Voici la sélection des vulnérabilités de cybersécurité le plus critiques découvertes durant ce dernier tour de veille hebdomadaire.
Bonne lecture et merci pour le café car cette veille est produite avec un vrai cerveau non artificiel 😉
US govt offers $10 million bounty for info on Clop ransomware
The U.S. State Department’s Rewards for Justice program announced up to a $10 million bounty yesterday for information linking the Clop ransomware attacks to a foreign government.
Password Reset Hack Exposed in Honda’s E-Commerce Platform, Dealers Data at Risk
Security researcher uncovers major vulnerabilities in Honda’s e-commerce platform, exposing sensitive dealer information.
Chinese Hackers Exploit VMware Zero-Day to Backdoor Windows and Linux Systems
Chinese state-sponsored group UNC3886 exploits a zero-day VMware authentication bypass flaw (CVE-2023-20867) to backdoor Windows, Linux, and PhotonOS.
MOVEit Transfer developer patches more critical flaws after security audit
A third-party audit reveals new MOVEit vulnerabilities, for which Progress Software has issued patches.