HarfangLab

How aligned are your ASM and endpoint security tools? If your answer isn’t “perfectly,” this session is for you 👇 Join Allie Mellen from Forrester and Anouck Tellier from HarfangLab on Nov 13 at 4 PM CET to explore how misalignment weakens defense and what CISOs can do about it. 🎟️ Register now to save your spot: https://lnkd.in/etu6t6ix #Forrester #Webinar #ThreatIntelligence

NIS 2: prerequisites, recommendations and tips for relevant entities, Commission to launch Digital Commons EDIC to support sovereign European digital infrastructure and technology, SesameOp malware abuses OpenAI assistants API in attacks, NGate malware enables unauthorized cash withdrawals at ATMs using victims’ payment cards, ransomware attacks now take just 24h with 22% of global victims being European... #Cybersecurity news of the week 🦉 👇

🦉🤝 🐓 HarfangLab intègre la nouvelle promotion de French Tech 2030 ! Nous sommes fiers d’être parmi les 80 champions sélectionnés par La French Tech et identifiés comme stratégiques pour la souveraineté numérique, économique et industrielle de la France. Depuis ses fondements, HarfangLab s’engage pour l’excellence, la transparence et la performance, grâce à des technologies à l’état de l’art, conçues pour aider les organisations à lutter contre toutes les formes de cybermenaces. Chez nous, l’innovation se met au service de l’autonomie stratégique dans un secteur plus critique que jamais : ✨Une plateforme pour sécuriser l’espace de travail incluant #EDR, #EPP et #ASM ✨Un déploiement en cloud, on-premises ou SecNumCloud offrant les mêmes fonctionnalités ✨Des modèles d’IA déployés en propre combinant machine learning et deep learning   🙌🏼 Cette intégration à la promotion 2025 du French Tech 2030 est une reconnaissance de plus de la pertinence de nos choix stratégiques et techniques, et de la qualité de nos solutions. Merci à la mission French Tech pour sa confiance, et félicitations à tous les lauréats !  🏆 Une belle promotion cyber ANOZR WAY Jizô AI CryptoNext Security GLIMPS EVERTRUST GitGuardian KERYS Software iDAKTO Memority Qevlar AI Red Alert Labs Snowpack YesWeHack Plus d'informations sur le programme 👉 https://lnkd.in/ehqzX3G2 Que l’aventure continue🐓🚀 

🛡️ The NIS 2 Directive marks an expansion of #cybersecurity objectives and protection to deal with increasingly malicious and effective #threat actors. #EU Member States are therefore required to strengthen their cooperation and protection mechanisms against threats that increasingly target protected entities. 💁 To help organizations and governments achieve this standard, the European Union Agency for Cybersecurity (ENISA) has published a guide for entities affected by the #NIS2 Directive. 📖 Not everyone has time to browse 170 pages spanning 13 sections, so we’ve done it for you! Here you’ll find examples, validation techniques, and practical advice straight from the official blueprint 👉 https://lnkd.in/eEZ3nnwJ

📰 RudePanda owns IIS servers like it’s 2003, ransomware payments dropped in Q3 2025, the impact of Water Kurita’s (Lumma Stealer) doxxing, Chrome Zero-Day exploitation linked to hacking team spyware... Cybersecurity news of the week 👇 👇 👇

🦉 The first edition of the State of Statecraft (SOS) conference (October, 28) allowed researchers from Europe and overseas to share unique insights on state-sponsored attacks with a vetted audience. Our Cyber Threat Research team took the opportunity to share some recent findings about malicious activities we could attribute to a little-known state-sponsored threat actor, put them in perspective with past operations, and highlighted associated tradecrafts 👉 https://lnkd.in/eA93yYHt We look forward to the 2026 edition of this amazing conference! #Cybersecurity #Cyber #InfoSec

[Webinar] In today’s high-speed threat landscape, even the strongest endpoint security strategy can be derailed, especially when Attack Surface Management ASM tools aren’t aligned. Join us on November 13 at 4 PM CET for an exclusive session featuring: - Allie Mellen, Principal Analyst, Security & Risk at Forrester - Anouck Tellier Chief Security Officer at HarfangLab Register now to secure your spot: https://lnkd.in/eYiyKMYi #CyberSecurity #Forrester #CISO

Extortion and ransomware drive over half of cyberattacks, Qilin Ransomware announced new victims, PassiveNeuron targets high-profile servers to deploy malware, UAC-0057 keeps applying pressure on Ukraine and Poland, Attack Surface Management: Stay one step ahead of threats... Cybersecurity news of the week 🦉 👇 #Cyber #Cybersecurity #Infosec

🚨 Managing your attack surface is crucial for the security of your information system. However, this issue remains a major challenge for security teams. Assets and applications are becoming increasingly numerous, and in the event of an incident, remediation requires significant efforts in terms of resources and organization. From Vulnerability Management to Shadow IT, here's how to monitor your infrastructure through a single interface for complete visibility, anticipation, and response 👉 https://lnkd.in/ep2rrGTn #Cybersecurity #IT #Tech #Cyber

🚨🔎 New CTR investigation published on InsideTheLab. "RudePanda owns IIS servers like it's 2003" 🗓️ Late August and early September 2025, our security product detected the compromises of IIS servers with a previously undocumented malicious module which our CTR team called "HijackServer". ⚙️ Investigating the case, our CTR team discovered variants of the HijackServer module, an extensive operation which infected hundreds of servers around the world, as well as additional and likely associated infrastructure. 🔬While the malicious operators appear to be using Chinese as its main language and leveraging the compromises to support SEO, our CTR team noticed that the deployed module offers a persistent and unauthenticated channel which allow any party to remotely execute commands on affected servers. 👉🏻 Read the full article about these discoveries and the detailed investigations from our CTR Team : https://lnkd.in/enmPtcA4 👏 Pierre Delcher, Ariel Jungheit, Pierre L.