Implemented in 2021, the Cyber Alert device is triggered in the event of a serious cybersecurity threat. It draws on the expertise of the National Information Systems Security Agency (Anssi) and the Cybermalveillance.gouv.fr platform.
This system comes into action today to alert on critical security vulnerabilities in Microsoft products. No mystery, the alert directly echoes Patch Tuesday in January which was particularly plentiful.
Among the 159 vulnerabilities filled, around ten of them were critical and three vulnerabilities had been the subject of a active exploitation in attacksbefore the patches are actually available. Additionally, public disclosures included five other vulnerabilities.
Act as quickly as possible
The Cyber Alert particularly mentions vulnerabilities in Windows et Microsoft Office. It recommends acting as quickly as possible by updating the equipment concerned with the security patches made available by Microsoft.
« The exploitation of vulnerabilities by a malicious person can allow them to take remote control of the equipment concerned and spy on, steal, or even destroy, confidential information. “, we can read. “ Some of the security vulnerabilities are believed to be actively exploited by cybercriminals against vulnerable systems. »
-Cyber Alert is aimed in particular at businesses, local authorities and associations, to inform them and encourage them to take appropriate protection measures. This does not exempt the general public from also reacting as quickly as possible.
Fairly rare alerts
A Cyber Alert remains relatively rare. There was only two alerts in 2024 for critical security vulnerabilities in Qnap products and Microsoft Outlook. The system was triggered twice in 2023, five times in 2022 and three times in 2021.
Such a system was strengthened in 2023 via an extension to the media to relay alerts. “ During a cyberattack or when a breach is detected, the first few hours are essential to reduce the risk. »
