Personnalisez votre veille

Inscrivez-vous gratuitement.

Espace publicitaire · 728×90

Critical Vivotek Flaw Enables Remote Arbitrary Code Execution

IT Security News - infosec - IT Security News • Publié le 22 janvier 2026

Akamai’s Security Intelligence and Response Team (SIRT) uncovered a serious command injection vulnerability in legacy Vivotek IoT camera firmware. Tracked as CVE-2026-22755, the flaw lets remote attackers inject and run arbitrary code as root without authentication. Researchers used AI-driven reverse…

The post Critical Vivotek Flaw Enables Remote Arbitrary Code Execution appeared first on IT Security News.

Espace publicitaire · 300×250

Cybercriminals Target Cloud File-Sharing Services to Access Corporate Data

  Cybersecurity analysts are raising concerns about a growing trend in which corporate cloud-based file-sharing platforms are being leveraged to extract sensitive organizational data. A cybercrime actor known online as “Zestix” has…

itsecuritynews.info•1 janvier 1970

🇬🇧 → 🇫🇷

Proxyware Malware Disguised as Notepad++ Tool Leverages Windows Explorer Process to Hijack Systems

A sophisticated malware campaign targeting unsuspecting users has emerged, disguising malicious proxyware as legitimate Notepad++ installations. This attack, orchestrated by the threat actor Larva-25012, exploits users seeking cracked…

itsecuritynews.info•1 janvier 1970

🇬🇧 → 🇫🇷

What the Alien Franchise Taught Me About Cybersecurity

Ripley’s tactics from Alien are your blueprint for SOC transformation to defeat modern threats with AI-driven security, automation and SIEM modernization. The post What the Alien Franchise Taught Me About Cybersecurity appeared first…

itsecuritynews.info•1 janvier 1970

🇬🇧 → 🇫🇷

Google to Pay $8.25M Settlement Over Child Data Tracking in Play Store

Is your child’s data safe? Google settles for $8.25M over claims it tracked kids under 13 without parental… This article has been indexed from Hackread – Cybersecurity News, Data Breaches, AI, and More Read the original…

itsecuritynews.info•1 janvier 1970

🇬🇧 → 🇫🇷

I scan, you scan, we all scan for… knowledge?

In this week’s newsletter, Bill hammers home the old adage, “Know your environment” — even throughout alert fatigue. This article has been indexed from Cisco Talos Blog Read the original article: I scan, you scan, we all…

itsecuritynews.info•1 janvier 1970

🇬🇧 → 🇫🇷

New Osiris Ransomware Emerges as New Strain Using POORTRY Driver in BYOVD Attack

Cybersecurity researchers have disclosed details of a new ransomware family called Osiris that targeted a major food service franchisee operator in Southeast Asia in November 2025. The attack leveraged a malicious driver called POORTRY as…

itsecuritynews.info•1 janvier 1970

🇬🇧 → 🇫🇷

Crims compromised energy firms’ Microsoft accounts, sent 600 phishing emails

Logging in, not breaking in Unknown attackers are abusing Microsoft SharePoint file-sharing services to target multiple energy-sector organizations, harvest user credentials, take over corporate inboxes, and then send hundreds of phishing…

itsecuritynews.info•1 janvier 1970

🇬🇧 → 🇫🇷

Analysis of Single Sign On (SSO) abuse on FortiOS

Fortinet is proactively communicating to customers regarding a recently distributed PSIRT advisory (FG-IR-25-647) that the Fortinet Product Security team had internally discovered during a code audit and offered detailed mitigation…

itsecuritynews.info•1 janvier 1970

Personnalisez votre veille

Articles similaires

Cybercriminals Target Cloud File-Sharing Services to Access Corporate Data

Proxyware Malware Disguised as Notepad++ Tool Leverages Windows Explorer Process to Hijack Systems

What the Alien Franchise Taught Me About Cybersecurity

Google to Pay $8.25M Settlement Over Child Data Tracking in Play Store

I scan, you scan, we all scan for… knowledge?

New Osiris Ransomware Emerges as New Strain Using POORTRY Driver in BYOVD Attack

Crims compromised energy firms’ Microsoft accounts, sent 600 phishing emails

Analysis of Single Sign On (SSO) abuse on FortiOS