Ce tutoriel sur l'investigation numérique sous Windows explique comment retrouver des traces en analysant le fichier Amcache.hve, notamment avec AmcacheParser.

Le post Forensic Windows – Partie 2 : comment trouver des traces avec Amcache ? a été publié sur IT-Connect.

Cybersecurity researchers are warning of two cybercrime groups that are carrying out "rapid, high-impact attacks" operating almost within the confines of SaaS environments, while leaving minimal traces of their actions. The clusters, Cordial Spider (aka BlackFile, CL-CRI-1116, O-UNC-045, and UNC6671) and Snarky Spider (aka O-UNC-025 and UNC6661), have been attributed to high-speed data theft and

Cybersecurity researchers have disclosed details of a new China-aligned espionage campaign targeting government and defense sectors across South, East, and Southeast Asia, along with one European government belonging to NATO. Trend Micro has attributed the activity to a threat activity cluster it tracks under the temporary designation SHADOW-EARTH-053. The adversarial collective is assessed to

The managed security services market is projected to grow from $38.31 billion in 2025 to $69.16 billion by 2030[1], with cybersecurity being the fastest-growing sector[2]. Despite this opportunity, many MSPs leave revenue on the table because their go-to-market strategy fails to connect technical expertise with business needs. This execution gap is where most deals stall. MSPs often focus on

The U.S. Department of Justice (DoJ) on Thursday announced the sentencing of two cybersecurity professionals to four years each in prison for their role in facilitating BlackCat ransomware attacks in 2023. Ryan Goldberg, 40, of Georgia, and Kevin Martin, 36, of Texas, were accused of deploying the ransomware against multiple victims located throughout the U.S. between April and December 2023.

A new software supply chain attack campaign has been observed using sleeper packages as a conduit to subsequently push malicious payloads that enabled credential theft, GitHub Actions tampering, and SSH persistence. The activity has been attributed to the GitHub account "BufferZoneCorp," which has published a set of repositories that are associated with malicious Ruby gems and Go modules. As of

Warnings about helpdesk impersonation scams and Iran-linked hackers targeting critical sectors in the US, plus the most damaging scams of 2025 - here's some of what made the headlines this month

Raw threat intel isn't enough without real-world context. Criminal IP has partnered with Securonix to integrate exposure-based intelligence into ThreatQ, automating analysis and speeding up investigations. [...]

Microsoft has fixed a known issue causing newly introduced Windows security warnings to display incorrectly when opening Remote Desktop (.rdp) files. [...]

Microsoft has updated a Windows 11 in-box app removal policy introduced in October to include a dynamic list that lets IT admins choose which preinstalled Store apps to uninstall. [...]

Microsoft has released the KB5083631 optional cumulative update for Windows 11, which includes 34 changes, such as a new Xbox mode for Windows PCs, enhanced security and performance for batch files, and performance improvements for launching startup apps. [...]

Two former employees of cybersecurity incident response companies Sygnia and DigitalMint were sentenced to four years in prison each for targeting U.S. companies in BlackCat (ALPHV) ransomware attacks. [...]

Le port USB-C désormais obligatoire sur les PC : excellente nouvelle !

💾

Direction le Labo Fnac avec Lionel Costa, pour vous aider à choisir la meilleure enceinte nomade Bluetooth. On en profite pour faire un point sur les nouveautés de ce printemps 2026.

💾

Chaque semaine, De Quoi J'Me Mail ouvre le débat sur l'actu high-tech ! En compagnie de journalistes, mais aussi de personnalités spécialistes du numérique, nous analysons, décortiquons les grandes tendances du moment. Ce vendredi, nous commentons l'actu tech avec Nicolas Guyot, rédacteur en chef de clubic.com, et Olivier Frigara, fondateur du podcast "On refait le Mac".

Au programme :  

- Les fuites sont de plus en plus nombreuses et précises... L'iPhone Fold (ou Ultra) est dans les tuyaux, on fait le point

- Les Galaxy Glasses, les premières lunettes connectées de Samsung, arrivent

- Open AI travaillerait sur un smartphone révolutionnaire, boosté à l'IA

- De nouveaux capteurs d'images pourraient arriver dans nos objets connectés

💾

Chaque semaine, De Quoi J'Me Mail ouvre le débat sur l'actu high-tech ! En compagnie de journalistes, mais aussi de personnalités spécialistes du numérique, nous analysons, décortiquons les grandes tendances du moment. Ce vendredi, nous commentons l'actu tech avec Nicolas Guyot, rédacteur en chef de clubic.com, et Olivier Frigara, fondateur du podcast "On refait le Mac".

Au programme :  

- Les fuites sont de plus en plus nombreuses et précises... L'iPhone Fold (ou Ultra) est dans les tuyaux, on fait le point

- Les Galaxy Glasses, les premières lunettes connectées de Samsung, arrivent

- Open AI travaillerait sur un smartphone révolutionnaire, boosté à l'IA

- De nouveaux capteurs d'images pourraient arriver dans nos objets connectés

- Direction le Labo Fnac avec Lionel Costa, pour vous aider à choisir la meilleure enceinte nomade Bluetooth : on en profite pour faire un point sur les nouveautés de ce printemps 2026

💾

Un agent IA a vrillé et en 9 secondes, il a supprimé la base de données de production utilisée par PocketOS. Est-il le seul coupable ? Pas vraiment.

Le post En 9 secondes, cet agent IA a détruit la base de prod de PocketOS a été publié sur IT-Connect.

Ce tutoriel explique comment installer et utiliser WinBoat pour exécuter des applications Windows sur Linux, notamment Microsoft Office (Word, Excel, etc.).

Le post WinBoat : un outil pour lancer les applications Windows sur Linux a été publié sur IT-Connect.

Starting in mid-April 2026, Microsoft allows you to upgrade Windows Server 2019 and Windows Server 2022 directly to Windows Server 2025 through Windows Update — no installation media (ISO file or DVD) required. The process is called an in-place upgrade, meaning your installed applications, settings, and server roles remain unchanged while only the operating system version changes. This article covers the prerequisites, the exact registry change you need to make, the step-by-step procedure for both the graphical desktop and the text-only Server Core installation, and the important cases where you must not use this method.

Source