META VULNERABLE
An article published by LE MONDE provides striking information: hackers managed to take control of other users’ Instagram accounts by exploiting a security flaw in a Meta support bot. The hackers simply asked the AI-powered support bot to change the email addresses linked to these accounts, even though they were not the owners. The chatbot carried out the request.
THE CYBERSPACE CHANGES
New threat : “EDR killer”, a software which can disable the endpoint detection and response that the organization uses to protect its endpoints in order to quietly launch a ransomware attack, and to encrypt the data.
MYTHOS: ANTHROPIC is said to be talking with the EU Agency ENISA, to include it in the range of organizations which test the vulnerability discovery system. Is this good news for European cybersecurity software experts ?
CONSOLIDATION IN THE USA: PALO ALTO ACQUIRES PORTKEY
Portkey specializes in AI Gateways. These “AI gateways” provide a critical layer of control for businesses deploying autonomous AI agents, that is, systems capable of acting and making decisions without human intervention. Increasing autonomy which can trigger some major problems, such as the risks of unauthorized actions, the inadvertent exposure of sensitive data, or cost overruns related to uncontrolled token consumption. Portkey addresses these challenges by acting as a central nervous system for all AI traffic. Its architecture IS specifically designed to secure large-scale AI deployments, allowing processing of trillions of tokens with minimal latency
ENCRYPTION: THE FRENCH AGENCY ANSSI RECOMMENDS STARTING NOW, AT LEAST FOR MORE IMPORTANT ASSETS
The analysis translates the quantum threat into risks with potentially critical consequences. First, retroactive decryption targets confidentiality. An attacker, most often state-sponsored, collects encrypted data today to decrypt it when the time comes. When this targets long term secret files, the impact will be huge. Then there are integrity and authentication. The forgery of signed documents would allow the production of false notarial acts, contracts, or administrative documents, and the subsequent contestation of records, undermining chains of evidence whose validity spans decades. The takeover of long-lifecycle equipment concerns embedded systems, satellites, space probes, and industrial systems, whose authentication mechanisms remain fixed for decades and whose compromise would be long-lasting and irreversible.
All these risks point at the necessity to engage the transition now. ANSSI recommends to start by listing concerned informational assets, then establish priorities. It’s also an activity which the ECA will push.
THE COST OF CYBER ATTACKS
According to a survey by the French Association for the Management of Business Risks and Insurance, the most costly attacks over 2025 have occurred in the UK, with Marks & Spencer (415 M€), Jaguar Land Rover (rescued by the UK government), Co-op (238 M€). In Germany, RheinMetall attack’s impact is evaluated at some 8,5 M€. In France, the crisis have been more located in mid-size companies. However, as mentioned by Arnaud Martin, operational risks director at CDC Group, while the number of reported incidents decrease, their financial impact is getting bigger, and, even more conspicuous, the budgets allocated to cybersecurity seem to tend to decrease…
