Kevin Poireault

London

Reporter at Infosecurity Magazine

Tech reporter @InfosecurityMag • @coupecircuit_ | 🌍⚽🥊

Featured in: Favicon

infosecurity-magazine.com Favicon

rfi.fr

lesinrocks.com Favicon

usinenouvelle.com Favicon

usine-digitale.fr Favicon

jeuneafrique.com Favicon

newsbreak.com Favicon

theafricareport.com Favicon

sifted.eu

msn.com + 2 more

Articles

French Authorities Arrest Four Hackers Tied to Notorious BreachForums

2 days ago | infosecurity-magazine.com | Kevin Poireault

Four hackers in their 20s have been arrested in France for their suspected involvement in the notorious dark web forum BreachForums. In an official statement on June 25, Laure Beccuau, a State Prosecutor, revealed that the four hackers were arrested on June 23 by the Paris Police Prefecture's Cybercrime Unit, or Brigade de lutte contre la cybercriminalité (BL2C).
Hackers Use Open-Source Tools to Attack Financial Businesses in Africa

2 days ago | infosecurity-magazine.com | Kevin Poireault

Unit 42, the research team at Palo Alto Networks, has identified a new malicious campaign targeting many financial organizations across Africa. The attackers, tracked as CL-CRI-1014, have been actively targeting the African financial sector since at least 2023. The Unit 42 researchers assessed that they act as initial access brokers (IABs), gaining initial access to their targets and then selling it to others on the dark web.
Microsoft Flaw Still Exposes SaaS Apps Two Years After Discovery

3 days ago | infosecurity-magazine.com | Kevin Poireault

A critical vulnerability in Microsoft’s Entra ID still exposes a wide range of enterprise applications two years after it was discovered. Semperis, an identity security provider, shared new findings on this threat on June 25 at the TROOPERS25 conference in Heidelberg, Germany. The report showed that at least 15,000 software-as-a-service (SaaS) applications are likely vulnerable to nOAuth, a severe authentication flaw in Microsoft’s Entra ID that can lead to account takeovers and data exfiltration.
Common Good Cyber Fund Launched to Support Non-Profit Security Efforts

3 days ago | infosecurity-magazine.com | James Coker |Kevin Poireault

A Common Good Cyber Fund has been launched, designed to support the work of non-profits organizations that deliver core cybersecurity services for the wider public good. The fund has been established by Common Good Cyber, a global initiative set up to implement models for sustaining groups, organizations and individuals involved in critical cybersecurity functions for the broader Internet community.
Lessons from Helsinki: NCSC-FI's Role in Mitigating a Major Data Breac

3 days ago | infosecurity-magazine.com | Kevin Poireault

A 2024 data breach affecting Helsinki, Finland’s capital and largest employer, which exposed sensitive personal data of over 300,000 people, offers valuable lessons for cybersecurity professionals. The incident was the subject of a year-long investigation by the Safety Investigation Authority of Finland (SIAF/OTKES), which published its technical report on June 17, 2025.
Cyber Intel Pros and Hobbyists Can Now Report Threats Anonymously

4 days ago | infosecurity-magazine.com | Kevin Poireault

Imagine a world in which any cybersecurity professional, or even a cyber hobbyist or whistleblower, could report a new cluster of malicious cyber activity anonymously, without having to go through lengthy and formal cyber reporting disclosure processes.
Meta To Introduce Full Passkey Support for Facebook on Mobiles

1 week ago | infosecurity-magazine.com | Kevin Poireault

Meta is set to allow Facebook and Messenger users to use passkeys as a login option on mobile devices. The tech giant announced on June 18 that it was rolling out passkeys for the Facebook app on iOS and Android and will soon do the same for the Messenger app. As an alternative to passwords, passkeys allow users to log in to websites and apps securely using fingerprints, face recognition or a PIN code.
Russia Expert Falls Prey to Elite Hackers Disguised as US Officials

1 week ago | infosecurity-magazine.com | Kevin Poireault

Keir Giles, a British expert on Russian information operations, has been targeted by a sophisticated spear phishing attack using novel social engineering techniques. The writer and senior consulting fellow at the UK think tank Chatham House was lured into sending app-specific passwords to someone impersonating a US State Department employee. The Google Threat Intelligence Group (GTIG) investigated the case in collaboration with the Citizen Lab.
Researchers Warn of AI Attacks After PoC Exploits Atlassian's AI Agent

1 week ago | infosecurity-magazine.com | Kevin Poireault

AI Agents hold great promise for IT ticketing services, but they also bring with them new risks. Researchers from Cato Networks have revealed that a new AI agent protocol released by Atlassian, a service desk solutions provider, could allow an attacker to submit a malicious support ticket through Jira Service Management (JSM) with a prompt injection. This proof-of-concept (PoC) attack conducted out by Cato’s team has been dubbed a ‘Living off AI’ attack.
UK ICO Fines 23andMe £2.3m for Data Protection Failings

1 week ago | infosecurity-magazine.com | Phil Muncaster |Kevin Poireault

Embattled genetic testing company 23andMe has been fined £2.3m ($3.1m) by the UK’s privacy regulator for failing to protect customers’ special category data following a 2023 cyber-attack. The company, which has filed for Chapter 11 bankruptcy in the US, revealed in October 2023 that customers had their profile information accessed by threat actors following a credential stuffing campaign.