『RadioCSIRT - Your Cybersecurity update for Wednesday, November 5, 2025 (Ep. 476)』のカバーアート

RadioCSIRT - Your Cybersecurity update for Wednesday, November 5, 2025 (Ep. 476)

RadioCSIRT - Your Cybersecurity update for Wednesday, November 5, 2025 (Ep. 476)

無料で聴く

ポッドキャストの詳細を見る

このコンテンツについて

 Welcome to your daily cybersecurity update 🕵️‍♂️🔥 🌐 ICC — openDesk replaces Microsoft Office The International Criminal Court announces its migration to the open-source suite openDesk, developed under Germany’s ZenDiS initiative. The goal is to strengthen digital sovereignty and reduce dependence on Microsoft solutions. 🐧 Linux — The most critical kernel vulnerabilities of 2025 The Linux kernel faces several critical vulnerabilities this year, including flaws that allow privilege escalation at kernel level. Virtualized and sandboxed systems are particularly at risk, with an urgent recommendation to patch immediately. 🛡️ CISA — Two vulnerabilities added to the KEV catalog The Cybersecurity and Infrastructure Security Agency (CISA) has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, confirming active exploitation. U.S. federal agencies must apply patches without delay — a measure extending to critical infrastructure operators. 📦 cURL — Security policy bypass A major vulnerability affects cURL, enabling security policy bypasses on versions 7.69 through 8.x. CERT-FR recommends upgrading immediately to version 8.17.0 or higher. 🧰 MISP — Multiple vulnerabilities prior to version 2.5.24 Several security flaws — including XSS and policy bypass vulnerabilities — have been fixed in MISP 2.5.24. Unpatched instances may expose sensitive data and compromise data integrity. 🔒 Fortinet Secure Access — Denial of Service (CVE-2025-59595) A critical flaw can cause server crashes through specially crafted packets in specific configurations. The issue is fixed in version 14.12 and later. 📵 United Kingdom — End of call spoofing by 2026 British telecom operators will automatically block caller ID spoofing under the Telecoms Charter. The plan aims to curb fraud and strengthen the traceability of suspicious calls. 💳 Eurojust — 18 arrests in global credit card fraud A coordinated operation across 19 countries has dismantled a criminal network responsible for laundering over €300 million. European authorities identified multiple fraudulent payment gateways used to process illicit funds. ⚡️ Don’t think — just patch! 🚀 📚 Sources: https://goodtech.info/cpi-abandonne-microsoft-opendesk/ https://www.linuxjournal.com/content/most-critical-linux-kernel-breaches-2025-so-far https://www.cisa.gov/news-events/alerts/2025/11/04/cisa-adds-two-known-exploited-vulnerabilities-catalog https://www.cert.ssi.gouv.fr/avis/CERTFR-2025-AVI-0964/ http://cert.ssi.gouv.fr/avis/CERTFR-2025-AVI-0965/ https://cvefeed.io/vuln/detail/CVE-2025-59595 https://www.bleepingcomputer.com/news/security/uk-carriers-to-block-spoofed-phone-numbers-in-fraud-crackdown/ https://www.eurojust.europa.eu/news/eurojust-coordinates-major-operation-against-eur-300-million-global-credit-card-fraud-18 📞 Share your feedback: 📧 radiocsirt@gmail.com 🌐 www.radiocsirt.com 📰 radiocsirtintl.substack.com #CyberSecurity #openDesk #Linux #CISA #cURL #MISP #Fortinet #MISP #TelecomsCharter #Eurojust #CERT #SOC #CTI #RadioCSIRT 🎧🔥
まだレビューはありません