Goupil

Release 146.0.7680.65.1 · GrapheneOS/Vanadium Changes in version 146.0.7680.65.1: revert upstream change triggering memory corruption caught by hardware memory tagging on GrapheneOS A full list of changes from the previous release (version 1...

Vanadium version 146.0.7680.65.1 released:

github.com/GrapheneOS/V...

See the linked release notes for a summary of the improvements over the previous release and a link to the full changelog.

Forum discussion thread:

discuss.grapheneos.org/d/32895-vana...

#GrapheneOS #privacy #security

Adminsys dans son habitat naturel se reposant entre deux alertes.

LIVE FROM TAIPEI, IT'S REAL WORLD CRYPTO!

#realworldcrypto

Microsoft Broke the Only Thing That Actually Mattered - Yanko Design Any tech nerd knows the unspoken contract that comes with being the only tech-literate person in the family. You get texts when someone's laptop is slow, called over during the holidays to fix the rou...

www.yankodesign.com/2026/03/08/m...

Qui veut la peau de la lanceuse d'alerte ? - Regarder le documentaire complet | ARTE Lourdement sanctionnée pour avoir dénoncé de potentiels détournements de fonds publics, Houria Aouimeur, reconnue par plusieurs instances comme lanceuse d'alerte, s'est heurtée à un mur judiciaire. Re...

Sanctionnée pour avoir dénoncé de potentiels détournements de fonds publics, Houria Aouimeur, reconnue comme lanceuse d'alerte, s'est heurtée à un mur judiciaire ⤵️

APT36: A Nightmare of Vibeware Pakistan-based threat actor APT36, also known as Transparent Tribe, has pivoted from off-the-shelf malware to vibeware, an AI-driven development model.

Pakistan's main APT group has switched from off-the-shelf low quality malware tools to vibe-coded custom malware

businessinsights.bitdefender.com/apt36-nightm...

⚠️ Ciblage de téléphones Apple 📱 ⚠️

Le CERT-FR a connaissance de notifications envoyées par Apple le 26 février 2026 à des utilisateurs ciblés par des logiciels espions. Si vous en avez été destinataire, contactez le CERT-FR au plus vite ⤵️
cert.ssi.gouv.fr/cti/CERTFR-2...

Vim 9.2 Debuts Full Wayland and XDG Base Directory Support Vim 9.2 now supports Wayland and the XDG Base Directory, and brings improvements to diff mode, fuzzy completion, and scripting features.

linuxiac.com/vim-9-2-debu...
Vim is going strong

June 2023: a Google data center in France floods and they call it a “water intrusion event”

February 2026: an Amazon data center in the Middle East is literally struck by a fucking ballistic missile in a hot war and they call it “impacted by objects”

https://health.aws.amazon.com/health/status

MBSE - NoLimitSecu Episode #533 consacré à la cybersécurité appliquée à la modélisation des systèmes, ou Model-Based Systems Engineering (MBSE) Avec Alice Santin

#Podcast #Cybersécurité

Épisode #533 consacré à l'ingénierie système basée sur les modèles, ou Model-Based Systems Engineering (MBSE), avec Alice Santin

www.nolimitsecu.fr/mbse/

Dans son dernier bulletin d'actualité, le CERT-FR revient sur certaines vulnérabilités significatives de la semaine dernière.
https://www.cert.ssi.gouv.fr/actualite/CERTFR-2026-ACT-009/

North Korea’s APT37 Expands Toolkit to Breach Air-Gapped Networks The security researchers from Zscaler ThreatLabz have also discovered five new tools deployed by the North Korean hacking group

North Korea’s APT37 Expands Toolkit to Breach Air-Gapped Networks - Infosecurity Magazine www.infosecurity-magazine.com/news/north-k...

⚠️ Alerte CERT-FR ⚠️

Mise à jour de l'alerte CERTFR-2026-ALE-002 concernant Cisco Catalyst SD-WAN.
Le CERT-FR recommande des actions d'investigation.

www.cert.ssi.gouv.fr/alerte/CERTF...

⚠️ Vulnérabilité Cisco Catalyst SD-WAN.

📢 Le CERT-FR a publié un bulletin d'alerte concernant la vulnérabilité activement exploitée CVE-2026-20127, affectant Cisco Catalyst SD-WAN.

➡️ + d'infos sur le site du CERT-FR : www.cert.ssi.gouv.fr/alerte/CERTF...

Depuis les années 90 l'atlas de la CIA(le World Factbook) était accessible sur le web. L'actuelle administration US l'a supprimé. Ce beau projet en restaure l'historique et met les données brutes à disposition
github.com/MilkMp/CIA-W...

Exclusive: US orders diplomats to fight data sovereignty initiatives President Donald Trump's administration has ordered U.S. diplomats to lobby against attempts to regulate U.S. tech companies' handling of foreigners' data, saying in an internal diplomatic cable seen ...

www.reuters.com/sustainabili...

GitLab Threat Intelligence Team reveals North Korean tradecraft Gain threat intelligence about North Korea’s Contagious Interview and fake IT worker campaigns and learn how GitLab disrupted their operations.

GitLab's security team has published a "year in review" report on how North Korean hackers abused its services for Contagious Interview campaigns

about.gitlab.com/blog/gitlab-...

Bonjour,
L'audience de l'examen de l'affaire dite de l'IMSI catcher va bientôt reprendre au tribunal judiciaire de Paris. Thread👇.

Matrix messaging gaining ground in government IT FOSDEM 2026: One-to-one and group messaging, encrypted VoIP calls, video conferencing – the open protocol handles them all

www.theregister.com/2026/02/09/m...

ce qui conduit souvent à la sécurité totale, par l'absence de système informatique fonctionnel

Le procès de l'affaire de l'IMSI Catcher va bientôt débuter devant le tribunal judiciaire de Paris, vous pourrez suivre une partie des débats dans ce live-skeet.

Western Digital has recently announced that it sold all of the year's hard-drive inventory to AI companies.

In other words, prepare for huge SSD price surges.

wccftech.com/western-digi...

Babylon 5 Is Now Free to Watch On YouTube | Cord Cutters News In a move that has delighted fans of classic science fiction, Warner Bros. Discovery has begun uploading full episodes of the iconic series Babylon 5 to YouTube, providing free access to the show just...

cordcuttersnews.com/babylon-5-is...
If you have not seen Babylon 5, you should.

If you have, you know you have to watch it again.

Hitting the jackpot William Gibson's disturbingly plausible 21st-century slow disaster

doomsdaymachines.net/p/hitting-th...
A few thoughts about the jackpot and systemic disasters

Ransomware crews abuse bossware to blend into networks : As if snooping on your workers wasn't bad enough

Your supervisor may like using employee monitoring apps to keep tabs on you, but crims like the snooping software even more. Threat actors are now using legit bossware to blend into corporate networks and attempt ransomware deployment.

HT: @huntress.com security operations analyst Michael Tigges

Sleeper Shells: How Attackers Are Planting Dormant Backdoors in Ivanti EPMM A February 2026 campaign used a internal JSP path and in-memory Java class loaders to quietly seed persistent access across Ivanti EPMM deployments - then walked away. We break down the tradecraft.

Security firm Defused has spotted a coordinated campaign from an initial access broker that is targeting the recent Ivanti EPMM zero-days

defusedcyber.com/ivanti-epmm-...

Dans son dernier bulletin d'actualité, le CERT-FR revient sur certaines vulnérabilités significatives de la semaine dernière.
https://www.cert.ssi.gouv.fr/actualite/CERTFR-2026-ACT-006/

the strongest encryption is just noise Modern encryption standards really aren’t too bad to understand!

the strongest encryption is just noise

open.substack.com/pub/laurieki...

GrapheneOS releases Official releases of GrapheneOS, a security and privacy focused mobile OS with Android app compatibility.

GrapheneOS version 2026020600 released:

grapheneos.org/releases#202...

See the linked release notes for a summary of the improvements over the previous release.

Forum discussion thread:

discuss.grapheneos.org/d/31639-grap...

#GrapheneOS #privacy #security

We have started to report webshells (or other artifacts) found on Ivanti EPMM devices, likely compromised via CVE-2026-1281. 56 IPs found on 2026-02-06

Data in shadowserver.org/what-we-do/n...

Tree Map view: dashboard.shadowserver.org/statistics/c...

Thank you to the KSA NCA for the heads up!