Actu - 22 mars 2026 - Parce que... c'est l'épisode 0x728!
Parce que… c’est l’épisode 0x728!
Shameless plug
31 mars au 2 avril 2026 - Forum INCYBER - Europe 2026
14 au 17 avril 2026 - Botconf 2026
20 au 22 avril 2026 - ITSec
Code rabais de 15%: Seqcure15
28 et 29 avril 2026 - Cybereco Cyberconférence 2026
9 au 17 mai 2026 - NorthSec 2026
3 au 5 juin 2026 - SSTIC 2026
19 septembre 2026 - Bsides Montréal
1 au 3 décembre 2026 - Forum INCYBER - Canada 2026
24 et 25 février 2027 - SéQCure 2027
Notes
RadioCSIRT
Cyblex Consulting
IA ou dans le prisme de la machine
Child abuse
Europe takes first step to banning AI-generated child sexual abuse images
Teens sue Elon Musk’s xAI over Grok’s pornographic images of them
Prevalence of generative artificial intelligence sexualized image usage by adolescents in the United States
New study raises concerns about AI chatbots fueling delusional thinking
AI Didn’t Make Expertise Optional. It Made It More Valuable
Why Security Validation Is Becoming Agentic
AI-driven fraud far more profitable, Interpol warns
Google lance une IA pour traquer les bugs dans le noyau Linux
Okta made a nightmare micromanager for your AI agents
Signal’s Creator Is Helping Encrypt Meta AI
A rogue AI led to a serious security incident at Meta
AI Conundrum: Why MCP Security Can’t Be Patched Away
US to embed Palantir AI across entire military: Report
La guerre, la guerre, c’est pas une raison pour se faire mal!
Iran
Poland Says It Foiled a Cyberattack on Its Nuclear Research Centre: Why the Iran Clue Matters Less Than the Operational Lesson
Cybercrime up 245% since the start of the Iran war
Iran cyberattack against med tech firm ‘just the beginning’
Microsoft Intune: Lock it down, warn feds after Stryker
Iran’s internet blackout enters day 18
Le GPS des navires complètement brouillé dans le détroit d’Hormuz, plus de 1 100 bateaux touchés
Ukraine strike on Kremniy El plant sparks rift between Russian propaganda and milbloggers
White House pours cold water on cyber ‘letters of marque’ speculation
Souveraineté ou tout ce que je peux faire sur mon terrain
Don’t let hyperscalers hijack digital sovereignty, EC told
Framasoft dit tout haut ce qu’on est nombreux à penser tout bas
Privacy ou tout ce qui devrait rester à la maison
Surveillance en vrac
FBI is buying location data to track US citizens, director confirms
Quand la publicité ciblée devient un outil de surveillance pour le gouvernement américain
Les joueurs de Pokémon Go ont entraîné des robots livreurs sans le savoir
The Danger Behind Meta Killing End-to-End Encryption for Instagram DMs
‘StravaLeaks’: France’s aircraft carrier located in real time through fitness app
A Top Democrat Is Urging Colleagues to Support Trump’s Spy Machine
Je suis la loi
Age verification isn’t sage verification inside OSes
End of “Chat Control”: Paving the Way for Genuine Child Protection!
Hacking The System In A Moral Panic: We Need To Talk
Apple can delist apps “with or without cause,” judge says in loss for Musi app
Cloudflare appeals Piracy Shield fine, hopes to kill Italy’s site-blocking law
Red ou tout ce qui est brisé
Washington is right: Cybercrime is organized crime. Now we need to shut down the business model
EU sanctions Iranian cyber crew behind US election tampering
Ransomware Tactics, Techniques, and Procedures in a Shifting Threat Landscape
Hundreds of Millions of iPhones Can Be Hacked With a New Tool Found in the Wild
Boîtiers KVM IP - Les 9 failles qui vous offrent un accès root OKLM
Ransomware crims abused Cisco 0-day weeks before disclosure
[20 Days Later: Trivy Compromise, Act II
Boost Security Labs](https://labs.boostsecurity.io/articles/20-days-later-trivy-compromise-act-ii/)
The Art of Self-Healing Code: Malware that fixes itself
Ils trouvent 100 failles dans le noyau Windows pour 600 dollars
Delve - Fake Compliance as a Service - Part I
Jaguar Land Rover’s cyber bailout sets worrying precedent, watchdog warns
Blue ou tout ce qui améliore notre posture
North Korean workers are taking remote U.S. jobs. This company set a trap to expose one.
Boot ROM Security on Silicon Macs (M1/M2/M3) - Olivia A. Gallucci
Android 17 va bloquer les apps qui abusent des services d’accessibilité
Japan to allow ‘proactive cyber-defense’ from October 1st
EA prépare son système anti-triche pour les PC ARM et envisage un support de Linux
ArXiv, the pioneering preprint server, declares independence from Cornell
Google adds ‘Advanced Flow’ for safe APK sideloading on Android
Divers
Ubuntu 26.04 Ends 46 Years of Silent sudo Passwords
Why One Key Shouldn’t Rule Them All: Threshold Signatures for the Rest of Us
Social media harms kids, says most evidence
Flexibility boosts productivity, not office mandates
Collaborateurs
Nicolas-Loïc Fortin
Crédits
Montage par Intrasecure inc
Locaux réels par Moxy Montreal Downtown
Shameless plug
31 mars au 2 avril 2026 - Forum INCYBER - Europe 2026
14 au 17 avril 2026 - Botconf 2026
20 au 22 avril 2026 - ITSec
Code rabais de 15%: Seqcure15
28 et 29 avril 2026 - Cybereco Cyberconférence 2026
9 au 17 mai 2026 - NorthSec 2026
3 au 5 juin 2026 - SSTIC 2026
19 septembre 2026 - Bsides Montréal
1 au 3 décembre 2026 - Forum INCYBER - Canada 2026
24 et 25 février 2027 - SéQCure 2027
Notes
RadioCSIRT
Cyblex Consulting
IA ou dans le prisme de la machine
Child abuse
Europe takes first step to banning AI-generated child sexual abuse images
Teens sue Elon Musk’s xAI over Grok’s pornographic images of them
Prevalence of generative artificial intelligence sexualized image usage by adolescents in the United States
New study raises concerns about AI chatbots fueling delusional thinking
AI Didn’t Make Expertise Optional. It Made It More Valuable
Why Security Validation Is Becoming Agentic
AI-driven fraud far more profitable, Interpol warns
Google lance une IA pour traquer les bugs dans le noyau Linux
Okta made a nightmare micromanager for your AI agents
Signal’s Creator Is Helping Encrypt Meta AI
A rogue AI led to a serious security incident at Meta
AI Conundrum: Why MCP Security Can’t Be Patched Away
US to embed Palantir AI across entire military: Report
La guerre, la guerre, c’est pas une raison pour se faire mal!
Iran
Poland Says It Foiled a Cyberattack on Its Nuclear Research Centre: Why the Iran Clue Matters Less Than the Operational Lesson
Cybercrime up 245% since the start of the Iran war
Iran cyberattack against med tech firm ‘just the beginning’
Microsoft Intune: Lock it down, warn feds after Stryker
Iran’s internet blackout enters day 18
Le GPS des navires complètement brouillé dans le détroit d’Hormuz, plus de 1 100 bateaux touchés
Ukraine strike on Kremniy El plant sparks rift between Russian propaganda and milbloggers
White House pours cold water on cyber ‘letters of marque’ speculation
Souveraineté ou tout ce que je peux faire sur mon terrain
Don’t let hyperscalers hijack digital sovereignty, EC told
Framasoft dit tout haut ce qu’on est nombreux à penser tout bas
Privacy ou tout ce qui devrait rester à la maison
Surveillance en vrac
FBI is buying location data to track US citizens, director confirms
Quand la publicité ciblée devient un outil de surveillance pour le gouvernement américain
Les joueurs de Pokémon Go ont entraîné des robots livreurs sans le savoir
The Danger Behind Meta Killing End-to-End Encryption for Instagram DMs
‘StravaLeaks’: France’s aircraft carrier located in real time through fitness app
A Top Democrat Is Urging Colleagues to Support Trump’s Spy Machine
Je suis la loi
Age verification isn’t sage verification inside OSes
End of “Chat Control”: Paving the Way for Genuine Child Protection!
Hacking The System In A Moral Panic: We Need To Talk
Apple can delist apps “with or without cause,” judge says in loss for Musi app
Cloudflare appeals Piracy Shield fine, hopes to kill Italy’s site-blocking law
Red ou tout ce qui est brisé
Washington is right: Cybercrime is organized crime. Now we need to shut down the business model
EU sanctions Iranian cyber crew behind US election tampering
Ransomware Tactics, Techniques, and Procedures in a Shifting Threat Landscape
Hundreds of Millions of iPhones Can Be Hacked With a New Tool Found in the Wild
Boîtiers KVM IP - Les 9 failles qui vous offrent un accès root OKLM
Ransomware crims abused Cisco 0-day weeks before disclosure
[20 Days Later: Trivy Compromise, Act II
Boost Security Labs](https://labs.boostsecurity.io/articles/20-days-later-trivy-compromise-act-ii/)
The Art of Self-Healing Code: Malware that fixes itself
Ils trouvent 100 failles dans le noyau Windows pour 600 dollars
Delve - Fake Compliance as a Service - Part I
Jaguar Land Rover’s cyber bailout sets worrying precedent, watchdog warns
Blue ou tout ce qui améliore notre posture
North Korean workers are taking remote U.S. jobs. This company set a trap to expose one.
Boot ROM Security on Silicon Macs (M1/M2/M3) - Olivia A. Gallucci
Android 17 va bloquer les apps qui abusent des services d’accessibilité
Japan to allow ‘proactive cyber-defense’ from October 1st
EA prépare son système anti-triche pour les PC ARM et envisage un support de Linux
ArXiv, the pioneering preprint server, declares independence from Cornell
Google adds ‘Advanced Flow’ for safe APK sideloading on Android
Divers
Ubuntu 26.04 Ends 46 Years of Silent sudo Passwords
Why One Key Shouldn’t Rule Them All: Threshold Signatures for the Rest of Us
Social media harms kids, says most evidence
Flexibility boosts productivity, not office mandates
Collaborateurs
Nicolas-Loïc Fortin
Crédits
Montage par Intrasecure inc
Locaux réels par Moxy Montreal Downtown
