Actu - 10 novembre 2025 - Parce que... c'est l'épisode 0x659!
Parce que… c’est l’épisode 0x659!
Shameless plug
17 au 20 novembre 2025 - European Cyber Week
25 et 26 février 2026 - SéQCure 2026
14 au 17 avril 2026 - Botconf 2026
28 et 29 avril 2026 - Cybereco Cyberconférence 2026
9 au 17 mai 2026 - NorthSec 2026
3 au 5 juin 2025 - SSTIC 2026
Notes
IA
AI Agents Are Going Rogue: Here’s How to Rein Them In
AI Security Agents Get Persona Makeovers
List of AI Tools Promoted by Threat Actors in Underground Forums and Their Capabilities
Ransomware Attack on European Organizations Surge as Hackers Leveraging AI-Tools for Attacks
UofT: Canada isn’t doing its part to stop AI surveillance
MIT Retracts Controversial AI Ransomware Study Amid Expert Scrutiny
Kevin Beaumont: “The whole report is like that …” - Cyberplace
Microsoft: SesameOp malware abuses OpenAI Assistants API in attacks
Blue
MITRE ATT&CKcon - ATT&CKcon 6.0
Chrome Emergency Update to Patch Multiple Vulnerabilities that Enable Remote Code Execution
Apple addresses more than 100 vulnerabilities in security updates for iPhones, Macs and iPads
Microsoft removing Defender Application Guard from Office
Microsoft Entra Credentials in the Authenticator App on Jail-Broken Devices to be Wiped Out
Red
Teams
New BOF Tool Exploits Microsoft Teams’ Cookie Encryption allowing Attackers to Access User Chats
Microsoft Teams’ New “Chat with Anyone” Feature Exposes Users to Phishing and Malware Attacks
Hackers Can Exploit Microsoft Teams Vulnerabilities to Manipulate Messages and Alter Notifications
Hackers Weaponize Windows Hyper-V to Hide Linux VM and Evade EDR Detection
Danish authorities in rush to close security loophole in Chinese electric buses
2025 Insider Risk Report Finds Most Organizations Struggle to Detect and Predict Insider Risks
Violent cybercrime surges in Europe amid big payouts
Cybercriminals, OCGs team up on lucrative cargo thefts
DOJ accuses US ransomware negotiators of launching their own ransomware attacks
Legalize
Legal Corner - Apple’s notarisation – blocking software freedom of developers and users
Microsoft’s data sovereignty: Now with extra sovereignty!
DHS wants more biometric data - even from citizens
Divers
Microsoft’s lack of quality control is out of control
Cybersecurity Forecast 2026 - Google Warns Threat Actors Use AI to Enhance Speed and Effectiveness
ISPs more likely to throttle CGNAT traffic: Cloudflare
Collaborateurs
Nicolas-Loïc Fortin
Crédits
Montage par Intrasecure inc
Locaux réels par Intrasecure inc
Shameless plug
17 au 20 novembre 2025 - European Cyber Week
25 et 26 février 2026 - SéQCure 2026
14 au 17 avril 2026 - Botconf 2026
28 et 29 avril 2026 - Cybereco Cyberconférence 2026
9 au 17 mai 2026 - NorthSec 2026
3 au 5 juin 2025 - SSTIC 2026
Notes
IA
AI Agents Are Going Rogue: Here’s How to Rein Them In
AI Security Agents Get Persona Makeovers
List of AI Tools Promoted by Threat Actors in Underground Forums and Their Capabilities
Ransomware Attack on European Organizations Surge as Hackers Leveraging AI-Tools for Attacks
UofT: Canada isn’t doing its part to stop AI surveillance
MIT Retracts Controversial AI Ransomware Study Amid Expert Scrutiny
Kevin Beaumont: “The whole report is like that …” - Cyberplace
Microsoft: SesameOp malware abuses OpenAI Assistants API in attacks
Blue
MITRE ATT&CKcon - ATT&CKcon 6.0
Chrome Emergency Update to Patch Multiple Vulnerabilities that Enable Remote Code Execution
Apple addresses more than 100 vulnerabilities in security updates for iPhones, Macs and iPads
Microsoft removing Defender Application Guard from Office
Microsoft Entra Credentials in the Authenticator App on Jail-Broken Devices to be Wiped Out
Red
Teams
New BOF Tool Exploits Microsoft Teams’ Cookie Encryption allowing Attackers to Access User Chats
Microsoft Teams’ New “Chat with Anyone” Feature Exposes Users to Phishing and Malware Attacks
Hackers Can Exploit Microsoft Teams Vulnerabilities to Manipulate Messages and Alter Notifications
Hackers Weaponize Windows Hyper-V to Hide Linux VM and Evade EDR Detection
Danish authorities in rush to close security loophole in Chinese electric buses
2025 Insider Risk Report Finds Most Organizations Struggle to Detect and Predict Insider Risks
Violent cybercrime surges in Europe amid big payouts
Cybercriminals, OCGs team up on lucrative cargo thefts
DOJ accuses US ransomware negotiators of launching their own ransomware attacks
Legalize
Legal Corner - Apple’s notarisation – blocking software freedom of developers and users
Microsoft’s data sovereignty: Now with extra sovereignty!
DHS wants more biometric data - even from citizens
Divers
Microsoft’s lack of quality control is out of control
Cybersecurity Forecast 2026 - Google Warns Threat Actors Use AI to Enhance Speed and Effectiveness
ISPs more likely to throttle CGNAT traffic: Cloudflare
Collaborateurs
Nicolas-Loïc Fortin
Crédits
Montage par Intrasecure inc
Locaux réels par Intrasecure inc
