Impact of Packet Loss and Round-Trip Time on Throughput netbeez.net/blog/packet-lo…

Microsoft warning: This malware creates a 'persistent' backdoor for hackers zdnet.com/article/micros…

ZDI-21-1053: Bypassing Windows Lock Screen halove23.blogspot.com/2021/09/zdi-21…

Linux Page Cache for SRE biriukov.dev/docs/page-cach…

Les pirates épient en continu les secrets des dépôts GitHub lemondeinformatique.fr/actualites/lir…

A Closer Look at NSA/CISA Kubernetes Hardening Guidance kubernetes.io/blog/2021/10/0…

Customer Zero: Elastic's infosec team protects the organisation with Elastic Security elastic.co/elasticon/arch…

gquere/pwn_jenkins: Notes about attacking Jenkins servers github.com/gquere/pwn_jen…

5 start-up françaises lancent une solution souveraine de détection des cybermenaces usine-digitale.fr/article/5-star…

How we rolled out security keys at Twitter blog.twitter.com/engineering/en…

Sysadmin/DevOps/SRE, highway to a massive pauperization of our jobs! blog.kalvad.com/devops-a-paupe…

🚨 S'il n'y avait qu'un seul article à lire sur #Log4Shell... regardez ici : ilearned.eu/log4j.html 1️⃣ Le mieux: maj #log4j vers la version 2.15.0 2️⃣ Sinon: maj de la variable log4j2.formatMsgNoLookups à True 3️⃣ Plus radical: enlever la classe JndiLookup Bon courage à tous !

💡 Votre historique Git est obscure pour vous ? Besoin d'y voir plus clair ? 👉 « Un bon croquis vaut mieux qu'un long discours » 🚀 L'extension "Git Graph" pour VSCode est faite pour : marketplace.visualstudio.com/items?itemName… 👌 Naviguer dans l'historique graphiquement hyper simplement !

😱😱😱 This is worse than ChaosDB for AWS. Orca Security gained access to all AWS resources in all AWS accounts! They accessed the AWS internal CloudFormation service. orca.security/resources/blog… Separately, they did something similar for Glue. orca.security/resources/blog…

VirusTotal hacking - Hackers can access trove of stolen credentials on VirusTotal hackread.com/virustotal-hac…

Releasing our latest project, CVEs! A constantly updated collection of 𝘢𝘭𝘮𝘰𝘴𝘵 every publicly available CVE PoC. 👉 Browse, find a PoC, and test away! 👉 Search for a specific product. 👉 Watch the repo to be notified when new PoCs go public! github.com/trickest/cve

Nouvelle édition de la norme ISO27002, version 2022 medium.com/@btk667/nouvel…

Researchers warn of a new high-risk #vulnerability (CVE-2022-0492) affecting the #Linux kernel's cgroups feature that could potentially be abused to escape a container to execute arbitrary commands on the host. Read details: thehackernews.com/2022/03/new-li… #infosec #cybersecurity

Critical Vulnerability in Microsoft Exchange Server (CERT-EU Security Advisory 2022-015) - media.cert.europa.eu/static/Securit…

LAPSUS$ se paye Okta ? Le fournisseur de services d'authentification Okta enquête sur une probable cyberattaque après la publication de captures d'écran montrant des données internes... #infosec #cybersecurity #threatintelligence reuters.com/technology/aut…