorquer
Cisco fixed a ClamAV denial-of-service (DoS) vulnerability, and experts warn of the availability of a proof-of-concept (PoC) exploit code.
Plusieurs fédérations sportives françaises ont été victimes d’une cyberattaque. Au terme de cette vague d'intrusions, ce sont les données de plus de 4,5 millions de Français qui auraient été volées. Les informations piratées sont désormais en vente sur BreachForums.
Critical SonicWall zero-day (CVE-2025-23006) in SMA 1000 appliances fixed. Rated 9.8 CVSS; patch now to prevent active exploitation.
A new proof-of-concept (PoC) has been released for Microsoft Outlook zero-click remote code execution (RCE) vulnerability in Windows Object Linking and Embedding (OLE), identified as CVE-2025-21298.
Donald Trump pardoned Ross Ulbricht, creator of the notorious dark web, drug marketplace Silk Road , after 11 years in prison.
A high-severity vulnerability in the 7-Zip file archiver allows attackers to bypass the Mark of the Web (MotW) Windows security feature and execute code on users' computers when extracting malicious files from nested archives.