Une faille récemment découverte dans Apex One de Trend Micro permet aux pirates d'injecter du code malveillant. Cette vulnérabilité zéro-day fait l'objet d'une exploitation active.
La faille touche les utilisateurs du produit de sécurité Apex One de Trend Micro. Des pirates ont commencé à l'utiliser pour mener des attaques dans des scénarios réels.
Rapporté par l'IA Image générée par IA
A critical Linux vulnerability known as CopyFail, tracked as CVE-2026-31431, allows attackers to gain root access on systems running kernels since 2017. Publicly released exploit code has heightened risks for data centers and personal devices. Ubuntu's infrastructure has been offline for over a day due to a DDoS attack, hampering security communications.
Google published proof-of-concept exploit code on Wednesday for a vulnerability in its Chromium browser that has gone unfixed for 29 months. The flaw affects Chrome, Microsoft Edge, and other Chromium-based browsers used by millions worldwide. It enables attackers to establish persistent connections for monitoring user activity and launching attacks.
Rapporté par l'IA
A newly published zero-day exploit allows attackers with physical access to bypass BitLocker encryption on Windows 11 devices in seconds. The attack, named YellowKey, targets the default TPM-only configuration and grants full access to encrypted drives via a simple USB-based method.
A security researcher has disclosed Dirty Frag, a new Linux kernel exploit that allows local users to gain root privileges. The flaw affects major distributions and remains unpatched on most systems despite earlier fixes for a similar issue.
Rapporté par l'IA
A vulnerability in outdated PolyScope software from Universal Robots could let hackers remotely take over factory robots. The flaw impacts thousands of industrial systems worldwide. The issue was highlighted in a report published on May 25, 2026.