Pourquoi Taïwan bloque RedNote (mais pas TikTok) Cette semaine, dans Coupe-circuit: open.substack.com/pub/coupecir...

GreatFire balance tout ! Après des mois à tenter de protéger Vultr, @greatfire.org a révélé le rôle central de l’entreprise américaine dans la censure que le géant chinois Tencent essaie de lui imposer en demandant la suppression de son site FreeWeChat. open.substack.com/pub/coupecir...

𝗣𝗢𝗗𝗖𝗔𝗦𝗧 🎧 𝗛𝗼𝘄 𝟮𝟬𝟮𝟱 𝗦𝗵𝗮𝗽𝗲𝗱 𝘁𝗵𝗲 𝗙𝘂𝘁𝘂𝗿𝗲 𝗼𝗳 𝗖𝘆𝗯𝗲𝗿𝘀𝗲𝗰𝘂𝗿𝗶𝘁𝘆 We sat down with Rebecca Taylor from Sophos and @bushidotoken.net from @teamcymrus2.bsky.social to discuss 2025’s highs and lows in cyber and make educated guesses on what to look for in 2026. feeds.soundcloud.com/users/soundc...

Uganda’s authorities are mulling imposing strict controls on internet use, including the possible blocking of major social media networks ahead of the general elections scheduled for mid-January 2026. Platforms affected include TikTok, YouTube, Facebook, Instagram and X.

𝗡𝗘𝗪 - 𝗨𝗞'𝘀 𝗖𝘆𝗯𝗲𝗿 𝗦𝗲𝗿𝘃𝗶𝗰𝗲 𝗳𝗼𝗿 𝗧𝗲𝗹𝗰𝗼𝘀 𝗕𝗹𝗼𝗰𝗸𝘀 𝟭 𝗕𝗶𝗹𝗹𝗶𝗼𝗻 𝗠𝗮𝗹𝗶𝗰𝗶𝗼𝘂𝘀 𝗦𝗶𝘁𝗲 𝗔𝘁𝘁𝗲𝗺𝗽𝘁𝘀 Almost one billion early-stage cyber-attacks have been prevented in the past year in the UK thanks to Share and Defend, a service run by @ncsc.gov.uk. www.infosecurity-magazine.com/news/uk-cybe...

𝗡𝗘𝗪 - 𝗨𝗞 𝗥𝗮𝗻𝘀𝗼𝗺𝘄𝗮𝗿𝗲 𝗣𝗮𝘆𝗺𝗲𝗻𝘁 𝗕𝗮𝗻 𝘁𝗼 𝗖𝗼𝗺𝗲 𝘄𝗶𝘁𝗵 𝗘𝘅𝗲𝗺𝗽𝘁𝗶𝗼𝗻𝘀 Speaking at the @financialtimes.com's Cyber Resilience Summit: Europe today, British Security Minister Dan Jarvis said the ban on ransomware payments will include "national security exemptions." www.infosecurity-magazine.com/news/uk-rans...

👀 VulnWatch Monday: CVE-2025-35028 🔓 A critical vulnerability was found by the Austin Hackers Association in HexStrike AI MCP server. takeonme.org/cves/cve-202...

🔎 VulnWatch Friday: CVE-2025-66022 🔓 A critical vulnerability was discovered in Faction, a pentesting report generation framework developed by Faction Security. 🔧 This issue has been patched in version 1.7.1. 🔎 nvd.nist.gov/vuln/detail/...

𝗡𝗘𝗪 - 𝗙𝗿𝗲𝗻𝗰𝗵 𝗙𝗼𝗼𝘁𝗯𝗮𝗹𝗹 𝗙𝗲𝗱𝗲𝗿𝗮𝘁𝗶𝗼𝗻 𝗦𝘂𝗳𝗳𝗲𝗿𝘀 𝗗𝗮𝘁𝗮 𝗕𝗿𝗲𝗮𝗰𝗵 🇫🇷 The FFF detected unauthorized access to the software platform used by all licensed football clubs in France to manage administrative tasks, incl. registering their players with the federation. 📰 www.infosecurity-magazine.com/news/french-...

🇬🇧 Cyber Security & Resilience Bill: Key Changes Revealed Shona Lester, Head of CSR Bill Team, just shared the bill's key provisions. Here’s what’s coming: ☑️ Expanded Regulatory Scope ☑️ Enhanced Incident Reporting ☑️ Strengthened Regulatory Powers 📰 www.infosecurity-magazine.com/news/key-pro...

Pour les plus friands de détails techniques mais pas forcément anglophones, j’ai aussi concocté un tableau résumant les résultats de l’analyse des chercheurs, à découvrir ici : datawrapper.dwcdn.net/Ea0qo/13/

Votre VPN est-il vulnérable à la censure numérique ? Des chercheurs de l’IIIT Delhi, en Inde, se sont demandé dans quelle mesure un gouvernement pourrait détecter du trafic VPN et ainsi (potentiellement) le bloquer. On vous explique ce qu'ils ont trouvé ⬇️ coupecircuit.substack.com/p/vpn-voici-...

🚨 𝐎𝐩. 𝐄𝐧𝐝𝐠𝐚𝐦𝐞 3.0 𝐃𝐢𝐬𝐦𝐚𝐧𝐭𝐥𝐞𝐬 𝐑𝐡𝐚𝐝𝐚𝐦𝐚𝐧𝐭𝐡𝐲𝐬, 𝐕𝐞𝐧𝐨𝐦𝐑𝐀𝐓 𝐚𝐧𝐝 𝐄𝐥𝐲𝐬𝐢𝐮𝐦 The third "season" of Operation Endgame resulted in: 🗄️ Over 1025 servers taken down or disrupted 🌐 20 domains seized 🚪 11 locations searched 👮 One arrest 📰 www.infosecurity-magazine.com/news/operati...

𝐏𝐎𝐃𝐂𝐀𝐒𝐓 - 𝐇𝐨𝐰 𝐏𝐫𝐢𝐯𝐚𝐭𝐞 𝐑𝐞𝐬𝐞𝐚𝐫𝐜𝐡𝐞𝐫𝐬 𝐀𝐫𝐞 𝐓𝐚𝐤𝐢𝐧𝐠 𝐃𝐨𝐰𝐧 𝐑𝐚𝐧𝐬𝐨𝐦𝐰𝐚𝐫𝐞 𝐎𝐩𝐞𝐫𝐚𝐭𝐢𝐨𝐧𝐬 I sat down with Matthew Maynard, a cybersecurity pro by day and a cyber ghost-buster by night, who doesn’t just hunt vulnerabilities, but haunts the hackers themselves. 🎧 Listen here: feeds.soundcloud.com/users/soundc...

𝘗𝘦𝘳𝘴𝘰𝘯𝘢𝘭 𝘰𝘱𝘪𝘯𝘪𝘰𝘯: 𝐂𝐲𝐛𝐞𝐫𝐬𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐑𝐞𝐩𝐨𝐫𝐭𝐢𝐧𝐠 𝐒𝐡𝐨𝐮𝐥𝐝𝐧’𝐭 𝐉𝐮𝐦𝐩 𝐭𝐨 𝐆𝐞𝐨𝐩𝐨𝐥𝐢𝐭𝐢𝐜𝐚𝐥 𝐂𝐨𝐧𝐜𝐥𝐮𝐬𝐢𝐨𝐧𝐬 (𝐄𝐬𝐩𝐞𝐜𝐢𝐚𝐥𝐥𝐲 𝐖𝐢𝐭𝐡𝐨𝐮𝐭 𝐄𝐯𝐢𝐝𝐞𝐧𝐜𝐞) The latest cyberattack on airports is a serious incident that warrants thorough investigation. (1/5) www.infosecurity-magazine.com/news/airport...

EXCLUSIVE - Why Three Vendors Pulled Out of ‘Cybersecurity Olympics’ Microsoft, SentinelOne and Palo Alto Networks have decided not to take part in the 2025 edition of MITRE’s EDR test. I spoke with MITRE CTO to understand what motivated these moves. www.infosecurity-magazine.com/news/cyber-v...

Hackers calling themselves SafePay. carried out a ransomware attack on the five-star K Club resort in Co Kildare as it prepared to host some of the world’s top golfers at the Irish Open this past weekend. www.thetimes.com/world/irelan...

Cybersecurity firm Netskope eyes up to $6.5 billion valuation in US IPO www.reuters.com/business/cyb...

Hackers are using security reports to translate technical problems into “partial malicious code” as part of the “vibe coding” trend. www.trendmicro.com/vinfo/us/sec...

𝐂𝐈𝐒𝐀 2015 𝐒𝐚𝐟𝐞 𝐇𝐚𝐫𝐛𝐨𝐫 𝐚𝐭 𝐑𝐢𝐬𝐤 𝐚𝐬 𝐒𝐞𝐩𝐭𝐞𝐦𝐛𝐞𝐫 30 𝐃𝐞𝐚𝐝𝐥𝐢𝐧𝐞 𝐍𝐞𝐚𝐫𝐬 ⌛As the expiration date for the Cybersecurity Information Sharing Act of 2015 looms in the US, I spoke to experts about the provisions the Act offers and the debates surrounding the renewal and the consequences of non-renewal.

𝐕𝐨𝐭𝐫𝐞 𝐕𝐏𝐍 𝐞𝐬𝐭-𝐢𝐥 𝐮𝐧 𝐜𝐡𝐞𝐯𝐚𝐥 𝐝𝐞 𝐓𝐫𝐨𝐢𝐞 𝐜𝐡𝐢𝐧𝐨𝐢𝐬 ? 🇨🇳 D’après 3 études, des dizaines d’applis VPN (Google Play Store/Apple App Store) sont liées entre elles… et certaines appartiennent à Qihoo 360, proche de l’armée chinoise. 🔗 Nouvelle édition de Coupe-Circuit : open.substack.com/pub/coupecir...

🔎 VulnWatch Friday: CVE-2025-57819 🔓 The Sangoma FreePBX Security Team has warned of a vulnerability being exploited in the wild. FreePBX is an open-source graphical user interface (GUI) for managing Asterisk, the popular open-source Private Branch Exchange (PBX) and telephony platform.

🧐 VulnWatch Wednesday: CVE-2025-7775 🔓 Citrix has released patches for three critical zero days in NetScaler ADC and Gateway, one of which was already being exploited by attackers. According to Kevin Beaumont, exploit campaigns 🎯CVE-2025-7775 began before the patches were made available.

🧐 VulnWatch Wednesday: CVE-2025-31324 🔓 A critical vulnerability in SAP NetWeaver is now being widely exploited following the release of public exploit tooling. 🆕 The public availability of the full source code makes the exploit easy to use even for attackers with little technical expertise.

𝐋𝐞𝐠𝐢𝐭𝐢𝐦𝐚𝐭𝐞 𝐂𝐡𝐫𝐨𝐦𝐞 𝐕𝐏𝐍 𝐄𝐱𝐭𝐞𝐧𝐬𝐢𝐨𝐧 𝐓𝐮𝐫𝐧𝐬 𝐭𝐨 𝐁𝐫𝐨𝐰𝐬𝐞𝐫 𝐒𝐩𝐲𝐰𝐚𝐫𝐞 FreeVPN.One, a popular Google-featured browser VPN extension, recently turned malicious and is now spying on users’ every move online. A good read from Koi Security on 𝑰𝒏𝒕𝒆𝒓𝒏𝒂𝒕𝒊𝒐𝒏𝒂𝒍 𝑽𝑷𝑵 𝑫𝒂𝒚 www.infosecurity-magazine.com/news/chrome-...

👀 VulnWatch Monday: CVE-2025-25256 🔓 WatchTowr Labs has published a technical analysis of CVE-2025-25256, a critical pre-auth command injection vulnerability in Fortinet's FortiSIEM, as well as a detection artifact generator. 🔧 Fix? Yes (see Fortinet's security advisory)

NEW 🏆Team Atlanta is the winner of DARPA’s and ARPA-H’s AI Cybersecurity Challenge (AIxCC) 🥇 They performed top in all but one category 💰 They will receive a prize of $4m

NEW 🏆Team Atlanta is the winner of DARPA’s and ARPA-H’s AI Cybersecurity Challenge (AIxCC) 🥇 They performed top in all but one category 💰 They will receive a prize of $4m

🔴 CISA Update Session at @BlackHatEvents USA 2025 🔴 Robert Costello, CIO of CISA, believes reports of the agency's demise are greatly exaggerated. He quoted Ernest Hemingway: "We're not retrieving, we're advancing to a new direction."

#ESETresearch joins Europol’s Cyber Intelligence Extension Programme (CIEP) 🤝 We are proud to announce ESET’s participation in the pilot phase of CIEP, a new initiative launched by Europol 's European Cybercrime Centre (EC3). 1/5

🔍 APT28’s ‘Lamehug’ is the first LLM-powered malware 🧪 MITRE's Gianpaolo Russo and Marissa Dotter broke it down at @blackhatevents.bsky.social USA, showing how this shifts cyber threats. Their OCCULT suite tests these threats. 🔜 Stay tuned for deeper insights on Infosecurity Magazine

🚨 A US defense contractor’s domain was compromised by ethical hackers in just 77 seconds Part of the NSA's CAPT program, which offers free pentesting for DIB suppliers, this test was run by @horizon3ai.bsky.social. 🔜 More to come on Infosecurity Magazine

Appli bloquée en Éthiopie = indisponible en Palestine Saviez-vous qu'une application Android bloquée en Afghanistan le sera aussi en Mauritanie ? Et qu'une application qui disparaît du Google Play Store à Madagascar sera indisponible au Kosovo ? L'explication ici: open.substack.com/pub/coupecir...

🔎 VulnWatch Friday: CVE-2025-7624 🔓 In a July 21 security advisory, Sophos shared the patches for 5️⃣ vulnerabilities affecting its products. One of the two critical vulnerabilities, tracked as CVE-2025-7624 is an SQL injection in the legacy SMTP proxy of some Sophos Firewall versions.

🧐 VulnWatch Wednesday: CVE-2025-54309 🔓 At least 10,000 CrushFTP instances are vulnerable to a critical flaw, which is currently being exploited by attackers, affecting the file transfer solution, according to @shadowserver.bsky.social and @rapid7.com. www.infosecurity-magazine.com/news/crushft...

𝐍𝐄𝐖 ⚖️ The Clorox Company 𝐒𝐮𝐞𝐬 Cognizant 𝐟𝐨𝐫 𝐂𝐚𝐮𝐬𝐢𝐧𝐠 2023 𝐂𝐲𝐛𝐞𝐫-𝐀𝐭𝐭𝐚𝐜𝐤 Clorox, a leading US producer of cleaning products, is suing its former IT service desk provider, London-based Cognizant, over the August 2023 cyber-attack. [1/4] www.infosecurity-magazine.com/news/clorox-...

𝐅𝐫𝐚𝐧𝐜𝐞 🇫🇷 𝐍𝐞𝐰 𝐃𝐚𝐭𝐚 𝐁𝐫𝐞𝐚𝐜𝐡 𝐂𝐨𝐮𝐥𝐝 𝐀𝐟𝐟𝐞𝐜𝐭 340,000 𝐉𝐨𝐛𝐬𝐞𝐞𝐤𝐞𝐫𝐬 France Travail has suffered a data breach that could affect hundreds of thousands of jobseekers. The breach was detected by the @anssi-fr.bsky.social's @cert-fr.bsky.social on July 12. [1/2] www.infosecurity-magazine.com/news/france-...

𝐍𝐄𝐖 👮 𝐒𝐮𝐬𝐩𝐞𝐜𝐭𝐞𝐝 𝐗𝐒𝐒 𝐅𝐨𝐫𝐮𝐦 𝐀𝐝𝐦𝐢𝐧 𝐀𝐫𝐫𝐞𝐬𝐭𝐞𝐝 𝐢𝐧 𝐔𝐤𝐫𝐚𝐢𝐧𝐞 A man suspected of administering the Russian-language cybercrime forum XSS was arrested in Ukraine on July 22. 📴 The Ukrainian and French law enforcement agencies have also seized the XSS domains. www.infosecurity-magazine.com/news/suspect...

𝐍𝐄𝐖 🐞 𝐒𝐡𝐚𝐫𝐞𝐏𝐨𝐢𝐧𝐭 ‘𝐓𝐨𝐨𝐥𝐒𝐡𝐞𝐥𝐥’ 𝐕𝐮𝐥𝐧𝐬 𝐄𝐱𝐩𝐥𝐨𝐢𝐭𝐞𝐝 𝐛𝐲 𝐂𝐡𝐢𝐧𝐞𝐬𝐞 𝐇𝐚𝐜𝐤𝐞𝐫𝐬 Microsoft has observed three China-based threat actors, Linen Typhoon, Violet Typhoon and Storm-2603, exploiting the SharePoint vulnerabilities dubbed as 'ToolShell.' www.infosecurity-magazine.com/news/sharepo...

"Apple’s ongoing legal battle with the UK government over access to encrypted data took a twist [..] with reports that ministers may be readying to back down to avoid friction with the Trump administration in the US." www.mlex.com/mlex/data-pr...

Chinese Censorship: GreatFire Fights Back ✊ Episode 02 of the FreeWeChat saga (Tencent/Group-IB vs @greatfire.org) in the latest edition of @coupecircuit.bsky.social⤵️ Also covering the latest internet shutdown news: 🇵🇰🇧🇩🇷🇺🇹🇬

👀 VulnWatch Monday: CVE-2025-53770 🔓 CVE-2025-53770, aka 'ToolShell' is the talk of the cybersecurity-focused internet today! Read the full Infosecurity Magazine analysis: www.infosecurity-magazine.com/news/microso... 💾 Download JSON here: cveawg.mitre.org/api/cve/CVE-...

Z-ONE consulting made a large list of cybersecurity companies in China and gives a broad overview of the Chinese market: drive.google.com/drive/u/1/fo... www.z1-sec.com/en/

Why is a respected Singapore-based cybersecurity company involved in a SLAPP lawsuit against a Chinese anti-censorship NGO? In the new edition of @coupecircuit.bsky.social, I explore an intriguing case in which Tencent could be leveraging non-Chinese private companies to enforce censorship ⬇️

🔎 VulnWatch Friday: CVE-2025-25257 🔓 On July 8, 2025, Fortinet released fixes for a critical vulnerability in FortiWeb that could allow an unauthenticated threat actor to execute SQL commands via crafted HTTP or HTTPS requests. No in-the-wild exploitation has been observed at the time of writing.

𝐍𝐄𝐖 - 𝐓𝐢𝐤𝐓𝐨𝐤'𝐬 𝐇𝐚𝐧𝐝𝐥𝐢𝐧𝐠 𝐨𝐟 𝐄𝐔 𝐔𝐬𝐞𝐫 𝐃𝐚𝐭𝐚 𝐢𝐧 𝐂𝐡𝐢𝐧𝐚 𝐂𝐨𝐦𝐞𝐬 𝐔𝐧𝐝𝐞𝐫 𝐒𝐜𝐫𝐮𝐭𝐢𝐧𝐲... 𝐀𝐠𝐚𝐢𝐧 🇪🇺 @dpcireland.bsky.social is launching of a new inquiry into TikTok's storage of European users' data on servers in China, just 2 months after it fined the company €530m. www.infosecurity-magazine.com/news/tiktok-...

🥷 𝐔𝐧𝐦𝐚𝐬𝐤𝐢𝐧𝐠 𝐭𝐡𝐞 𝐒𝐚𝐟𝐞𝐏𝐚𝐲 𝐑𝐚𝐧𝐬𝐨𝐦𝐰𝐚𝐫𝐞 𝐆𝐫𝐨𝐮𝐩 🥷 I dived deeper into the ransomware group's tactics and attack patterns, victimology and its place within the cybercriminal ecosystem, including its ties with defunct and active groups. www.infosecurity-magazine.com/news-feature...

🧐 VulnWatch Wednesday: CVE-2025-47981 🔓 In its July Patch Tuesday, Microsoft patched CVE-2025-47981, a critical RCE flaw in SPNEGO, a protocol used in computer networks to help two parties securely agree on how to authenticate each other. www.infosecurity-magazine.com/news/microso...

👀 VulnWatch Monday: CVE-2025-5777 🔓 Researchers from watchTowr have published technical details of a detection script which can be used to identify exploitation of the CitrixBleed 2 vulnerability. www.infosecurity-magazine.com/news/citrixb...