Google Cloud Researchers Uncover Flaws in Rsync File Synchronization Tool
As many as six security vulnerabilities have been disclosed in the popular Rsync file-synchronizing tool for Unix systems, some of which could be exploited to execute arbitrary code on a client. « Attackers can take control of a malicious server and read/write arbitrary files of any connected client, » the CERT Coordination Center (CERT/CC) said in an […]
Le chiffrement d’AWS mis à profit par un ransomware
Un ransomware cible des buckets S3 en utilisant une fonctionnalité native d’AWS : le chiffrement côté serveur avec des clés fournies par le client.
FBI Deletes PlugX Malware from 4,250 Hacked Computers in Multi-Month Operation
The U.S. Department of Justice (DoJ) on Tuesday disclosed that a court-authorized operation allowed the Federal Bureau of Investigation (FBI) to delete PlugX malware from over 4,250 infected computers as part of a « multi-month law enforcement operation. » PlugX, also known as Korplug, is a remote access trojan (RAT) widely used by threat actors associated with […]
Critical SimpleHelp Flaws Allow File Theft, Privilege Escalation, and RCE Attacks
Cybersecurity researchers have disclosed multiple security flaws in SimpleHelp remote access software that could lead to information disclosure, privilege escalation, and remote code execution. Horizon3.ai researcher Naveen Sunkavally, in a technical report detailing the findings, said the « vulnerabilities are trivial to reverse and exploit. » The list of identified flaws is as follows –
3 Actively Exploited Zero-Day Flaws Patched in Microsoft’s Latest Security Update
Microsoft kicked off 2025 with a new set of patches for a total of 161 security vulnerabilities across its software portfolio, including three zero-days that have been actively exploited in attacks. Of the 161 flaws, 11 are rated Critical, and 149 are rated Important in severity. One other flaw, a non-Microsoft CVE related to a […]
Microsoft Uncovers macOS Vulnerability CVE-2024-44243 Allowing Rootkit Installation
Microsoft has shed light on a now-patched security flaw impacting Apple macOS that, if successfully exploited, could have allowed an attacker running as « root » to bypass the operating system’s System Integrity Protection (SIP) and install malicious kernel drivers by loading third-party kernel extensions. The vulnerability in question is CVE-2024-44243 (CVSS score: 5.5), a medium-severity bug
Google OAuth Vulnerability Exposes Millions via Failed Startup Domains
New research has pulled back the curtain on a « deficiency » in Google’s « Sign in with Google » authentication flow that exploits a quirk in domain ownership to gain access to sensitive data. « Google’s OAuth login doesn’t protect against someone purchasing a failed startup’s domain and using it to re-create email accounts for former employees, » Truffle Security […]
Crash de Docker et faille SIP sur macOS : mise à jour critique indispensable
Les utilisateurs macOS de Docker rencontrent un crash critique bloquant le lancement de l’application. Une signature de fichiers incorrecte en est la cause, mais une mise à jour est déjà disponible.
Digital Operational Resilience Act : Hola, soy Dora
Le règlement DORA vise à renforcer la résilience numérique des institutions financières européennes face aux cybermenaces croissantes. Ce cadre impose des règles strictes pour une cybersécurité robuste et harmonisée. Entrant en vigueur le 17 janvier 2025, le règlement sur la résilience opérationnelle numérique (DORA) représente une évolution majeure dans la protection des infrastructures financières en […]
Phishing, applications cloud et IA générative : l’urgence d’une cybersécurité de nouvelle génération
En 2024, les clics sur des liens de phishing ont triplé, alors que l’usage des outils d’IA générative en entreprise s’intensifiait. Phishing, apps cloud et IA générative : l’urgence d’une cybersécurité v2