Information Security newsfeeds from around the world in English and French. Find it all in one place since 2004. You'll find online the last 5 years.
Microsoft warns of a zero-day vulnerability in Internet Explorer that is actively exploited by threat actors using weaponized Office docs. Microsoft warns of a zero-day vulnerability (CVE-2021-40444) in Internet Explorer that is actively exploited by threat actors to hijack vulnerable Windows systems. Microsoft did not share info about the attacks either the nature of the […]
Continue ReadingMicrosoft issued a warning to Windows users that hackers actively exploiting an unpatched remote code execution 0-Day vulnerability in MSHTML using lured MS office documents. The MSHTML is a browser rendering engine that allows the Microsoft Internet Explorer Web browser to read and display HTML Web pages. Attackers are abusing the Microsoft office document by craft […]
Continue Reading
Cyber Command and CISA Issue Alerts Cyber Command and the U.S. Cybersecurity and Infrastructure Security Agency issued alerts Friday warning those using Atlassian’s Confluence and Data Center products that attackers are actively exploiting the critical remote code execution vulnerability CVE-2021-26084. Source: Bank Info Security
Continue Reading
The American multinational technology conglomerate corporation Cisco Systems, based in San Jose, California – has published six security patches for its high-end 9000 series networking gear, spanning in severity from critical, high, and medium. Cisco Systems designs, produce and distributes networking gear, software, telecom equipment, and a variety of other high-tech products and services. […]
Continue ReadingDans son bulletin d’actualité CERTFR-2021-ACT-035 du 12 août 2021 [1], le CERT-FR revenait sur la publication d’une technique permettant de prendre le contrôle d’un … Source: Cert FR
Continue ReadingThe worst of 13 bugs fixed by the August updates could lead to complete system compromise for users in sensitive sectors running products in Appliance mode. Source: Threatpost.com
Continue ReadingAttackers are targeting students and faculty alike with malware, phishing, DDoS, Zoom bombs and more, the FBI and CISA said. Source: Threatpost.com
Continue ReadingDans un communiqué paru ce vendredi matin, Kneip indique être victime d’une cyberattaque, sans en préciser la nature. Pour l’instant, aucune donnée ne semble avoir été volée. Au lendemain des Luxembourg Internet Days , où il a beaucoup été question de la recrudescence des cyberattaques depuis le début de l’année, Kneip annonce, ce vendredi matin, en être victime à […]
Continue ReadingThe Kimsuky/Hidden Cobra APT is going after the commercial sector, according to CISA. Source: Threatpost.com North Korea-Backed Spy Group Poses as Reporters in Spearphishing Attacks, Feds Warn
Continue ReadingCybercriminals are chaining Microsoft’s Zerologon flaw with other exploits in order to infiltrate government systems, putting election systems at risk, a new CISA and FBI advisory warns. Source: Threatpost.com Election Systems Under Attack via Microsoft Zerologon Exploits
Continue Reading