Marc-Frédéric Gomez
@marcfredericgo
🎙 Founder & Host of RadioCSIRT – daily cybersecurity podcast french & English | Head of CERT | CTI & DFIR enthusiast | #BlueTeam | Views my own | he/him
Was dir gefallen könnte
RadioCSIRT – Votre actu cybersécurité du Samedi 6 décembre 2025 (Ép.508) Bienvenue sur votre podcast quotidien consacré à la cybersécurité. Pour écouter l'épisode: radiocsirt.org/podcast/votre-… L'agence australienne de cybersécurité publie un nouveau guide pour l'intégration…
RadioCSIRT English Edition – Your Cybersecurity Update for Saturday, 6 December 2025 (Ep.42) Welcome to your daily cybersecurity briefing. Listen to the full show here: radiocsirt.com/podcast/your-c… The Australian Cyber Security Centre has released new guidance for critical…
RadioCSIRT English Edition – Cybersecurity Update – Friday 5 December 2025 (Ep.41) Key highlights from today’s briefing: 1️⃣ Cloudflare global outage The widespread disruption experienced today was caused by an emergency patch deployed to address the critical “React2Shell”…
🔴 RadioCSIRT – Actu Cyber du Vendredi 5 Décembre 2025 (Ép.507) 📷Leçon brutale : même quand on réagit ultra-vite face à une 0-day activement exploitée, un patch précipité peut casser tout le CDN mondial. La sécurité rapide n’est pas toujours la sécurité propre. CISA ajoute…
☠️Google drops emergency Chrome patch (13 vulns, 4 High) Star of the show → CVE-2025-13633 (use-after-free in Digital Credentials) If the renderer is already pwned → heap corruption city. Translation: update Chrome NOW or become someone’s botnet zombie. malwarebytes.com/blog/news/2025…
New public tool dropped 👀 “CVE-2025-55182 Surface Scanner” (Python) Passively fingerprints exposed React Server Components (Next.js / React 19) that speak RSC payload → pre-req for the RCE chain everyone’s whispering about. No exploit, just loud reconnaissance. Red & Blue…
FIRST Foundation’s A4 program is quietly making national CSIRTs dangerous (in a good way). Latest wins: Bahamas, Cameroon, Malawi, Trinidad & Tobago now turn raw IOCs into surgical response. Global ransomware SIG integration = chefs kiss More information:…
first.org
Building Resilience Through Reporting"
Building Resilience Through Reporting"
🎙️RadioCSIRT English #40 – Ep.40 | 4 Dec 2025 🇷🇺Russia bans FaceTime + Snapchat (“terrorist tools”). WhatsApp probably next. 💻Chrome emergency patch → CVE-2025-13633 (UAF → heap corruption) 🛠️New RSC surface scanner for Next.js RCE chain Patch or perish.…
🔴 Alerte Cyber & Tech :Le régulateur russe coupe l'accès à FaceTime et Snapchat. Pendant ce temps, Chrome corrige 4 failles critiques – mettez à jour vos navigateurs ! Au menu aussi : comment le FIRST transforme les CSIRT grâce au projet A4, et découverte d'un nouveau scanner…
🚀 Sponsorship opportunities are now available for the 2026 Paris FIRST Technical Colloquium! Support a member-led CTI and incident response forum, connect with local cybersecurity pros, & secure guaranteed seats at this 100-person event. Learn more: first.org/events/colloqu…
Critical Next.js vulnerability just disclosed (GHSA-9qr9-h5gf-34mp) Every React full-stack dev → check your versions RIGHT NOW → github.com/vercel/next.js…
CERT-FR drops major Python DoS alert Remote attackers can kill your Python runtime with one packet Every backend, web app, automation script at risk Update your Python runtime TODAY → cert.ssi.gouv.fr/avis/CERTFR-20…
CISA adds TWO Android Framework flaws to KEV catalog Privilege escalation + info disclosure → actively exploited in the wild Federal agencies & mobile fleet managers: PATCH NOW → cisa.gov/news-events/al…
Full 5-minute audio breakdown → RadioCSIRT English Ep.39 Listen here: radiocsirt.com/podcast/your-c… Reply with the number (1-5) of the alert that scares you most ↓ Daily FREE threat briefings → follow @marcfredericgo so you never miss one #DFIR #ThreatIntel #AppSec
Microsoft silently mitigates Windows LNK zero-day (CVE-2025-9491) State-sponsored groups were using it New “fix” only reveals hidden whitespace… doesn’t fully block execution Still letting users double-click .lnk files? → bleepingcomputer.com/news/microsoft…
DeepSeek V3.2 → fully MIT-licensed, outperforms GPT-5 on reasoning New “Sparse Attention” architecture = insane efficiency Open-source AI just changed forever Open-source AI just changed forever → github.com/deepseek-ai/De…
5 CRITICAL cyber alerts dropping TODAY – patch or regret it DeepSeek just killed GPT-5 with an open-source beast Android flaws added to CISA KEV (already exploited) Python DoS everywhere Silent Windows LNK zero-day fix Next.js critical vuln Which one scares you most? ↓…
RadioCSIRT English Edition – Your Cybersecurity Update for Tuesday, 2 December 2025 (Ep.38) Welcome to your daily cybersecurity briefing. Raspberry Pi Raises Prices Amid Rising Production Costs Raspberry Pi has announced a price increase across several models, citing sustained…
United States Trends
- 1. Ty Simpson 3,277 posts
- 2. Texas Tech 28.1K posts
- 3. Messi 255K posts
- 4. Georgia 47K posts
- 5. #SECChampionship 2,769 posts
- 6. Inter Miami 83.8K posts
- 7. Ryan Williams 1,476 posts
- 8. Harry Ford 1,882 posts
- 9. Dawgs 9,497 posts
- 10. MLS Cup 79.3K posts
- 11. Slot 134K posts
- 12. Mariners 4,116 posts
- 13. Grubb 1,166 posts
- 14. Ferrer 3,865 posts
- 15. Big 12 3,173 posts
- 16. Kirby 12.9K posts
- 17. Busquets 22.1K posts
- 18. Gunner 6,388 posts
- 19. #RollTide 2,200 posts
- 20. Polar 16K posts
Was dir gefallen könnte
-
newsoft
@newsoft -
Julien Mongenet -- @tuxpanik.bsky.social
@tuxpanik -
Raphaël Vinot - @[email protected]
@rafi0t -
V
@mynameisv_ -
Nicolas Caproni
@ncaproni -
Michael
@respssi -
Intrinsec
@Intrinsec -
galadrim
@g4l4drim -
LE BERRE Stéfan
@Heurs -
Samuel Hassine
@SamuelHassine -
Hydraze / @[email protected]
@Hydraze -
HS2 (Hervé Schauer Sécurité)
@HS2formation -
Christophe Brocas
@cbrocas -
Loïs Samain🌐
@lsamain -
Guillaume PRIGENT
@g0ul4g
Something went wrong.
Something went wrong.