Recent Posts
[Cybersécurité] Feds Disrupt IoT Botnets Behind Huge DDoS Attacks
The U.S. Justice Department joined authorities in Canada and Germany in dismantling the online infrastructure behind four highly disruptive botnets that compromised more than three million hacked Inte
[Cybersécurité] 18-year-old NGINX vulnerability allows DoS, potential RCE
An 18-year-old flaw in the NGINX open-source web server, discovered using an autonomous scanning system, can be exploited for denial of service and, under certain conditions, remote code execution. [.
[Cybersécurité] Windows 11 and Microsoft Edge hacked at Pwn2Own Berlin 2026
On the first day of Pwn2Own Berlin 2026, security researchers collected $523,000 in cash awards after exploiting 24 unique zero-days. […]
[Cybersécurité] Germany Doxes “UNKN,” Head of RU Ransomware Gangs REvil, GandCrab
An elusive hacker who went by the handle « UNKN » and ran the early Russian ransomware groups GandCrab and REvil now has a name and a face. Authorities in Germany say 31-year-old Russian Daniil Maksimov
[Cybersécurité] Cisco warns of new critical SD-WAN flaw exploited in zero-day attacks
Cisco is warning that a critical Catalyst SD-WAN Controller authentication bypass flaw, tracked as CVE-2026-20182, was actively exploited in zero-day attacks that allowed attackers to gain administrat
[Cybersécurité] One Missed Threat Per Week: What 25M Alerts Reveal About Low-Severity Risk
The dark secret of enterprise security operations is that defenders have quietly institutionalized the practice of not looking. This is not just anecdotal, but rather backed by a recent report investi
[Cybersécurité] ThreatsDay Bulletin: Edge Plaintext Passwords, ICS 0-Days, Patch-or-Die Alerts and 25+ New Stories
Bad week.
Turns out the easiest way to get hacked in 2026 is still the same old garbage: shady packages, fake apps, forgotten DNS junk, scam ads, and stolen logins getting dumped into Discord channels
[Cybersécurité] OpenAI confirms security breach in TanStack supply chain attack
OpenAI says two employees’ devices were breached in the recent TanStack supply chain attack that impacted hundreds of npm and PyPI packages, causing the company to rotate code-signing certificates for
[Cybersécurité] PCPJack Credential Stealer Exploits 5 CVEs to Spread Worm-Like Across Cloud Systems
Cybersecurity researchers have disclosed details of a new credential theft framework dubbed PCPJack that targets exposed cloud infrastructure and ousts any artifacts linked to TeamPCP from the environ
[Cybersécurité] Iran-Backed Hackers Claim Wiper Attack on Medtech Firm Stryker
A hacktivist group with links to Iran’s intelligence agencies is claiming responsibility for a data-wiping attack against Stryker, a global medical technology company based in Michigan. News reports o
![[Cybersécurité] Feds Disrupt IoT Botnets Behind Huge DDoS Attacks](https://cyber.kiminox.net/wp-content/uploads/2026/05/cyber-4218-1780643303-100x100.png)
![[Cybersécurité] 18-year-old NGINX vulnerability allows DoS, potential RCE](https://cyber.kiminox.net/wp-content/uploads/2026/05/cyber-4166-1780644867-100x100.png)
![[Cybersécurité] Windows 11 and Microsoft Edge hacked at Pwn2Own Berlin 2026](https://cyber.kiminox.net/wp-content/uploads/2026/05/cyber-4201-1780643553-100x100.png)
![[Cybersécurité] Germany Doxes “UNKN,” Head of RU Ransomware Gangs REvil, GandCrab](https://cyber.kiminox.net/wp-content/uploads/2026/05/cyber-4215-1780645366-100x100.png)
![[Cybersécurité] Cisco warns of new critical SD-WAN flaw exploited in zero-day attacks](https://cyber.kiminox.net/wp-content/uploads/2026/05/cyber-4214-1780647371-100x100.png)
![[Cybersécurité] One Missed Threat Per Week: What 25M Alerts Reveal About Low-Severity Risk](https://cyber.kiminox.net/wp-content/uploads/2026/05/cyber-4213-1780662205-100x100.png)
![[Cybersécurité] ThreatsDay Bulletin: Edge Plaintext Passwords, ICS 0-Days, Patch-or-Die Alerts and 25+ New Stories](https://cyber.kiminox.net/wp-content/uploads/2026/05/cyber-4212-1780664506-100x100.png)
![[Cybersécurité] OpenAI confirms security breach in TanStack supply chain attack](https://cyber.kiminox.net/wp-content/uploads/2026/05/cyber-4211-1780669092-100x100.png)
![[Cybersécurité] PCPJack Credential Stealer Exploits 5 CVEs to Spread Worm-Like Across Cloud Systems](https://cyber.kiminox.net/wp-content/uploads/2026/05/cyber-4210-1780674439-100x100.png)
![[Cybersécurité] Iran-Backed Hackers Claim Wiper Attack on Medtech Firm Stryker](https://cyber.kiminox.net/wp-content/uploads/2026/05/cyber-4209-1780678855-100x100.png)