HarfangLab

After the launch of our EPP, innovations continue at HarfangLab, and we now present you with release 4.1 and its new features! 👀 ➡️ Among other things, you'll be able to discover our new AI-powered personal assistant KIO, short for Know-It-Owl 🦉 Click below for more details and this month's other new features 👇 #Cybersecurity

Rapports sur l’état de la menace #cyber et sur les tendances en matière de délais d’exploitation, découverte d’une vulnérabilité macOS qui permet de contourner les contrôles de confidentialité dans Safari, lancement de la plateforme Cyber4Tomorrow… Les actus #cybersécurité de la semaine:

🚀 Live from it-sa – Home of IT Security ! Christian Fritz from our dear partner IKARUS Security Software GmbH and Grégoire Germain are ready to introduce you to our exclusive and innovative partnership to provide a European endpoint Security ! Come now to our booth 7A-206 to know more about it and enjoy a glass of wine and pretzels ! 🦉The price draw to win the lego owl has just been done... watch your emails !!

👨💻 How did we switch from #Python to #Rust, and why? Beyond optimizing RAM and CPU consumption, how does this language reduce the risk of errors and improve security? 🧐 Let's take a close look at how our EDR works, the challenges we faced - performance and security first and foremost - and the reasons that led us to choose Rust rather than Go or C/C++. 💥 The result is 3x less RAM and 3x less CPU used on endpoints when we switched from Python to Rust, for equivalent functionality... which enabled us to continue implementing new features without impacting endpoints performance. Full story and details 👉 https://lnkd.in/e34xG-td #Cybersecurity #Tech

Decipher executable files is a big challenge for #AI that we’re working to meet!  Indeed, AI only feeds on numerical data. On the other hand, following an alert, #cybersecurity analysts need to understand its origin and investigate to understand the context and the nature of the potential threat. So, the challenge for an EDR stands in extracting maximum information from detected executable files. To find out as much as possible about the nature of the files that have generated an alert, our teams rely on disassembly.  What is disassembly? Why is it a challenge, and why taking it up should give access to even more information to analyze a #cyber threat? Let’s find out 👀⬇️ #Tech #Dev

🚀Throw back to our first Channel SE event that happened yesterday in the heart of Paris. 🤝An occasion for us to gather our MSSP ecosystem, to share technical details and updates about our solutions as well as organisational presentations from Léna Jakubowicz Rémi Pointel Catherine Oudot Pierre-Louis Mauratille 🔬We also had the chance to welcome our head of cyber threat research Pierre Delcher who introduced some of his latest research about disinformation campaigns targeting Europe #Doppelgänger 🧀🍷🇫🇷 As we always like to combine business with pleasure, it was also a very good occasion to spend some quality time with our dear partners with sharing some wine & cheese, and (re)discover what France is really good at: security and gastronomy. 🏅And what would be life without a little challenge? Congrats to the winners of our security quizz Arnaud BOISMAIN-SABLAIROLES Théophile Ledésert Simon Vasseur Thanks to all of our partners who came and shared this insightful and delightful event with us. We are really excited about those partnership and what comes next. Together, we are up to great things. AISI - Expert Cybersécurité, Infrastructure & Gouvernance aktea CAPFI HEXANET Orange Cyberdefense Onepoint SFR Business Tersedia Thales Sysdream Uneat IMS Networks APIXIT

Etude sur les comportements des employés français : entre vigilance et besoin de formation sur la #cybersécurité ; augmentation des campagnes malveillantes visant des plateformes d’#IA conversationnelles ; violation de systèmes air-gapped ; adoption par l’Australie de la première loi autonome sur la cybersécurité… Les actus #cyber de la semaine ! ⤵️

🔎 In early October, our EDR blocked a "Lumma" stealer malware deployment attempt from the malicious "HijackLoader" tool. While this stealer infection chain is prevalent since mid-September, this one came with a new twist... as the HijackLoader sample we detected was signed by a genuine code-signing certificate! 💡 We went on a hunt, and discovered more signed malware, as well as a bunch of abused code-signing certificates that we helped get revoked. Read more about the associated campaign and our hunting tactics in this new article from our experts: "HijackLoader evolution: abusing genuine signing certificates". 👏 Alice C. Pierre Delcher & Emeric.

Rapports sur les acteurs malveillants Handala et CeranaKeeper, un logiciel malveillant #Linux à l'origine d'une campagne de cryptomining depuis plusieurs années, l’État appelé à renforcer l’accompagnement des collectivités sur leur #cybersécurité... Les actus #Cyber de la semaine :

🚀🦉Et c'est parti pour Les Assises à Monaco, où notre équipe de choc est prête à vous recevoir sur le stand A01 pour parler de vos projets en matière de cybersécurité des terminaux. Une parfaite occasion de nouer de nouveaux partenariats stratégiques, d'échanger avec nos partenaires, clients et pairs, et d'aborder les enjeux du secteur pour les années à venir. Nous sommes ravis d'y retrouver comme tous les ans, nos amis de l'OPEN XDR PLATFORM. 📍Encore une édition qui s'annonce riche ! Retrouvez nous au stand A01, à l'entrée du salon. Et ne manquez pas ce vendredi, à 10h30 l'atelier de notre chercheur Ivan Kwiatkowski sur la désinformation en Europe. Christophe Baroux Frédéric Jubert Florian LE ROUX Clothilde FOURDAIN Catherine Oudot Léna Jakubowicz Noémie Minster Maxime Rameau Bastien PRODHOMME Julie Legay