Rodrigue Le Bayon
@rodriguelebayon.bsky.social
📤 45
📥 52
📝 0
Head of CERT @OrangeCyberdefense
https://research.cert.orangecyberdefense.com/
reposted by
Rodrigue Le Bayon
BleepingComputer
7 months ago
Two vulnerabilities impacting Craft CMS were chained together in zero-day attacks to breach servers and steal data, with exploitation ongoing, according to CERT Orange Cyberdefense.
loading . . .
Craft CMS RCE exploit chain used in zero-day attacks to steal data
Two vulnerabilities impacting Craft CMS were chained together in zero-day attacks to breach servers and steal data, with exploitation ongoing, according to CERT Orange Cyberdefense.
https://www.bleepingcomputer.com/news/security/craft-cms-rce-exploit-chain-used-in-zero-day-attacks-to-steal-data/
0
3
3
reposted by
Rodrigue Le Bayon
ONYPHE
7 months ago
#CVE-2025-32432
#0day
#CraftCMS
discovered by Orange Cyberdefense 💥Unauthenticated Remote Code Execution. No CVSS yet, we suggest to give it a 10 📌40,000 IP addresses representing over 37,000 domain names exposed, 12,168 unique domains vulnerable Blog:
blog.onyphe.io/en/cve-2025-...
loading . . .
CVE-2025-32432 – 0day Craft CMS discovered by Orange Cyberdefense – Blog | Big Data for Cyber Defense
https://blog.onyphe.io/en/cve-2025-32432-0day-craft-cms-discovered-by-orange-cyberdefense/
1
1
2
reposted by
Rodrigue Le Bayon
ONYPHE
7 months ago
💥Detection method for
#symlink
#backdoor
on
#fortinet
"we are willing to share it, privately" More than 18k devices compromised Read more:
blog.onyphe.io/en/symlink-b...
loading . . .
Symlink backdoor on Fortinet SSL-VPN devices – Blog | Big Data for Cyber Defense
https://blog.onyphe.io/en/symlink-backdoor-on-fortinet-ssl-vpn-devices/
0
4
4
reposted by
Rodrigue Le Bayon
Eric Geller
8 months ago
Trump going after his former CISA director
@thekrebscycle.bsky.social
, who debunked his 2020 lies. He just ordered a probe of Krebs' leadership of CISA (including any "censorship"), revoked Krebs' clearances, and suspended those of his
@sentinelone.com
colleagues.
www.whitehouse.gov/fact-sheets/...
12
283
136
reposted by
Rodrigue Le Bayon
Orange Cyberdefense CERT
9 months ago
🆕New version of
#Emmenhtal
loader actively distributed worldwide since early March, leading to
#Lumma
or
#Rhadamanthys
stealers. Very low AV detection on VT for now. Similarly to V2, Emmenhtal V3 masquerades as
#mp3
or
#mp4
files, including relaxation songs.🧘♀️
1
2
1
reposted by
Rodrigue Le Bayon
Orange
8 months ago
What can be done to prevent phishing attacks? We speak to cyberdefence expert
@rodriguelebayon.bsky.social
, Head of Global CERT at Orange Cyberdefense, who tells us more about the growing problem and what we can do to stop it. 👉See the interview:
www.france24.com/en/tv-shows/...
loading . . .
Entre Nous - Fighting cybercrime: What can be done to prevent phishing attacks?
Have you ever received a phone call from a number you don't know, offering you a job that's too good to be true? Or received a link to pay for a package that's supposedly in your name? In many of thos...
https://www.france24.com/en/tv-shows/entre-nous/20250325-fighting-cybercrime-what-can-be-done-to-prevent-phishing-attacks
0
4
2
reposted by
Rodrigue Le Bayon
Catalin Cimpanu
10 months ago
Silent Push has discovered a Chinese CDN that rents IPs from major could providers and makes them available to various cybercrime operations. FUNNULL has hosted phishing portals, online romance scams, and gambling sites linked to money laundering operations.
www.silentpush.com/blog/infrast...
loading . . .
Infrastructure Laundering: Silent Push Exposes Cloudy Behavior Around FUNNULL CDN Renting IPs from Big Tech
Infrastructure Laundering is a criminal practice of intermediaries enabling threat actors to hide infrastructure with major cloud providers.
https://www.silentpush.com/blog/infrastructure-laundering/
0
22
9
reposted by
Rodrigue Le Bayon
Gabriel Thierry
10 months ago
Celui qui est considéré comme le père de Babar: la fin de cet épisode de Pwned sur la "Ferme des animaux".
pwned.substack.com/p/celui-qui-...
loading . . .
Celui qui est considéré comme le père de Babar
Où l'on découvre que le choix du nom Babar a peut-être un deuxième sens.
https://pwned.substack.com/p/celui-qui-est-considere-comme-le
0
3
2
reposted by
Rodrigue Le Bayon
ANSSI
10 months ago
Désormais, l'ANSSI est également sur 🦋
#Bluesky
! Retrouvez-nous ici pour suivre toute notre actualité
#cyber
.
7
85
54
reposted by
Rodrigue Le Bayon
Cedric Pernet
11 months ago
#CIRCL
announces the release of new and updated open-source training materials for
#digitalforensics
, over 340 updated and comprehensive slides designed to empower your learning journey.
www.circl.lu/services/for...
#DFIR
0
12
7
you reached the end!!
feeds!
log in
