Obtenez 3 mois à 0,99 $/mois + 20 $ de crédit Audible

OFFRE D'UNE DURÉE LIMITÉE
Page de couverture de RadioCSIRT - English Edition

RadioCSIRT - English Edition

RadioCSIRT - English Edition

Auteur(s): Marc Frédéric GOMEZ
Écouter gratuitement

À propos de cet audio

🎙 Marc Frédéric Gomez, cybersecurity expert, brings you daily insights into the latest threats, attacks, and defense strategies you need to know.

🔎 On the agenda:
✔️ Analysis of cyberattacks and critical vulnerabilities
✔️ Strategic intelligence for CSIRTs, CERTs, and cybersecurity professionals
✔️ Sources and references to dive deeper into each topic

💡 Why listen to RadioCSIRT?
🚀 Stay up to date in just a few minutes a day
🛡️ Anticipate threats with reliable, technical information
📢 An essential intelligence source for IT and security professionals

🔗 Listen, share, and secure your environment!
📲 Subscribe and leave a ⭐ rating on your favorite platform!

Marc Frédéric GOMEZ Politique
Épisodes
  • RadioCSIRT - Your Cybersecurity update for Monday, November 17, 2025 (Ep. 489)

    RadioCSIRT - Your Cybersecurity update for Monday, November 17, 2025 (Ep. 489)
    Nov 17 2025
    Welcome to your daily cybersecurity podcast. 🛰️ RoningLoader analysis: new research unveils the stealthy capabilities of RoningLoader, a modular malware loader designed for evasion, payload staging, and long-term persistence across compromised environments. 🛑 Gh0st RAT impersonation campaigns: recent investigations reveal large-scale social-engineering operations delivering Gh0st RAT through impersonated organizations, using spoofed identities and fraudulent communication channels to compromise victims. 🎭 Online radicalisation via gaming platforms: Europol and partner nations report coordinated action against extremist groups exploiting gaming ecosystems for recruitment, covert communication, and distribution of illicit content. 🏢 IBM AIX/VIOS – Critical vulnerability: a newly disclosed high-severity flaw impacts IBM AIX and VIOS systems, enabling attackers to exploit privilege-escalation vectors. Patch guidance has been issued and should be applied promptly. 🐧 Rondodox botnet expansion: threat actors are actively weaponizing an unpatched XWiki RCE vulnerability, expanding the Rondodox botnet with automated exploitation routines targeting internet-facing systems. 📱 Rust adoption improves Android memory-safety posture: new assessments highlight significant reductions in memory-corruption issues within Android components rewritten in Rust, reinforcing the long-term shift toward safer systems languages. 🛍️ Holiday cyber scams warning: national security agencies urge increased vigilance amid a rise in fraudulent shopping campaigns, fake storefronts, phishing operations, and payment-data harvesting schemes targeting consumers ahead of seasonal sales. ⚡️ Don’t think — patch! 🚀 📚 Sources: 🔗 RoningLoader – Elastic Security Labs: https://www.elastic.co/security-labs/roningloader 🔗 Gh0st RAT Impersonation Campaigns – Unit42: https://unit42.paloaltonetworks.com/impersonation-campaigns-deliver-gh0st-rat/ 🔗 Online Radicalisation on Gaming Platforms – Europol: https://www.europol.europa.eu/media-press/newsroom/news/europol-and-partner-countries-combat-online-radicalisation-gaming-platforms 🔗 IBM AIX/VIOS CVE-2025-36250: https://cyberveille.esante.gouv.fr/alertes/ibm-aixvios-cve-2025-36250-2025-11-14 🔗 Rondodox Botnet Expands via XWiki RCE – Security Affairs: https://securityaffairs.com/184702/malware/rondodox-expands-botnet-by-exploiting-xwiki-rce-bug-left-unpatched-since-february-2025.html 🔗 Rust Adoption & Android Memory Safety – The Hacker News: https://thehackernews.com/2025/11/rust-adoption-drives-android-memory.html 🔗 Holiday Shopping Cyber-Scams – NCSC: https://www.ncsc.gov.uk/news/stay-alert-to-holiday-shopping-cyber-scams 📞 Share your feedback: 📧 radiocsirt@gmail.com 🌐 www.radiocsirt.org 📰 radiocsirtintl.substack.com #CyberSecurity #Malware #Gh0stRAT #Europol #IBM #Rondodox #Rust #Android #NCSC #RadioCSIRT 🎧
    Voir plus Voir moins
    14 min
  • RadioCSIRT – Your Cybersecurity Update for Sunday, November 16, 2025 (Ep.488)

    RadioCSIRT – Your Cybersecurity Update for Sunday, November 16, 2025 (Ep.488)
    Nov 16 2025

    Welcome to your daily cybersecurity podcast.

    🛰️ DNS4EU: the European Union continues to advance its sovereign DNS resolver project, designed to reduce dependency on non-EU services. The initiative aims to deliver a secure, privacy-respecting, and resilient DNS infrastructure operated entirely within Europe, with integrated filtering and threat-detection capabilities.

    🛑 Ransomware – Q3 2025 Overview: recent analysis reveals continued growth in ransomware activity, driven by the increasing professionalization of threat groups, industrialized phishing operations, and expanding affiliate networks targeting SMEs, critical infrastructure, and interconnected suppliers.

    🎭 North Korean IT worker schemes: several U.S. nationals have pleaded guilty to acting as intermediaries for North Korean operatives posing as legitimate IT professionals to secure employment in sensitive American companies, bypassing sanctions and screening controls.

    🏢 Cisco Catalyst Center: a newly disclosed critical vulnerability impacts the platform, enabling attackers to obtain privileged access within administrative environments. A security update is available and should be applied without delay in infrastructures dependent on Catalyst Center.

    🐧 Debian: the Debian Project has released new security updates affecting core components and widely deployed packages, with significant implications for server environments and systems relying on sensitive libraries and services.

    ⚡️ Don’t think — patch! 🚀

    📚 Sources:

    🔗 DNS4EU: https://blog.marcfredericgomez.fr/dns4eu-vers-un-dns-europeen-souverain-securise-et-respectueux-de-la-vie-privee/
    🔗 Check Point – State of Ransomware Q3 2025: https://research.checkpoint.com/2025/the-state-of-ransomware-q3-2025/
    🔗 North Korean IT Workers – The Record: https://therecord.media/multiple-us-nationals-guilty-pleas-north-korean-it-worker-scams
    🔗 Cisco Catalyst Center: https://cybersecuritynews.com/cisco-catalyst-center-vulnerability/
    🔗 Debian – Security Updates: https://www.debian.org/News/2025/20251115

    📞 Share your feedback:
    📧 radiocsirt@gmail.com
    🌐 www.radiocsirt.org
    📰 radiocsirtintl.substack.com

    #CyberSecurity #DNS4EU #Ransomware #NorthKorea #Cisco #Debian #RadioCSIRT 🎧🔥
    Voir plus Voir moins
    9 min
  • RadioCSIRT – Your Cybersecurity Update for Saturday, November 15, 2025 (Ep.487)

    RadioCSIRT – Your Cybersecurity Update for Saturday, November 15, 2025 (Ep.487)
    Nov 15 2025

    Bonjour and Welcome to your daily cybersecurity podcast.

    🧩 AMD Zen 5: AMD confirms a critical flaw in the rdseed instruction causing severe entropy reduction, weakening cryptographic material generated on Zen 5 processors prior to microcode updates.

    🛡️ Akira Ransomware: CISA, the FBI, and international partners release major updates on newly observed TTPs and IOCs, highlighting widespread targeting of SMBs and multiple critical infrastructure sectors.

    🌐 FortiWeb: Active exploitation of CVE-2025-64446, a relative path traversal vulnerability enabling administrative command execution through crafted HTTP(S) requests.

    🏨 Fake Travel Platforms: A Russian-speaking threat actor registered over 4,300 domains imitating Booking, Airbnb, Expedia, and Agoda to steal payment card data via a multilingual phishing kit.

    🧬 FormBook Stealer: A new campaign chains weaponized ZIP archives, obfuscated VBS and PowerShell layers, and msiexec.exe injection to deploy an updated variant of the FormBook information stealer.

    💼 Logitech: The company confirms a data breach via exploitation of a third-party zero-day vulnerability, claimed by the Clop extortion group, with nearly 1.8 TB of data allegedly leaked.

    ⚡️ Don’t think — patch! 🚀

    📚 Sources:
    🔗 AMD Zen 5 RNG: https://www.tomshardware.com/pc-components/cpus/amd-confirms-zen-5-rng-flaw-when-random-isnt-random-enough
    🔗 Akira – CISA/FBI: https://www.cisa.gov/news-events/alerts/2025/11/13/cisa-fbi-and-partners-unveil-critical-guidance-protect-against-akira-ransomware-threat
    🔗 FortiWeb CVE-2025-64446: https://www.cisa.gov/news-events/alerts/2025/11/14/fortinet-releases-security-advisory-relative-path-traversal-vulnerability-affecting-fortiweb-products
    🔗 Fake Travel Sites: https://thehackernews.com/2025/11/russian-hackers-create-4300-fake-travel.html
    🔗 FormBook Campaign: https://cybersecuritynews.com/weaponized-zip-archives-and-multi-script-chains-used-to-deploy-formbook-malware
    🔗 Logitech / Clop: https://www.bleepingcomputer.com/news/security/logitech-confirms-data-breach-after-clop-extortion-attack

    📞 Share your feedback:
    📧 radiocsirt@gmail.com
    🌐 www.radiocsirt.org
    📰 radiocsirtintl.substack.com

    #CyberSecurity #AMD #Akira #Fortinet #Phishing #FormBook #Logitech #Clop #Ransomware #Infostealer #RadioCSIRT 🎧🔥
    Voir plus Voir moins
    11 min
Pas encore de commentaire