Une nouvelle vulnérabilité #0day découverte dans l'authentification NLA (Network Level Authentication) de Microsoft Windows RDP permet à un attaquant de contourner l'écran de verrouillage sur des sessions distantes. kb.cert.org/vuls/id/576688/

#OpenCTI – La nouvelle plateforme de l’ANSSI, co-développée avec le CERT-EU, pour structurer, traiter et partager les connaissances en matière d’analyse de la menace #CTI L’outil est à votre disposition en #Opensource dès maintenant ! 🆕ssi.gouv.fr/actualite/open…

Jeune expert(e) en cyber sécurité motivé(e) pour nous rejoindre ? Nous contacter par DM. L’équipe Orange-CERT-CC.

As promised, amcache analysis v2 is out, you can find it here: ssi.gouv.fr/en/publication… Thread for what's new: #DFIR #DFIRSummit

#COVID19 - we can count on our network and teams working on the front line to ensure continuity of service. orange.com/en/news/2020/M…

We are back after a short break. Thanks to Lina Buenaventura (She/Her/Ella) 💻📲🕹 and Chloé ⚡ from @TwitterFrance for their support 👍

Congratulations to CERT Orange Polska for their brilliant report !

Vous êtes expert.e en cyber sécurité et motivé.e pour nous rejoindre ? orange.jobs/jobs/offer.do?…

Are you a T-ISAC or #GSMA member who wants to see how we share #telco related #cyber threat indicators? Attend this virtual MISP (Malware Information Sharing Platform) training event in collaboration with CIRCL - @[email protected] to find out this and more 👉 gsma.at/2AU7CAB

Great initiative for those looking for Security Advisories / Bulletins linked to Log4Shell (CVE-2021-44228)

#OPERA1ER has been seen targeting companies across in 15 countries: Ivory Coast, Mali, Burkina Faso, Benin, Cameroon, Bangladesh, Gabon, Niger, Nigeria, Paraguay, Senegal, Sierra Leone, Uganda, Togo, Argentina: bit.ly/3FKbS4H

Threat actors are constantly developing new TTPs and in August 2022, with the help of Przemyslaw Skowron, Group-IB identified some new servers used by #OPERA1ER. The latest IOCs and OPERA1ER’s targets can be found in this blog post: bit.ly/3h6EKKn

Thanks to all teams involved in this investigation 👍 credits in the report.

En collaboration avec Orange-CERT-CC, Group-IB a publié le rapport #threatreport "#OPERA1ER. Ceux qui jouent à Dieu sans y avoir été autorisés". Le rapport se penche sur les modes opératoires de cet acteur de la menace francophone. Téléchargement➡️group-ib.com/resources/rese…

We are happy to announce the publication of the new version of the IRMs (Incident Response Methodologies) resulting from the work of CERT SocieteGenerale with the collaboration of CERT Advens. Feel free to use it! github.com/certsocietegen… #IncidentResponse #CyberSecurity #DFIR

Advens The 18 sheets are available in English and French. All existing IRMs including #ransomware or #phishing have been updated and several new ones have been created such as IRM-18 for Large Scale Compromise.

🤝 Group-IB has assisted in the INTERPOL-led Operation Nervone, aimed at successfully disrupting the operations of the cybercriminal syndicate #OPERA1ER in French-speaking Africa. More details: bit.ly/3NHlU9j INTERPOL INTERPOL_Cyber

INTERPOL - Suspected key figure of notorious cybercrime group arrested in joint operation interpol.int/News-and-Event…

At BotConf in Nice, together with Orange Cyberdefense, we're diving deep into the operations of the infamous French-speaking threat actor OPERA1ER (NXSMS), who've stolen over $11 million since 2019 across 30 targeted #cyberattacks. Join us at BotConf eu1.hubs.ly/H08K0_80

Great work from Orange experts on this case. Thanks Hugo 🙏