Google Warns: Android Zero-Day Flaws in Pixel Phones Exploited by Forensic Companies
Google has disclosed that two Android security flaws impacting its Pixel smartphones have been exploited in the wild by forensic companies. The high-severity zero-day vulnerabilities are as follows – CVE-2024-29745 – An information disclosure flaw in the bootloader component CVE-2024-29748 – A privilege escalation flaw in the firmware component « There are indications that the [
Peakto Search veut révolutionner le classement des photos dans Lightroom Classic
L’éditeur français Cyme, déjà connu pour son méta-catalogueur Peakto, revient avec une déclinaison spéciale destinée à Lightroom Classic, dénommé Peakto Search.
U.S. Cyber Safety Board Slams Microsoft Over Breach by China-Based Hackers
The U.S. Cyber Safety Review Board (CSRB) has criticized Microsoft for a series of security lapses that led to the breach of nearly two dozen companies across Europe and the U.S. by a China-based nation-state group called Storm-0558 last year. The findings, released by the Department of Homeland Security (DHS) on Tuesday, found that the […]
Le piratage de Microsoft par la Chine était “évitable”, assure un comité gouvernemental américain
Huit mois après la découverte par Microsoft d’une campagne d’espionnage visant sa solution de messagerie Exchange Online, le Cyber Safety…
Avez-vous des soucis avec les SSD et disques externes sous macOS Sonoma ?
Certains usages nécessite d’avoir recours à un disque dur ou un SSD externe, et il semblerait que macOS Sonoma ne simplifie pas toujours la tâches des utilisateurs.
Google Chrome Beta Tests New DBSC Protection Against Cookie-Stealing Attacks
Google on Tuesday said it’s piloting a new feature in Chrome called Device Bound Session Credentials (DBSC) to help protect users against session cookie theft by malware. The prototype – currently tested against « some » Google Account users running Chrome Beta – is built with an aim to make it an open web standard, the tech […]
Prochaine étape de Bruxelles : la possibilité de supprimer l’app Photos de l’iPhone !
Même si Apple s’est pliée au DMA, son comportement n’est pas encore parfait aux yeux de Margrethe Vestager. La célèbre commissaire a en effet suggéré que la firme pourrait être amenée à laisser les propriétaires d’iPhone supprimer l’application Photos.
Caisse des Dépôts : Odile Duthil est nommée directrice de la cybersécurité
Adjointe depuis 2020, Odile Duthil accède au poste de directrice de la cybersécurité du groupe Caisse des Dépôts.
Attack Surface Management vs. Vulnerability Management
Attack surface management (ASM) and vulnerability management (VM) are often confused, and while they overlap, they’re not the same. The main difference between attack surface management and vulnerability management is in their scope: vulnerability management checks a list of known assets, while attack surface management assumes you have unknown assets and so begins with discovery. […]
Mispadu Trojan Targets Europe, Thousands of Credentials Compromised
The banking trojan known as Mispadu has expanded its focus beyond Latin America (LATAM) and Spanish-speaking individuals to target users in Italy, Poland, and Sweden. Targets of the ongoing campaign include entities spanning finance, services, motor vehicle manufacturing, law firms, and commercial facilities, according to Morphisec. « Despite the geographic expansion, Mexico remains the