Actu - 07 décembre 2025 - Parce que... c'est l'épisode 0x675!
Parce que… c’est l’épisode 0x675!
Shameless plug
25 et 26 février 2026 - SéQCure 2026
CfP
14 au 17 avril 2026 - Botconf 2026
28 et 29 avril 2026 - Cybereco Cyberconférence 2026
9 au 17 mai 2026 - NorthSec 2026
3 au 5 juin 2025 - SSTIC 2026
Notes
Divers
Users scramble as critical open source project left to die
Hegseth needs to go to secure messaging school, report says
How I discovered a hidden microphone on a Chinese NanoKVM
Jeunesse
Dutch study finds teen cybercrime is mostly just a phase
The WIRED Guide to Digital Opsec for Teens
React2Shell
Cloudflare blames today’s outage on React2Shell mitigations
Admins and defenders gird themselves against maximum-severity server vuln
Cybersecurity industry overreacts to React vulnerability, starts panic, burns own house down again
Kevin Beaumont: “Similarly attacks are spraying…” - Cyberplace
IA
Guardails ou l’abence de
Securing AI Agents with Information Flow Control (Part I)
Google’s vibe coding platform deletes entire drive
AI Agents, Enterprise Risk, and the Future of Recovery: Rubrik’s Vision with Dev Rishi
AI-Powered Browsers Create New Vulnerabilities
Cocoon – Confidential Compute Open Network
UnMarker - Les watermarks IA ne servent à rien
Quand l’IA écoute et analyse les appels de millions de détenus américains
AWS joins Microsoft, Google in the security AI agent race
AWS AI Factories: AI-in-a-box for enterprise datacenters
Red
Living the long game
PRC spies Brickstormed their way into critical US networks
Browser extensions pushed malware to 4.3M Chrome, Edge users
Hackers are Moving to “Living Off the Land” Techniques to Attack Windows Systems Bypassing EDR
Velociraptor Misuse, Pt. II: The Eye of the Storm
Hackers Using Calendly-Themed Phishing Attack to Steal Google Workspace Account
New wave of VPN login attempts targets Palo Alto GlobalProtect portals
Threat Landscape Grows Increasingly Dangerous for Manufacturers
Blue
Decreasing Certificate Lifetimes to 45 Days - Let’s Encrypt
Microsoft fixes Windows shortcut flaw exploited for years
The built-in Windows security features you should be using
GrapheneOS: “GrapheneOS is the only Android…” - GrapheneOS Mastodon
Legalize
Lawmakers Want To Ban VPNs—And They Have No Idea What They’re Doing
Portugal updates cybercrime law to exempt security researchers
Legislation would designate ‘critical cyber threat actors,’ direct sanctions against them
Souveraineté
Porsche outage in Russia serves as a reminder of the risks in connected vehicle security
What digital sovereignty? How a Canadian Court is forcing a French company to break French law
Privacy
India Orders Phone Makers to Pre-Install Government App to Tackle Telecom Fraud
India Mandates SIM-Binding: WhatsApp and Telegram Users Must Re-verify Every 6 Hours
Canadian police department becomes first to trial body cameras equipped with facial recognition technology
The Age-Gated Internet Is Sweeping the US. Activists Are Fighting Back
OpenAI loses fight to keep ChatGPT logs secret in copyright case
Insolites
Kohler’s Encrypted Smart Toilet Camera is not Actually end-to-end Encrypted
Twin brothers charged with deleting 96 US govt databases
Collaborateurs
Nicolas-Loïc Fortin
Crédits
Montage par Intrasecure inc
Locaux réels par Intrasecure inc
Shameless plug
25 et 26 février 2026 - SéQCure 2026
CfP
14 au 17 avril 2026 - Botconf 2026
28 et 29 avril 2026 - Cybereco Cyberconférence 2026
9 au 17 mai 2026 - NorthSec 2026
3 au 5 juin 2025 - SSTIC 2026
Notes
Divers
Users scramble as critical open source project left to die
Hegseth needs to go to secure messaging school, report says
How I discovered a hidden microphone on a Chinese NanoKVM
Jeunesse
Dutch study finds teen cybercrime is mostly just a phase
The WIRED Guide to Digital Opsec for Teens
React2Shell
Cloudflare blames today’s outage on React2Shell mitigations
Admins and defenders gird themselves against maximum-severity server vuln
Cybersecurity industry overreacts to React vulnerability, starts panic, burns own house down again
Kevin Beaumont: “Similarly attacks are spraying…” - Cyberplace
IA
Guardails ou l’abence de
Securing AI Agents with Information Flow Control (Part I)
Google’s vibe coding platform deletes entire drive
AI Agents, Enterprise Risk, and the Future of Recovery: Rubrik’s Vision with Dev Rishi
AI-Powered Browsers Create New Vulnerabilities
Cocoon – Confidential Compute Open Network
UnMarker - Les watermarks IA ne servent à rien
Quand l’IA écoute et analyse les appels de millions de détenus américains
AWS joins Microsoft, Google in the security AI agent race
AWS AI Factories: AI-in-a-box for enterprise datacenters
Red
Living the long game
PRC spies Brickstormed their way into critical US networks
Browser extensions pushed malware to 4.3M Chrome, Edge users
Hackers are Moving to “Living Off the Land” Techniques to Attack Windows Systems Bypassing EDR
Velociraptor Misuse, Pt. II: The Eye of the Storm
Hackers Using Calendly-Themed Phishing Attack to Steal Google Workspace Account
New wave of VPN login attempts targets Palo Alto GlobalProtect portals
Threat Landscape Grows Increasingly Dangerous for Manufacturers
Blue
Decreasing Certificate Lifetimes to 45 Days - Let’s Encrypt
Microsoft fixes Windows shortcut flaw exploited for years
The built-in Windows security features you should be using
GrapheneOS: “GrapheneOS is the only Android…” - GrapheneOS Mastodon
Legalize
Lawmakers Want To Ban VPNs—And They Have No Idea What They’re Doing
Portugal updates cybercrime law to exempt security researchers
Legislation would designate ‘critical cyber threat actors,’ direct sanctions against them
Souveraineté
Porsche outage in Russia serves as a reminder of the risks in connected vehicle security
What digital sovereignty? How a Canadian Court is forcing a French company to break French law
Privacy
India Orders Phone Makers to Pre-Install Government App to Tackle Telecom Fraud
India Mandates SIM-Binding: WhatsApp and Telegram Users Must Re-verify Every 6 Hours
Canadian police department becomes first to trial body cameras equipped with facial recognition technology
The Age-Gated Internet Is Sweeping the US. Activists Are Fighting Back
OpenAI loses fight to keep ChatGPT logs secret in copyright case
Insolites
Kohler’s Encrypted Smart Toilet Camera is not Actually end-to-end Encrypted
Twin brothers charged with deleting 96 US govt databases
Collaborateurs
Nicolas-Loïc Fortin
Crédits
Montage par Intrasecure inc
Locaux réels par Intrasecure inc
