Actu - 21 septembre 2025 - Parce que... c'est l'épisode 0x632!
Parce que… c’est l’épisode 0x632!
Shameless plug
12 au 17 octobre 2025 - Objective by the sea v8
14 et 15 octobre 2025 - ATT&CKcon 6.0
14 et 15 octobre 2025 - Forum inCyber Canada
Code rabais de 30% - CA25KDUX92
4 et 5 novembre 2025 - FAIRCON 2025
10 au 12 novembre 2025 - IAQ - Le Rendez-vous IA Québec
17 au 20 novembre 2025 - European Cyber Week
25 et 26 février 2026 - SéQCure 2026
Description
Notes
IA
ChatGPT peut faire fuiter vos emails avec une simple invitation Google Calendar
‘Powerful but dangerous’ full MCP support beta for ChatGPT arrives
ChatGPT Tricked Into Bypassing CAPTCHA Security and Enterprise Defenses
‘A CRM for cybercriminals’ - SpamGPT makes cybercriminals’ wildest dreams come true with business-grade marketing tools and features
How AI and surveillance capitalism are undermining democracy
Vibe Coding Cleanup as a Service
Offensif
Jaguar Land Rover supply chain workers must get Covid-style support, says union
Careless engineer stored recovery codes in plaintext, got whole org pwned
Google confirms fraudulent account created in law enforcement portal
Self-Replicating Worm Hits 180+ Software Packages
Shai-Hulud: Ongoing Package Supply Chain Worm Delivering Data-Stealing Malware
A DHS Data Hub Exposed Sensitive Intel to Thousands of Unauthorized Users
Apple 0-day likely used in spy attacks affected devices as old as iPhone 8
Mail Delivery Subsystem spam?
SonicWall Security Incident: Exposed Backups Could Put Your Firewall at Risk
Cybercriminals Have a Weird New Way to Target You With Scam Texts
Critical Microsoft’s Entra ID Vulnerability Allows Attackers to Gain Complete Administrative Control
Une faille Spotlight vieille de 10 ans permet toujours de voler vos données sur Mac
New EDR-Freeze Tool That Puts EDRs and Antivirus Into A Coma State
Cyberattack disrupts check-in systems at major European airports
Critical WatchGuard Vulnerability Allows Unauthenticated Attacker to Execute Arbitrary Code
Défensif
Pensez à activer les versions immuables sur GitHub pour éviter les problèmes de sécurité
Why Real-Time Threat Intelligence Is Critical for Modern SOCs
How to Set Up and Use a Burner Phone
Apple addresses dozens of vulnerabilities in latest software for iPhones, iPads and Macs
Microsoft, Cloudflare disrupt RaccoonO365 credential stealing tool run by Nigerian national
PRP
Airlines Sell 5 Billion Plane Ticket Records to the Government For Warrantless Searching
Google Announces Full Availability of Client-Side Encryption for Google Sheets
Divers
The Elephant in The Biz: outsourcing of critical IT and cybersecurity functions risks UK economic security
Europe’s tech sovereignty watch
Collaborateurs
Nicolas-Loïc Fortin
Crédits
Montage par Intrasecure inc
Locaux réels par Intrasecure inc
Shameless plug
12 au 17 octobre 2025 - Objective by the sea v8
14 et 15 octobre 2025 - ATT&CKcon 6.0
14 et 15 octobre 2025 - Forum inCyber Canada
Code rabais de 30% - CA25KDUX92
4 et 5 novembre 2025 - FAIRCON 2025
10 au 12 novembre 2025 - IAQ - Le Rendez-vous IA Québec
17 au 20 novembre 2025 - European Cyber Week
25 et 26 février 2026 - SéQCure 2026
Description
Notes
IA
ChatGPT peut faire fuiter vos emails avec une simple invitation Google Calendar
‘Powerful but dangerous’ full MCP support beta for ChatGPT arrives
ChatGPT Tricked Into Bypassing CAPTCHA Security and Enterprise Defenses
‘A CRM for cybercriminals’ - SpamGPT makes cybercriminals’ wildest dreams come true with business-grade marketing tools and features
How AI and surveillance capitalism are undermining democracy
Vibe Coding Cleanup as a Service
Offensif
Jaguar Land Rover supply chain workers must get Covid-style support, says union
Careless engineer stored recovery codes in plaintext, got whole org pwned
Google confirms fraudulent account created in law enforcement portal
Self-Replicating Worm Hits 180+ Software Packages
Shai-Hulud: Ongoing Package Supply Chain Worm Delivering Data-Stealing Malware
A DHS Data Hub Exposed Sensitive Intel to Thousands of Unauthorized Users
Apple 0-day likely used in spy attacks affected devices as old as iPhone 8
Mail Delivery Subsystem spam?
SonicWall Security Incident: Exposed Backups Could Put Your Firewall at Risk
Cybercriminals Have a Weird New Way to Target You With Scam Texts
Critical Microsoft’s Entra ID Vulnerability Allows Attackers to Gain Complete Administrative Control
Une faille Spotlight vieille de 10 ans permet toujours de voler vos données sur Mac
New EDR-Freeze Tool That Puts EDRs and Antivirus Into A Coma State
Cyberattack disrupts check-in systems at major European airports
Critical WatchGuard Vulnerability Allows Unauthenticated Attacker to Execute Arbitrary Code
Défensif
Pensez à activer les versions immuables sur GitHub pour éviter les problèmes de sécurité
Why Real-Time Threat Intelligence Is Critical for Modern SOCs
How to Set Up and Use a Burner Phone
Apple addresses dozens of vulnerabilities in latest software for iPhones, iPads and Macs
Microsoft, Cloudflare disrupt RaccoonO365 credential stealing tool run by Nigerian national
PRP
Airlines Sell 5 Billion Plane Ticket Records to the Government For Warrantless Searching
Google Announces Full Availability of Client-Side Encryption for Google Sheets
Divers
The Elephant in The Biz: outsourcing of critical IT and cybersecurity functions risks UK economic security
Europe’s tech sovereignty watch
Collaborateurs
Nicolas-Loïc Fortin
Crédits
Montage par Intrasecure inc
Locaux réels par Intrasecure inc
