🇷🇺 Nouveau blackout pour le Jour de la Victoire L'internet mobile a été bloqué à Moscou et Saint-Pétersbourg du 5 au 9 mai, date de la commémoration de la signature du second acte de capitulation de l'Allemagne nazie. Courts-circuits | 5-11 mai 2026 www.coupecircuit.org/nouveau-blac...

La @rightscon.org aurait dû commencer aujourd'hui. Et Coupe Circuit aurait dû être à Lusaka depuis hier. Malheureusement, le plus grand rdv des défenseurs des droits numériques a dû être annulé au tout dernier moment. On vous explique tout ici: www.coupecircuit.org/rightscon-lu...

🇷🇺 Les applis russes savent qui utilise un VPN Sur 30 applis Android populaires en Russie analysées par RKS Global (Max, VK...), toutes sont capables de détecter quand leurs utilisateurs sont connectés à un VPN. Courts-circuits | 28 avril-4 mai 2026 www.coupecircuit.org/les-applis-r...

La @rightscon.org, le plus grand rendez-vous des défenseurs des droits numériques, a dû être annulée au tout dernier moment. En cause : le gouvernement chinois a fait pression sur le gouvernement zambien pour exclure des participants taïwanais de l'événement. www.coupecircuit.org/rightscon-lu...

NEW: UK government survey shows the British public education sector has faced a significant increase in cyber breaches over the past year, despite stable threat levels recorded in the UK. www.infosecurity-magazine.com/news/uk-educ...

This is the biggest digital rights conference in the world, with people from every corner planning for months, and scheduled to start in less than a week.

RightsCon n'aura donc pas lieu cette année... Le gouvernement zambien a "repoussé" la conférence pour des raisons de "sécurité" avant de justifier sa décision par les thèmes abordés durant la conférence...

When Anthropic gathered companies to explore risks of its advanced Mythos model, people working to hold AI accountable weren't in the room. We need to change that, write Back Channel co-founders Amber Scorah and Rebecca Petras.

D’après plusieurs médias, Vladimir Poutine a récemment justifié les coupures internet : “Lors d’opérations de prévention de la criminalité, une diffusion précoce d’informations au public peut nuire au bon déroulement des opérations", a-t-il dit. coupecircuit.substack.com/p/couper-int...

Il y a quelques jours, Doug Madory directeur de l’analyse internet chez Kentik, a rapporté de très légers signes d’un retour infime de trafic en Iran, qu’il attribue à la mise sur liste blanche de certains services. www.coupecircuit.org/de-timides-s...

In this new episode of the Infosecurity Magazine podcast, we speak with Allie Mellen, author of 𝐶𝑜𝑑𝑒 𝑊𝑎𝑟, about the rising threat of nation-state cyber operations 🇺🇸🇷🇺🇨🇳 www.infosecurity-magazine.com/podcasts/ins...

As Vulncon was coming to a close, I sat down with Chris Gibson, the CEO of FIRST, to talk about the state of vulnerability research, Anthropic's and OpenAI's new "cyber" models and the relief of seeing ENISA & CISA team up in the CVE program. www.infosecurity-magazine.com/interviews/f...

INTERVIEW - Walt Powell, Lead Field CISO at CDW, explains what one skill modern CISOs should prioritize: mastering risk quantification to secure the board buy-in and and budget needs. www.infosecurity-magazine.com/interviews/c...

Faced with an explosion of vulnerability reporting, NIST's NVD is taking a new risk-based approach to enriching CVEs. This implies bold moves, including the NVD dropping enrichment for all vulnerabilities reported before March 1, 2026. www.infosecurity-magazine.com/news/nvd-enr...

NEW - ENISA is strengthening its ties with US-funded @cveprogram.bsky.social. The European agency is being onboarded by CISA to become a Top-Level Root CVE Numbering Authority (TL-Root CNA). www.infosecurity-magazine.com/news/enisa-e...

NEW - AI companies like OpenAI and Anthropic should play a bigger role in software vulnerability disclosures and the CVE program in the future, according to CISA. @firstdotorg.bsky.social #VulnCon26 www.infosecurity-magazine.com/news/ai-comp...

Alors que l'appli Telegram est bloquée à 95% en Russie, d’après l'@ooni.org, et dans plusieurs villes irakiennes, @proton.me a noté une explosion d’inscriptions à ses services VPN de 1 200% dans le pays du Moyen-Orient, un record. coupecircuit.substack.com/p/telegram-n...

Three high-profile journalists in Egypt and Lebanon have been targeted by a spear-phishing campaign likely tied to Bitter, a South Asian cyber espionage group also known as T-APT-17 and APT-C-08. www.infosecurity-magazine.com/news/middle-...

NEW - A large-scale network of internet routers compromised by Russian hacking group APT28 to harvest credentials from victims of intelligence value has been taken down in the US. @thejusticedept.govmirrors.com @threatintel.microsoft.com www.infosecurity-magazine.com/news/us-thwa...

NEW - Russian hacking group APT28 has been exploiting vulnerable internet routers to redirect traffic through attacker-controlled servers and steal credentials from targeted organizations, @ncsc.gov.uk has warned. www.infosecurity-magazine.com/news/russia-...

Deux médias pro-Kremlin rapportent que le gouvernement russe s'apprête à durcir les exigences d’exploitation pour les fournisseurs d’accès à internet afin d’éliminer - ou de mieux contrôler - les petits opérateurs locaux. www.coupecircuit.org/courts-circu...

‘Vibe coding’ is accelerating dev speeds, but it’s also opening new security backdoors 🚀💻 I spoke with experts from @aikidosecurity.bsky.social, Neural Trust and more for Infosecurity Magazine to break down how CISOs can secure AI-assisted engineering. www.infosecurity-magazine.com/news-feature...

L'année 2025 a encore explosé les compteurs de coupures internet, avec 313 incidents de la sorte dans 52 pays, indique le nouveau rapport d'@accessnow.org et la coalition #KeepItOn. Ils dépassent tristement les précédents records de 2024 (304) de 2023 (289). www.coupecircuit.org/2025-nouvell...

🚨 A critical vulnerability in Citrix's NetScaler Application Delivery Controller (ADC) and NetScaler Gateway is being exploited in the wild, security researchers from watchTowr and Defused have confirmed. www.infosecurity-magazine.com

VulnWatch Friday: CVE-2026-32628 🔓 Aviral Srivastava has discovered a high-severity vulnerability in Mintplex Labs' AnythingLLM, an application that turns pieces of content into context that any LLM can use as references during chatting. 🔧 Fix: github.com/Mintplex-Lab...

The UK government has sanctioned Chinese-based company Xinbi, described as one of the largest illicit online cryptocurrency marketplaces as well a associated entities and individuals accused of links with scam compounds in Southeast Asia. www.infosecurity-magazine.com/news/uk-sanc...

This article by @masnick.com is on target. As another pre-www tech person, AI coding is inspiring me to make all kinds of things. www.techdirt.com/2026/03/25/a...

𝐍𝐄𝐖 - Vibe coding tools are flooding software with new vulnerabilities, @georgiatechai.bsky.social researchers have warned. I spoke to Hanqing Zhao, founder of the Vibe Security Radar, about the future of AI coding tool-induced vulnerabilities. www.infosecurity-magazine.com/news/ai-gene...

𝐍𝐄𝐖 - OpenAI has launched a new Safety Bug Bounty program to encourage disclosures of issues in its products that pose “meaningful abuse and safety risks, even if they don’t meet the criteria for a security vulnerability.” @bugcrowd.com www.infosecurity-magazine.com/news/openai-...

The US Federal Communications Commission bans foreign-made internet routers over national security concerns. The ban means that all such routers made in foreign countries, not just a few select Chinese vendors, are now placed on the FCC’s covered list. www.infosecurity-magazine.com/news/us-fcc-...

At @rsaconference.bsky.social, the head of the @ncsc.gov.uk urged the cybersecurity industry to develop vibe coding safeguards. www.infosecurity-magazine.com/news/rsac-uk...

VulnWatch Monday: CVE-2026-22172 🔓 🦞 Yekai Chen (aka LUOYEcode) has detected a critical vulnerability affecting @openclaw-x.bsky.social versions prior to 2026.3.12. 🔧 Fix in OpenClaw 2026.3.12.

𝐂𝐫𝐢𝐭𝐢𝐜𝐚𝐥 𝐙𝐞𝐫𝐨-𝐂𝐥𝐢𝐜𝐤 𝐅𝐥𝐚𝐰 𝐢𝐧 𝐧𝟖𝐧 𝐀𝐥𝐥𝐨𝐰𝐬 𝐅𝐮𝐥𝐥 𝐒𝐞𝐫𝐯𝐞𝐫 𝐂𝐨𝐦𝐩𝐫𝐨𝐦𝐢𝐬𝐞 Researchers at Pillar Security have found two new critical vulnerabilities in self-hosted and cloud n8n deployments, including CVE-2026-27493 ⤵️ www.infosecurity-magazine.com/news/critica...

𝐖𝐡𝐚𝐭 𝐂𝐈𝐒𝐎𝐬 𝐒𝐡𝐨𝐮𝐥𝐝 𝐊𝐧𝐨𝐰 (𝐀𝐧𝐝 𝐃𝐨) 𝐀𝐛𝐨𝐮𝐭 𝐎𝐩𝐞𝐧𝐂𝐥𝐚𝐰 OpenClaw has exploded onto the scene and govts are already slamming on the brakes. I spoke to experts to explore what CISOs should do to contain its vulnerabilities. www.infosecurity-magazine.com/news-feature...

𝐄𝐱𝐜𝐥𝐮𝐬𝐢𝐯𝐞 𝐈𝐧𝐭𝐞𝐫𝐯𝐢𝐞𝐰 𝐰𝐢𝐭𝐡 𝐎𝐩𝐞𝐧𝐂𝐥𝐚𝐰'𝐬 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐀𝐝𝐯𝐢𝐬𝐨𝐫 @openclaw-x.bsky.social'sweak spots have not gone unnoticed and Jamiseon O'Reilly was among the first to call them out. Now, he’s been appointed its security representative. 🎧 www.infosecurity-magazine.com/podcasts/exc...

In a soon-to-be released interview, Jamieson O'Reilly, OpenClaw’s security advisor, warned that we need to develop more ways to “scan AI tools” for detecting “human-language malware.” With the Promptfoo acquisition, OpenAI now wants to do just that. www.infosecurity-magazine.com/news/openai-...

VulnWatch Monday: CVE-2026-27944 🔓 A critical vulnerability in Nginx UI allows unauthenticated attackers to download and decrypt full system backups. It affects all versions before 2.3.2.

VulnWatch Monday: CVE-2025-71210 🔓 Trend Micro has issued patches addressing several vulnerabilities in Apex One, with severity levels ranging from high to critical. Some of the issues impact the management console and could potentially allow RCE. success.trendmicro.com/en-US/soluti...

"Iran remains in .. near-total internet blackout as the US & Israel strike the country. National connectivity is at 1% of ordinary levels .. Iran often imposes blackouts during conflicts & unrest .. U.S. and Israeli cyberattacks may also be the cause." www.cnbc.com/2026/03/02/i... @cnbc.com

Le régulateur russe des télécoms, Roskomnadzor, a désormais banni 469 services VPN, d’après l’agence de presse russe Ria Novosti. Courts-circuits | 23 février-1er mars 2026 coupecircuit.substack.com/p/469-vpn-bl...

Comment le blackout internet en Iran redessine le rôle du secteur privé 🇮🇷 La coupure internet en Iran a mis en avant le rôle du secteur privé dans la censure numérique. Iran : analyse d’une coupure internet sans précédent - partie 2/3 coupecircuit.substack.com/p/comment-le...

𝐅𝐥𝐚𝐰𝐬 𝐢𝐧 𝐏𝐨𝐩𝐮𝐥𝐚𝐫 𝐒𝐨𝐟𝐭𝐰𝐚𝐫𝐞 𝐃𝐞𝐯𝐞𝐥𝐨𝐩𝐦𝐞𝐧𝐭 𝐀𝐩𝐩 𝐄𝐱𝐭𝐞𝐧𝐬𝐢𝐨𝐧𝐬 𝐀𝐥𝐥𝐨𝐰 𝐃𝐚𝐭𝐚 𝐄𝐱𝐟𝐢𝐥𝐭𝐫𝐚𝐭𝐢𝐨𝐧 Researchers at OX Security have detected four vulnerabilities in three of the most popular IDEs that could lead to cyber-attacks. 📰 www.infosecurity-magazine.com/news/vulnera...

La Russie a bloqué l’accès à Telegram, WhatsApp et YouTube. Le Kremlin veut pousser l’utilisation de ses propres applications alternatives comme la messagerie instantanée Max et promeut un “internet souverain”... coupecircuit.substack.com/p/spaciba-te...

VulnWatch Monday: CVE-2026-2441 🔓 Google has released a security update to patch a newly discovered zero-day in Chrome. The tech giant also confirmed that it “is aware that an exploit for CVE-2026-2441 exists in the wild.” www.infosecurity-magazine.com/news/google-...

🇺🇬 Des SMS pro-Museveni envoyés aux clients de MTN en plein blackout numérique La nouvelle édition de Courts-circuits (2-8 février 2026), c'est par-ici : coupecircuit.substack.com/p/des-sms-pr...

𝐇𝐚𝐜𝐤𝐢𝐧𝐠 𝐂𝐚𝐦𝐩𝐚𝐢𝐠𝐧 𝐄𝐱𝐩𝐥𝐨𝐢𝐭𝐬 𝐌𝐢𝐜𝐫𝐨𝐬𝐨𝐟𝐭 𝐖𝐢𝐧𝐝𝐨𝐰𝐬 𝐖𝐢𝐧𝐑𝐀𝐑 𝐕𝐮𝐥𝐧𝐞𝐫𝐚𝐛𝐢𝐥𝐢𝐭𝐲 A hacking campaign took just days to exploit a newly disclosed security vulnerability in Microsoft Windows version of WinRAR, researchers at Check Point have said. www.infosecurity-magazine.com/news/hacking...

Comment l’Iran a coupé internet pour près de 90 millions de personnes 🇮🇷 On explore ce qu'il s'est passé, exactement, pour l'internet iranien en janvier. Chiffres, graphiques & chronologie à l'appui 📊 Iran : analyse d’une coupure internet sans précédent 1/3 coupecircuit.substack.com/p/comment-li...

𝐎𝐩𝐞𝐧𝐂𝐥𝐚𝐰 𝐚𝐧𝐝 𝐌𝐨𝐥𝐭𝐛𝐨𝐨𝐤 𝐖𝐞𝐧𝐭 𝐕𝐢𝐫𝐚𝐥 – 𝐒𝐨 𝐃𝐢𝐝 𝐓𝐡𝐞𝐢𝐫 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐒𝐡𝐨𝐫𝐭𝐜𝐨𝐦𝐢𝐧𝐠𝐬 New @6mile.githax.com findings reveal 386 fake crypto trading 'skills' linked to the viral OpenClaw AI assistant tool (aka Moltbot/Clawdbot) can lead users to install infostealers. 📰 www.infosecurity-magazine.com/news/malicio...

𝗖𝘆𝗯𝗲𝗿𝗰𝗿𝗶𝗺𝗲 𝗨𝗻𝗶𝘁 𝗼𝗳 𝗣𝗮𝗿𝗶𝘀 𝗣𝗿𝗼𝘀𝗲𝗰𝘂𝘁𝗼𝗿𝘀 𝗥𝗮𝗶𝗱 𝗘𝗹𝗼𝗻 𝗠𝘂𝘀𝗸’𝘀 𝗫 𝗢𝗳𝗳𝗶𝗰𝗲𝘀 𝗶𝗻 𝗙𝗿𝗮𝗻𝗰𝗲 🇫🇷 The cybercrime unit of the Paris Prosecutor’s Office raided X offices in Paris. Musk and Linda Yaccarino were summoned for voluntary interviews in Paris on April 20. 📰 www.infosecurity-magazine.com/news/paris-p...

Notepad++ compromised in supply chain attack from June to December 2025 by “likely Chinese state-sponsored actor”. notepad-plus-plus.org/news/hijacke...