Parce que… c’est l’épisode 0x2FE!
Préambule
Moins bonne qualité sonore parce que je n’ai pas mon équipement standard.
Shameless plug
3 au 5 juin 2026 - SSTIC 202624 et 25 juin 2026 - Troopers26 et 27 juin 2026 - leHACK19 septembre 2026 - Bsides Montréal1 au 3 décembre 2026 - Forum INCYBER - Canada 202624 et 25 février 2027 - SéQCure 2027Notes
IA ou Ghost in the shellTout est dans le codeLinus Torvalds says AI-powered bug hunters have made Linux security mailing list ‘almost entirely unmanageable’Bug bounty businesses bombarded with AI slopAI eyes scanning for bugs create a worrisome Linux security trendLinux kernel flaw opens root-only files to unprivileged usersBrianKrebs: “If AI is truly making it easie…” - Infosec Exchangescore by collisions, patch by panicBoum ou BOMWhat Will Make AI BOMs Real?Operationalising Artificial Intelligence Bills of Materials (AIBOMs) for Verifiable AI Provenance and Lifecycle AssuranceHow to Make AI BOMs Usable in a Modern Security ProgramCtFAutonomous LLM Agents & CTFs: A Second LookRetour sur nsec 2026: le pouls de la communauté sur l’agentic CTFWhere OpenClaw Security Is HeadingHidden Signals Can Hijack AI Voice SystemsWhen Skills Don’t Help: A Negative Result on Procedural Knowledge for Tool-Grounded Agents in Offensive CybersecurityGemini 3.5 deleted 28,745 lines, broke production for 33 minutes, and wrote itself a fake post-mortem claiming credit for the fix : r/BardEven Claude agrees: hole in its sandbox was real and dangerousAgent Security is a Systems ProblemJailbroken Gemini helped Russian-speaking fraudster target MAGA crypto usersAnthropic’s Claude Mythos Preview Uncovers 10,000+ 0-Days in Project GlasswingTrump abruptly cancels EO signing event after top AI firm CEOs declined to goLa guerre, la guerre, c’est pas une raison pour se faire mal!Cable dans l’eau chaudeIran eyes a new source of power deep beneath the Strait of HormuzIran Now Threatens Fees for Subsea Internet Cables in the Strait of HormuzFuel Tank Breaches Expand Scope of Iran’s Cyber OffensiveSouveraineté ou vive le numérique libre!Poland builds its own Signal amid security concernsThe EU Is Going Through a Trump-Fueled Breakup With Big TechSovereign cloud: Thales and Google create a S3NS clone in GermanyPrivacy ou cachez ces informations que je ne saurais voirBrianKrebs: “The Trump Mobile grift keeps g…” - Infosec ExchangeDiscord adds end-to-end encryption to voice and video calls by defaultA Bipartisan Amendment Would End Police License Plate Tracking NationwideWhy the Supreme Court’s Chatrie case could change the meaning of privacy in AmericaTexas AG sues Meta over claims that WhatsApp doesn’t provide end-to-end encryptionI am the lawPluralistic: There’s no such thing as “age verification”You Can Get Some of Your Nudes Removed From the Internet Under a New LawRed ou tout ce qui est briséMother of all leakCISA Admin Leaked AWS GovCloud Keys on GithubSenator presses CISA for answers about alleged GitHub repository leakLawmakers Demand Answers as CISA Tries to Contain Data LeakBitwhat?Get your passwords out of BitWarden while you still canThe Quiet Renovation at BitwardenMicrosoft Releases Mitigation for Windows BitLocker Security Bypass 0-Day VulnerabilityGitHub confirms being hacked by TeamPCP, says customer data unaffectedGoogle Publishes Exploit Code Threatening Millions of Chromium UserLes clés API Google encore en vie même après leur suppressionA hacker group is poisoning open source code at an unprecedented scaleScammers Are Abusing an Internal Microsoft Account to Send Spam LinksBlue ou tout ce qui améliore notre postureMicrosoft disrupts alleged malware-signing operation used by ransomware gangsEurope dismantles VPN service used by cybercriminals to hide ransomware attacksDivers ou parce que j’ai aucune idée où les placerNTSB Wants PDF Removed After It Exposed Final Cockpit Audio From UPS CrashCollaborateurs
Nicolas-Loïc FortinCrédits
Montage par Intrasecure incLocaux réels par Courtyard by Marriott Montreal Midtown
View all episodes
