🔥Attackers Use LLM Agent for Post-Exploitation After Marimo CVE-2026-39987 Exploit
An unknown threat actor has been observed using a large language model (LLM) agent to conduct post-compromise actions after obtaining initial access following the exploitation of a...
🖥️L’Asie en mouvement - Cambodge: derrière la grâce de l'opposant Kem Sokha, le système de Hun Sen perdure
Cette semaine, le principal opposant au Cambodge a été partiellement gracié. Un geste qui en dit long sur l'identité politique du pays et en particulier sur celui qui en reste l'homme fort....
🔥New Russian-Linked GREYVIBE Targets Ukraine with AI-Powered Cyberattacks
A previously undocumented threat actor dubbed GREYVIBE has been attributed to ongoing and persistent attacks targeting Ukraine and Ukraine-related entities since at least August 2025. GREYVIBE, per...
🔥What 2,000 Exposed Vibe-Coded Apps Reveal About the Limits of Most Security Stacks
Shadow AI used to mean employees pasting things they shouldn't into ChatGPT. It now means something bigger: employees building full applications with AI, wiring them into production systems, and...
🖥️« Et ensuite ? » Anthropic dévoile Opus 4.8 mais tous les yeux sont rivés ailleurs
Anthropic a mis à jour son modèle phare avec Opus 4.8, sorti le 28 mai. Les benchmarks sont au rendez-vous. Mais le communiqué officiel laisse …
🔥Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets
Cybersecurity researchers have discovered a malicious NuGet package that masquerades as a C# software development kit for Sicoob, one of Brazil's largest cooperative financial systems, to siphon...
🔥Kimsuky Deploys HTTPSpy, Expands Arsenal with HelloDoor and VS Code Tunnels
The North Korean state-sponsored threat actor known as Kimsuky (aka Velvet Chollima) has been attributed to a fresh set of cyber attacks targeting South Korean military and corporate entities through
📰House panel poised to hold hearing centered on AI impact on cyber
It’s part of a series of examinations at the House Homeland Security Committee that now will include a public event. The post House panel poised to hold hearing centered on AI impact on cyber...
📰Google security engineer accused of turning confidential search trends into $1.2M win on Polymarket
Michele Spagnuolo allegedly placed multiple trades on the prediction marketplace, abusing internal access to Google’s nonpublic data on the most searched people in 2025. The post Google security...
📰Zapier fixes bug chain that researchers say risked widespread account takeover
A five-step flaw chain in the popular automation service, now patched, could have let a single attacker act as any signed-in user across thousands of connected apps. The post Zapier fixes bug chain...
📰OpenAI heralds cybersecurity, election interference safeguard plans for 2026 midterms
The announcement builds on work from major tech firms in 2024 to combat AI-infused election chicanery. The post OpenAI heralds cybersecurity, election interference safeguard plans for 2026 midterms...
📰FBI warns US-based law firms to be on the lookout for cybercrime group that steals data in person
Silent Ransom Group isn’t prolific, but it's demonstrated a knack for attacking the legal services sector with an extraordinary dual use of social engineering and in-person visits to victims’...
🖥️« Looksmaxxing », « proteinmaxxing », « funmaxxing »... Bienvenue dans l'ère du -maxxing
ARTICLE LECTEUR // Un fragment de mot venu des forums incels conquiert notre vocabulaire à vitesse grand V. Cécile Buzy-Cazaux, planneuse …
🖥️Piratage confirmé : si vous avez “installé” ce célèbre logiciel de téléchargement en mai, vous êtes une victime potentielle
Le site web du gestionnaire de téléchargement JDownloader a été victime d’un piratage, ce mois de mai. Les hackers ont remplacé certains liens qui …
🖥️Carte bancaire : c'est la fin du code à 4 chiffres, comment cela va-t-il fonctionner dorénavant ?
Composer un code à 4 chiffres avant chaque paiement pourrait bientôt appartenir au passé. Les banques françaises accélèrent désormais le déploiement …
🔥Attackers Use LLM Agent for Post-Exploitation After Marimo CVE-2026-39987 Exploit
An unknown threat actor has been observed using a large language model (LLM) agent to conduct post-compromise actions after obtaining initial access following the exploitation of a...
🖥️L’Asie en mouvement - Cambodge: derrière la grâce de l'opposant Kem Sokha, le système de Hun Sen perdure
Cette semaine, le principal opposant au Cambodge a été partiellement gracié. Un geste qui en dit long sur l'identité politique du pays et en particulier sur celui qui en reste l'homme fort....
🔥New Russian-Linked GREYVIBE Targets Ukraine with AI-Powered Cyberattacks
A previously undocumented threat actor dubbed GREYVIBE has been attributed to ongoing and persistent attacks targeting Ukraine and Ukraine-related entities since at least August 2025. GREYVIBE, per...
🔥What 2,000 Exposed Vibe-Coded Apps Reveal About the Limits of Most Security Stacks
Shadow AI used to mean employees pasting things they shouldn't into ChatGPT. It now means something bigger: employees building full applications with AI, wiring them into production systems, and...
🖥️« Et ensuite ? » Anthropic dévoile Opus 4.8 mais tous les yeux sont rivés ailleurs
Anthropic a mis à jour son modèle phare avec Opus 4.8, sorti le 28 mai. Les benchmarks sont au rendez-vous. Mais le communiqué officiel laisse …
🔥Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets
Cybersecurity researchers have discovered a malicious NuGet package that masquerades as a C# software development kit for Sicoob, one of Brazil's largest cooperative financial systems, to siphon...
🔥Kimsuky Deploys HTTPSpy, Expands Arsenal with HelloDoor and VS Code Tunnels
The North Korean state-sponsored threat actor known as Kimsuky (aka Velvet Chollima) has been attributed to a fresh set of cyber attacks targeting South Korean military and corporate entities through
📰House panel poised to hold hearing centered on AI impact on cyber
It’s part of a series of examinations at the House Homeland Security Committee that now will include a public event. The post House panel poised to hold hearing centered on AI impact on cyber...
📰Google security engineer accused of turning confidential search trends into $1.2M win on Polymarket
Michele Spagnuolo allegedly placed multiple trades on the prediction marketplace, abusing internal access to Google’s nonpublic data on the most searched people in 2025. The post Google security...
📰Zapier fixes bug chain that researchers say risked widespread account takeover
A five-step flaw chain in the popular automation service, now patched, could have let a single attacker act as any signed-in user across thousands of connected apps. The post Zapier fixes bug chain...
📰OpenAI heralds cybersecurity, election interference safeguard plans for 2026 midterms
The announcement builds on work from major tech firms in 2024 to combat AI-infused election chicanery. The post OpenAI heralds cybersecurity, election interference safeguard plans for 2026 midterms...
📰FBI warns US-based law firms to be on the lookout for cybercrime group that steals data in person
Silent Ransom Group isn’t prolific, but it's demonstrated a knack for attacking the legal services sector with an extraordinary dual use of social engineering and in-person visits to victims’...
🖥️« Looksmaxxing », « proteinmaxxing », « funmaxxing »... Bienvenue dans l'ère du -maxxing
ARTICLE LECTEUR // Un fragment de mot venu des forums incels conquiert notre vocabulaire à vitesse grand V. Cécile Buzy-Cazaux, planneuse …
🖥️Piratage confirmé : si vous avez “installé” ce célèbre logiciel de téléchargement en mai, vous êtes une victime potentielle
Le site web du gestionnaire de téléchargement JDownloader a été victime d’un piratage, ce mois de mai. Les hackers ont remplacé certains liens qui …
🖥️Carte bancaire : c'est la fin du code à 4 chiffres, comment cela va-t-il fonctionner dorénavant ?
Composer un code à 4 chiffres avant chaque paiement pourrait bientôt appartenir au passé. Les banques françaises accélèrent désormais le déploiement …