Here are our latest publications and interventions in the field of cybersecurity:
- Security advisory: CVE-2022-23334 - Ip-label Ekara Newtest - Local privilege escalation
- MISC N°119: The attack of the HITAG 2 cards in practice
- Security Advisory: Sage FRP 1000 - Directory Transversal
- Security advisory: Multiple vulnerabilities - XoruX
- Security Advisory: CVE-2021- 42112 - LimeSurvey - Stored Cross Site Scripting
- Security advisory: CVE-2021-33807 - Gespage - Directory Traversal
- Security advisory: Multiple vulnerabilities - Invigo ADM
- ISO 27001 Guide: How to make RGPD rhyme with security?
- Security Advisory: CVE-2020-3973 - VMware SD-WAN by VeloCloud - SQL Injection
- Security advisory: CVE-2019-0262 - WebIntelligence BILaunchPad - Cross-Site Scripting
- Conference: GS Days 2019 - Data theft and ransomware: why and how to negotiate with a hacker?
- Conference: Club 27001 - eBIOS RM, which assets for ISO 27001?
- Conference: GS Days 2018 - RETEX on RGPD compliance missions
- Security Advisory: CVE-2018-6384 - NSClient++ - Local elevation of privileges
- Security advisory: CVE-2017-16789 - nJAMS3 - Cross-site scripting
- Conference: Club 27001 - round table animation "Feedback from certification auditors
- Conference: JSSI 2016 - Feedback on 10 years of security auditing
- Conference: 27001 Club - moderated roundtable discussion "How are you implementing ISO 27x?"
- Press: Global Security Mag n°34 - Cyber Security review in 2015 and forecasts for 2016