HarfangLab

🇮🇹 HarfangLab is in Rome for French Security Days. Alongside a delegation of French cybersecurity and defense companies, Anna Gamba and David Dufourcq are representing HarfangLab at Palazzo Farnese, the French Embassy in Rome, for a day of high-level conversations with Italian public and private sector stakeholders. What we're bringing to the table: 🔍 EDR — first ANSSI-qualified EDR + first EDR certified by the German Federal Office for Information Security (BSI). Full endpoint visibility, even in air-gapped environments 🛡️ EPP — proactive threat blocking with next-gen antivirus and embedded firewall 📡 ASM — Attack Surface Management to continuously map and reduce your exposure Need on-premises deployment? Ours remains unmatched — because sovereignty and data confidentiality aren't negotiable. #Cybersecurity #EDR #Sovereignty

🇪🇺 May is a busy month, and we wouldn't have it any other way. This month, HarfangLab is hitting the road across Europe. From Rome to Bilbao, Brussels to Clermont-Ferrand, our teams will be on the ground to talk cybersecurity, sovereignty, and everything in between. Here's where you can find us: 🇮🇹 French Security Days Italy - May 18-19 | French Embassy, Rome 🇱🇺 HackEvent Luxembourg (Main Sponsor) - May 19 | House of Startups, Luxembourg 🇫🇷 RIAMS - May 19-22 | Saint-Tropez 🇧🇪 CyberSec Europe - May 20-21 | Brussels Expo 🇪🇸 ISMS - May 21 | Bilbao 🇫🇷 Auvergn'Hack - May 29-30 | Clermont-Ferrand Five countries. Six events. One month. Whether you're a CISO, an analyst, or just curious about what a truly European EDR looks like, come find us. We'll be the ones asking the hard questions. 👉 Spot your city on the list? Drop us a message or come say hello on site. Lut Jacobs Sander Hofman Tamana Haidari Es Noémie Minster David Dufourcq Anna Gamba Anouck Teiller Grégoire Germain Frédéric Jubert Pierre-Henry Poret #Cybersecurity #EDR #HarfangLab #EuropeanSovereignty

¡Hola España! 🇪🇸♾️ Excited to spend time with the Infinigate Iberia team during last week's celebration of Infinigate Group's 30th anniversary in Madrid. Special shoutout to Reinaldo Rodríguez de Asevedo for the rallying cry. Here's to the future of our #European collaboration 🌍🤝

🔍 New research from our CTR team! We've been tracking Gamaredon (UAC-0010), one of the most persistent Russian threat actors targeting Ukraine, and their abuse of CVE-2025-8088 - a WinRAR path traversal vulnerability. Over 12 waves of spearphishing emails, from September 2025 through May 2026, targeting Ukrainian state institutions: security services, courts, prosecutors, and regional administrations. The attacker abused Cloudflare Workers and quick tunnels for command and control, alongside fast-flux DNS and dynamic DNS resolvers. 📧 Emails sent from compromised government accounts or spoofed through attacker-controlled relays 📦 Weaponized archives exploiting CVE-2025-8088 to silently achieve persistence 🔁 Auto-generated, parameterized malware constantly evolving across waves Our report provides in-depth technical analysis of two key components in Gamaredon's infection chain: - GammaDrop — first-stage downloader - GammaLoad — C2 beacon that profiles the victim and awaits operator-controlled payload delivery Full report with IoCs and detection rules 👉🏻 https://lnkd.in/esT8FdMJ Ariel Jungheit Pierre Delcher Pierre L.

🇱🇺 HarfangLab is proud to be the Main Sponsor of HackEvent Luxembourg by Swiss Post Cybersecurity, and we're bringing more than just a logo. On May 19th, join us at the House of Startups (Big Bang) for a day built for the cybersecurity community. Come and meet our very own Lut Jacobs and Sander Hofman, who will be taking the stage for an exclusive session: 🎤 "Defending against legitimate tools. Living off-the-land, fileless… how can you protect yourself when attackers reuse your own tools?" Attackers don't always bring their own weapons. Increasingly, they use yours. PowerShell, PsExec, built-in OS tools — blending in is the new norm. Sander will break down how to detect and respond to these threats, even when the line between legitimate and malicious gets blurry. If you're in or around Luxembourg, this one is worth your day. 👉 See you at House of Startups on May 19th, starting at 12:45 Nadine Schraner-Wietlisbach #Cybersecurity #HackEvent #LivingOffTheLand

Email threat landscape: Q1 2026 trends and insights, Four published versions of a fake "tanstack" package uploaded in 27mn that want to steal your .env files, Misconfigured server run by hackers leaks 345,000 stolen credit cards, Meet Bluekit: the #AI-powered all-in-one phishing kit, VECT: ransomware by design, wiper by accident.... #Cybersecurity news of the week 👇 🦉 #InfoSec #IT

🚀We are proud to announce that we are part of the new ACTIX project. 🇪🇺 ACTIX (Advanced Cyber Threat Information eXchange) is a new European cybersecurity project focused on advancing how cyber threat intelligence is collected, correlated, and shared across organisations. The project is aimed at strengthening the protection of Europe’s critical infrastructure. 🧠 The project develops an intelligence-driven CTI platform built on open-source technologies, combining AI, big data, and trusted sharing standards to enable real-time threat correlation, enrichment, and response. By connecting security tools, operational environments, and stakeholders, ACTIX aims to turn large volumes of security data into actionable intelligence that can be used across sectors and borders. Proud to contribute to this collaborative effort under the Digital Europe Programme, along leading EU actors Amadeus, NitroAgility, BEWISE, Infotrend Innovations co. LTD and LSEC - Leaders In Security. #CyberThreatIntelligence #CTI #Cybersecurity #OpenSource #AI #SOC #EUProjects Anouck Teiller Matéo Tiberghien Lelia Ataliani Ulrich Seldeslachts Peter Meyer Quentin Lehmann Claudio Costanza, CISSP®, PMP® Nicola Gallo

🎙️ Hors-série le Monde de la Cyber depuis le Forum InCyber 2026 : "Maîtriser nos dépendances numériques" Pour cette édition du Forum INCYBER (FIC), nous avons travaillé avec Leslie Fornero pour l'enregistrement d'un épisode de podcast enregistré en direct du salon. Des invités de choix se sont prêtés à l'exercice : 👤 Guillaume Tissier – Directeur général, Forum INCYBER (FIC) 👤 Yann Bonnet – Directeur adjoint des initiatives politiques, Forum de Paris sur la Paix 👤 Anouck Teiller – Directrice adjointe, HarfangLab 👤 Benjamin Leroux – CMO, Advens On y aborde des réalités concrètes : ➡️ Une menace cyber qui s'intensifie en Europe ➡️ Les véritables risques liés aux dépendances numérique et la nécessité de garder/reprendre le contrôle sur ses données. ➡️ Les freins et les initiatives pour accroitre la résilience cyber européenne : des exemples d'initiatives concrètes (partenariat avec IKARUS Security GmbH ou encore EDP avec Sekoia.io et Infinigate France) ➡️ La performance comme réponse à la dépendance, au paysage des menaces et à la montée des risques liés à l'IA (et les beaux exemples des certifications Federal Office for Information Security (BSI) ou ANSSI - Agence nationale de la sécurité des systèmes d'information) 🚀 Entre vision géopolitique, réalité du terrain et retours d'expérience, cet échange illustre que construire un écosystème cyber européen résilient n'est plus une utopie. C'est un chantier en marche. Merci à Leslie Fornero pour la qualité de ce podcast et pour les 3 jours passés à nos côtés sur le salon ! Merci également à tous les intervenants qui font le sel de cet épisode et le rendent si passionnant ! 🎧 https://lnkd.in/em4Aks8T 🙏🏻 Noémie Minster Anouck Teiller

Fast16 malware targets high-value systems with sabotage capabilities, Microsoft Vibing - capturing screenshots and voice samples without governance, Signal phishing campaign targets Germany’s Bundestag President, 130K sers compromised by StealTok campaign that uses fake TikTok downloaders, Iran-Nexus threat groups refine attacks against critical infrastructure... #Cybersecurity news of the week ⬇️ 🦉 #Cyber #InfoSec #Tech