Voici la sélection des vulnérabilités de cybersécurité les plus critiques découvertes la semaine passée.
Vous retrouvez ci-dessous les liens directs vers les articles les plus intéressants. Pour information, cette veille est préparée avec un vrai cerveau non artificiel, alors bonne lecture et merci de soutenir le Décodeur !
Les actus sélectionnées cette semaine
L'essentiel Cybersécurité, IA & Tech
Rejoignez la communauté. 3 fois par semaine, recevez l'analyse des tendances par Marc Barbezat. Pas de spam, juste de l'info.
Curve Finance’s $62M exploit exposes larger issues for DeFi ecosystem | TechCrunch
Hackers stole around $62 million from Curve Finance on Sunday. This exploit isn’t the only problem Curve – and the broader crypto space – is facing.
FBI, CISA, and NSA reveal top exploited vulnerabilities of 2022
In collaboration with CISA, the NSA, and the FBI, Five Eyes cybersecurity authorities have issued today a list of the 12 most exploited vulnerabilities throughout 2022.
New acoustic attack steals data from keystrokes with 95% accuracy
A team of researchers from British universities has trained a deep learning model that can steal data from keyboard keystrokes recorded using a microphone with an accuracy of 95%.
Call of Duty worm malware used to hack players exploits years-old bug | TechCrunch
Hackers are exploiting a bug that’s at least five years old to infect Call of Duty: Modern Warfare 2 players with a self-spreading malware.
US, Norway say hackers have been exploiting Ivanti zero-day since April | TechCrunch
U.S. and Norwegian governments say they are concerned that hackers could exploit the bugs for « widespread exploitation » across government.
‘Minecraft’ mod exploit lets hackers control your device | Engadget
Some ‘Minecraft’ mods are vulnerable to an actively exploited security hole that lets intruders hijack devices..
It’s a hot 0-day summer for Apple, Google, and Microsoft security fixes
July saw two high-severity bugs in Firefox, while Oracle patched over 500 vulnerabilities.
Unlimited miles and nights: Vulnerability found in rewards programs
Points.com, used by major travel rewards programs, exposed user data… and more.
Ivanti Says Second Zero-Day Used in Norway Government Breach
Threat actors who recently attacked a dozen Norwegian ministries by exploiting a zero-day vulnerability in Ivanti’s endpoint management software appeared to have
Zéro paywall. Zéro pub.
DCOD reste en accès libre grâce à vos contributions. Chaque café compte.
