🖥️IA : dans la Manche, les collectivités veulent avancer mais pas n’importe comment
À Canisy (Manche), jeudi 4 décembre 2025, Manche numérique a tenu une journée sur l’intelligence artificielle à destination des élus et des agents …
🖥️Cybersécurité : les 10 menaces qui planent sur 2026
Cyberattaques automatisées par l’IA, ransomwares négociateurs, phishing indétectable, deepfakes, menace quantique, vols de cryptos… Une montagne de …
🖥️Pourquoi les fans de jeux vidéo sont devenus la cible préférée des hackers
Tech. Les cybercriminels se spécialisent dans l'ingénierie sociale en ciblant les gamers via des versions piratées de jeux populaires comme "GTA", …
🔥Researchers Uncover 30+ Flaws in AI Coding Tools Enabling Data Theft and RCE Attacks
Over 30 security vulnerabilities have been disclosed in various artificial intelligence (AI)-powered Integrated Development Environments (IDEs) that combine prompt injection primitives with...
🕵️Drones to Diplomas: How Russia’s Largest Private University is Linked to a $25M Essay Mill
A sprawling academic cheating network turbocharged by Google Ads that has generated nearly $25 million in revenue has curious connections to a Kremlin-connected oligarch whose Russian university...
🖥️Le cybercorps du renseignement militaire ukrainien paralyse un géant russe de la logistique
Dans la nuit du 6 décembre, les spécialistes du renseignement militaire ukrainien (GUR), en collaboration avec les activistes de BO Team, ont mené …
🖥️Comment vraiment sécuriser son compte WhatsApp ?
Les attaques contre WhatsApp sont de plus en plus sophistiquées. Les autorités américaines tirent la sonnette d'alarme : les logiciels espions sont …
🔥Critical React2Shell Flaw Added to CISA KEV After Confirmed Active Exploitation
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday formally added a critical security flaw impacting React Server Components (RSC) to its Known Exploited Vulnerabilities (KEV)
📰Attackers hit React defect as researchers quibble over proof
A debate over actual exploitation is muddying response efforts. Multiple researchers say they’ve observed working proof of concepts while others assert evidence of attacks is lacking. The post...
📰More evidence your AI agents can be turned against you
Aikido found that AI coding tools from Google, Anthropic, OpenAI and others regularly embed untrusted prompts into software development workflows. The post More evidence your AI agents can be turned...
📰Bipartisan health care cybersecurity legislation returns to address a cornucopia of issues
The bill, first introduced late last year, deals with regulations, training, grants and more. The post Bipartisan health care cybersecurity legislation returns to address a cornucopia of issues...
🔥Zero-Click Agentic Browser Attack Can Delete Entire Google Drive Using Crafted Emails
A new agentic browser attack targeting Perplexity's Comet browser that's capable of turning a seemingly innocuous email into a destructive action that wipes a user's entire Google Drive contents,...
🔥Critical XXE Bug CVE-2025-66516 (CVSS 10.0) Hits Apache Tika, Requires Urgent Patch
A critical security flaw has been disclosed in Apache Tika that could result in an XML external entity (XXE) injection attack. The vulnerability, tracked as CVE-2025-66516, is rated 10.0 on the CVSS...
🔥Chinese Hackers Have Started Exploiting the Newly Disclosed React2Shell Vulnerability
Two hacking groups with ties to China have been observed weaponizing the newly disclosed security flaw in React Server Components (RSC) within hours of it becoming public knowledge. The vulnerability
🕵️SMS Phishers Pivot to Points, Taxes, Fake Retailers
China-based phishing groups blamed for non-stop scam SMS messages about a supposed wayward package or unpaid toll fee are promoting a new offering, just in time for the holiday shopping season:...
🖥️IA : dans la Manche, les collectivités veulent avancer mais pas n’importe comment
À Canisy (Manche), jeudi 4 décembre 2025, Manche numérique a tenu une journée sur l’intelligence artificielle à destination des élus et des agents …
🖥️Cybersécurité : les 10 menaces qui planent sur 2026
Cyberattaques automatisées par l’IA, ransomwares négociateurs, phishing indétectable, deepfakes, menace quantique, vols de cryptos… Une montagne de …
🖥️Pourquoi les fans de jeux vidéo sont devenus la cible préférée des hackers
Tech. Les cybercriminels se spécialisent dans l'ingénierie sociale en ciblant les gamers via des versions piratées de jeux populaires comme "GTA", …
🔥Researchers Uncover 30+ Flaws in AI Coding Tools Enabling Data Theft and RCE Attacks
Over 30 security vulnerabilities have been disclosed in various artificial intelligence (AI)-powered Integrated Development Environments (IDEs) that combine prompt injection primitives with...
🕵️Drones to Diplomas: How Russia’s Largest Private University is Linked to a $25M Essay Mill
A sprawling academic cheating network turbocharged by Google Ads that has generated nearly $25 million in revenue has curious connections to a Kremlin-connected oligarch whose Russian university...
🖥️Le cybercorps du renseignement militaire ukrainien paralyse un géant russe de la logistique
Dans la nuit du 6 décembre, les spécialistes du renseignement militaire ukrainien (GUR), en collaboration avec les activistes de BO Team, ont mené …
🖥️Comment vraiment sécuriser son compte WhatsApp ?
Les attaques contre WhatsApp sont de plus en plus sophistiquées. Les autorités américaines tirent la sonnette d'alarme : les logiciels espions sont …
🔥Critical React2Shell Flaw Added to CISA KEV After Confirmed Active Exploitation
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday formally added a critical security flaw impacting React Server Components (RSC) to its Known Exploited Vulnerabilities (KEV)
📰Attackers hit React defect as researchers quibble over proof
A debate over actual exploitation is muddying response efforts. Multiple researchers say they’ve observed working proof of concepts while others assert evidence of attacks is lacking. The post...
📰More evidence your AI agents can be turned against you
Aikido found that AI coding tools from Google, Anthropic, OpenAI and others regularly embed untrusted prompts into software development workflows. The post More evidence your AI agents can be turned...
📰Bipartisan health care cybersecurity legislation returns to address a cornucopia of issues
The bill, first introduced late last year, deals with regulations, training, grants and more. The post Bipartisan health care cybersecurity legislation returns to address a cornucopia of issues...
🔥Zero-Click Agentic Browser Attack Can Delete Entire Google Drive Using Crafted Emails
A new agentic browser attack targeting Perplexity's Comet browser that's capable of turning a seemingly innocuous email into a destructive action that wipes a user's entire Google Drive contents,...
🔥Critical XXE Bug CVE-2025-66516 (CVSS 10.0) Hits Apache Tika, Requires Urgent Patch
A critical security flaw has been disclosed in Apache Tika that could result in an XML external entity (XXE) injection attack. The vulnerability, tracked as CVE-2025-66516, is rated 10.0 on the CVSS...
🔥Chinese Hackers Have Started Exploiting the Newly Disclosed React2Shell Vulnerability
Two hacking groups with ties to China have been observed weaponizing the newly disclosed security flaw in React Server Components (RSC) within hours of it becoming public knowledge. The vulnerability
🕵️SMS Phishers Pivot to Points, Taxes, Fake Retailers
China-based phishing groups blamed for non-stop scam SMS messages about a supposed wayward package or unpaid toll fee are promoting a new offering, just in time for the holiday shopping season:...