Gros déstockage de bracelets Apple Watch
Avant l’arrivée des nouvelles Apple Watch, nos amis français de Band-Band opèrent à un gros déstockage sur les modèles actuels.
Zoom ZTP & AudioCodes Phones Flaws Uncovered, Exposing Users to Eavesdropping
Multiple security vulnerabilities have been disclosed in AudioCodes desk phones and Zoom’s Zero Touch Provisioning (ZTP) that could be potentially exploited by a malicious attacker to conduct remote attacks. « An external attacker who leverages the vulnerabilities discovered in AudioCodes Ltd.’s desk phones and Zoom’s Zero Touch Provisioning feature can gain full remote control of the […]
New Python URL Parsing Flaw Enables Command Injection Attacks
A high-severity security flaw has been disclosed in the Python URL parsing function that could be exploited to bypass domain or protocol filtering methods implemented with a blocklist, ultimately resulting in arbitrary file reads and command execution. « urlparse has a parsing problem when the entire URL starts with blank characters, » the CERT Coordination Center (CERT/CC) […]
Lolek Bulletproof Hosting Servers Seized, 5 Key Operators Arrested
European and U.S. law enforcement agencies have announced the dismantling of a bulletproof hosting service provider called Lolek Hosted, which cybercriminals have used to launch cyber-attacks across the globe. « Five of its administrators were arrested, and all of its servers seized, rendering LolekHosted.net no longer available, » Europol said in a statement. « The service facilitated the
Pas d’iPhone SE avant 2024, voire 2025 !
Avec cette effervescence autour de l’iPhone 15, on en oublierait presque le prochain iPhone SE venant remplacer la troisième génération sortie en mars 2022.
Researchers Uncover Decade-Long Cyber Espionage on Foreign Embassies in Belarus
A hitherto undocumented threat actor operating for nearly a decade and codenamed MoustachedBouncer has been attributed to cyber espionage attacks aimed at foreign embassies in Belarus. « Since 2020, MoustachedBouncer has most likely been able to perform adversary-in-the-middle (AitM) attacks at the ISP level, within Belarus, in order to compromise its targets, » ESET security researcher Matthieu
Enhancing TLS Security: Google Adds Quantum-Resistant Encryption in Chrome 116
Google has announced plans to add support for quantum-resistant encryption algorithms in its Chrome browser, starting with version 116. « Chrome will begin supporting X25519Kyber768 for establishing symmetric secrets in TLS, starting in Chrome 116, and available behind a flag in Chrome 115, » Devon O’Brien said in a post published Thursday. Kyber was chosen by the U.S. Department of Commerce’s
GNOME 45 bêta, le bureau Linux, améliore la couleur et la performance, mais ne propose pas de nouveauté majeure, il devrait être disponible le mois prochain
GNOME 45 bêta, le bureau Linux, améliore la couleur et la performance, mais ne propose pas de nouveauté majeure, il devrait être disponible le mois prochain GNOME 45, le bureau Linux populaire, est en phase de test bêta et devrait sortir le mois prochain. Parmi les nouveautés, on trouve une meilleure gestion du matériel d’affichage, […]
Researchers Shed Light on APT31’s Advanced Backdoors and Data Exfiltration Tactics
The Chinese threat actor known as APT31 (aka Bronze Vinewood, Judgement Panda, or Violet Typhoon) has been linked to a set of advanced backdoors that are capable of exfiltrating harvested sensitive information to Dropbox. The malware is part of a broader collection of more than 15 implants that have been put to use by the adversary in […]
Oracle, SUSE et CIQ répondent aux changements annoncés par Red Hat avec l’OpenELA, une initiative visant à fournir aux organisations des sources pour créer des distributions compatibles avec RHEL
Oracle, SUSE et CIQ répondent aux changements annoncés par Red Hat avec l’OpenELAUne initiative visant à fournir aux organisations des sources pour construire des distributions compatibles avec RHEL Oracle, SUSE et CIQ annoncent la création de l’Open Enterprise Linux Association (OpenELA), une association visant à promouvoir le développement de distributions compatibles avec Red Hat Enterprise […]