🔥PAN-OS GlobalProtect Authentication Bypass (CVE-2026-0257) Under Active Exploitation
Palo Alto Networks has warned that a recently disclosed medium-severity security flaw impacting PAN-OS and Prisma Access has come under active exploitation in the wild. The vulnerability, tracked as...
📰Tennessee man linked to 764 accused of series of crimes against children dating back to 2022
Zachary Sweeney allegedly traveled to New York, Indiana, Missouri and Georgia to meet and harm numerous victims in person. The FBI began investigating him in 2023. The post Tennessee man linked to...
🔥ChatGPhish Vulnerability Turns ChatGPT Web Summaries Into a Phishing Surface
Cybersecurity researchers have disclosed details of a vulnerability in OpenAI ChatGPT that leverages the artificial intelligence (AI) assistant's implicit trust in Markdown links and images to...
📰Federal audit reveals NIST’s NVD is plagued by poor planning and duplication
A report from the Commerce Inspector General details how mismanagement allowed a backlog of 27,000 unprocessed security flaws to grow unchecked, while the agency duplicated work with a similar CISA...
🔥Attackers Use LLM Agent for Post-Exploitation After Marimo CVE-2026-39987 Exploit
An unknown threat actor has been observed using a large language model (LLM) agent to conduct post-compromise actions after obtaining initial access following the exploitation of a...
🖥️L'invisibilité : le nouveau paradigme de la cybersécurité des données
Face à des cyberattaques de plus en plus sophistiquées, la cybersécurité doit passer d'une protection visible à une stratégie d'invisibilité et …
🔥New Russia-Linked GREYVIBE Targets Ukraine with AI-Powered Cyberattacks
A previously undocumented threat actor dubbed GREYVIBE has been attributed to ongoing and persistent attacks targeting Ukraine and Ukraine-related entities since at least August 2025. GREYVIBE, per...
🔥What 2,000 Exposed Vibe-Coded Apps Reveal About the Limits of Most Security Stacks
Shadow AI used to mean employees pasting things they shouldn't into ChatGPT. It now means something bigger: employees building full applications with AI, wiring them into production systems, and...
🖥️« Et ensuite ? » Anthropic dévoile Opus 4.8 mais tous les yeux sont rivés ailleurs
Anthropic a mis à jour son modèle phare avec Opus 4.8, sorti le 28 mai. Les benchmarks sont au rendez-vous. Mais le communiqué officiel laisse …
🖥️Claude Mythos : l'UE exclue du briefing qu'ont reçu la Fed et la Banque d'Angleterre
À notre connaissance, aucune institution de l’Union européenne ne dispose à ce jour d’un accès opérationnel via Project Glasswing, au modèle d'IA le …
📰House panel poised to hold hearing centered on AI impact on cyber
It’s part of a series of examinations at the House Homeland Security Committee that now will include a public event. The post House panel poised to hold hearing centered on AI impact on cyber...
📰Google security engineer accused of turning confidential search trends into $1.2M win on Polymarket
Michele Spagnuolo allegedly placed multiple trades on the prediction marketplace, abusing internal access to Google’s nonpublic data on the most searched people in 2025. The post Google security...
📰Zapier fixes bug chain that researchers say risked widespread account takeover
A five-step flaw chain in the popular automation service, now patched, could have let a single attacker act as any signed-in user across thousands of connected apps. The post Zapier fixes bug chain...
🖥️« Looksmaxxing », « proteinmaxxing », « funmaxxing »... Bienvenue dans l'ère du -maxxing
ARTICLE LECTEUR // Un fragment de mot venu des forums incels conquiert notre vocabulaire à vitesse grand V. Cécile Buzy-Cazaux, planneuse …
🖥️Piratage confirmé : si vous avez “installé” ce célèbre logiciel de téléchargement en mai, vous êtes une victime potentielle
Le site web du gestionnaire de téléchargement JDownloader a été victime d’un piratage, ce mois de mai. Les hackers ont remplacé certains liens qui …
🔥PAN-OS GlobalProtect Authentication Bypass (CVE-2026-0257) Under Active Exploitation
Palo Alto Networks has warned that a recently disclosed medium-severity security flaw impacting PAN-OS and Prisma Access has come under active exploitation in the wild. The vulnerability, tracked as...
📰Tennessee man linked to 764 accused of series of crimes against children dating back to 2022
Zachary Sweeney allegedly traveled to New York, Indiana, Missouri and Georgia to meet and harm numerous victims in person. The FBI began investigating him in 2023. The post Tennessee man linked to...
🔥ChatGPhish Vulnerability Turns ChatGPT Web Summaries Into a Phishing Surface
Cybersecurity researchers have disclosed details of a vulnerability in OpenAI ChatGPT that leverages the artificial intelligence (AI) assistant's implicit trust in Markdown links and images to...
📰Federal audit reveals NIST’s NVD is plagued by poor planning and duplication
A report from the Commerce Inspector General details how mismanagement allowed a backlog of 27,000 unprocessed security flaws to grow unchecked, while the agency duplicated work with a similar CISA...
🔥Attackers Use LLM Agent for Post-Exploitation After Marimo CVE-2026-39987 Exploit
An unknown threat actor has been observed using a large language model (LLM) agent to conduct post-compromise actions after obtaining initial access following the exploitation of a...
🖥️L'invisibilité : le nouveau paradigme de la cybersécurité des données
Face à des cyberattaques de plus en plus sophistiquées, la cybersécurité doit passer d'une protection visible à une stratégie d'invisibilité et …
🔥New Russia-Linked GREYVIBE Targets Ukraine with AI-Powered Cyberattacks
A previously undocumented threat actor dubbed GREYVIBE has been attributed to ongoing and persistent attacks targeting Ukraine and Ukraine-related entities since at least August 2025. GREYVIBE, per...
🔥What 2,000 Exposed Vibe-Coded Apps Reveal About the Limits of Most Security Stacks
Shadow AI used to mean employees pasting things they shouldn't into ChatGPT. It now means something bigger: employees building full applications with AI, wiring them into production systems, and...
🖥️« Et ensuite ? » Anthropic dévoile Opus 4.8 mais tous les yeux sont rivés ailleurs
Anthropic a mis à jour son modèle phare avec Opus 4.8, sorti le 28 mai. Les benchmarks sont au rendez-vous. Mais le communiqué officiel laisse …
🖥️Claude Mythos : l'UE exclue du briefing qu'ont reçu la Fed et la Banque d'Angleterre
À notre connaissance, aucune institution de l’Union européenne ne dispose à ce jour d’un accès opérationnel via Project Glasswing, au modèle d'IA le …
📰House panel poised to hold hearing centered on AI impact on cyber
It’s part of a series of examinations at the House Homeland Security Committee that now will include a public event. The post House panel poised to hold hearing centered on AI impact on cyber...
📰Google security engineer accused of turning confidential search trends into $1.2M win on Polymarket
Michele Spagnuolo allegedly placed multiple trades on the prediction marketplace, abusing internal access to Google’s nonpublic data on the most searched people in 2025. The post Google security...
📰Zapier fixes bug chain that researchers say risked widespread account takeover
A five-step flaw chain in the popular automation service, now patched, could have let a single attacker act as any signed-in user across thousands of connected apps. The post Zapier fixes bug chain...
🖥️« Looksmaxxing », « proteinmaxxing », « funmaxxing »... Bienvenue dans l'ère du -maxxing
ARTICLE LECTEUR // Un fragment de mot venu des forums incels conquiert notre vocabulaire à vitesse grand V. Cécile Buzy-Cazaux, planneuse …
🖥️Piratage confirmé : si vous avez “installé” ce célèbre logiciel de téléchargement en mai, vous êtes une victime potentielle
Le site web du gestionnaire de téléchargement JDownloader a été victime d’un piratage, ce mois de mai. Les hackers ont remplacé certains liens qui …