Voici le rapport de veille de la semaine faisant le tour des actualités les plus intéressantes. Vous retrouverez un développement de certaines d’entre elles dans les prochains articles. Bonne lecture et belle semaine à vous !
Vol / perte de données
Breach at Indian Airline Affects 1.2 Million Passengers
Privately-owned Indian airline SpiceJet suffers large-scale data breach
Avast acknowledges collecting user data; shuts down Jumpshot
The anti-virus firm Avast has announced shutting down one of its subsidiaries called Jumpshot after the company was found stealing user data.
Cyber-attaques / fraudes
UN hacked, becomes target of massive state-sponsored spying op
The UN was hacked. It suffered a massive cyber attack which is still under investigation. Here’s what happened.
Coronavirus Campaigns Spread Emotet, Malware
The ongoing global spread of the disease precipitates malware infections.
US Interior Dept extends drone grounding over foreign hacking fears
The DOI has doubled down on a previous order, keeping the agency’s drones grounded for another 30 days for a more in-depth security review.
Iranian Hackers Target U.S. Gov. Vendor With Malware
APT34 has been spotted in a malware campaign targeting customers and employees of a company that works closely with U.S. federal agencies, and state and local governments.
Iranian hackers target US government workers in new campaign
New spear-phishing campaign targets government workers disguised as a well-known government survey service.
DOD contractor Electronic Warfare Associates hit with Ryuk ransomware
Electronic Warfare Associates has been hit with the Ryuk ransomware strain, according to company CEO Carl Guerreri, who spoke with CyberScoop Thursday.
Japanese company NEC confirms 2016 security breach
NEC needed seven months to discover the hack, did not disclose it publicly.
Le malware Shlayer n’en finit plus de faire des dégâts chez les utilisateurs macOS
Le logiciel malveillant cible particulièrement le système d’exploitation d’Apple.
Bouygues Construction victime d’un rançongiciel, une enquête judiciaire ouverte
Bouygues Construction a été victime d'une rançongiciel. Le groupe français de BTP a arrêté les systèmes d'information pour éviter toute…-Cybersécurité
Failles / vulnérabilités
Webex flaw allowed anyone to join private online meetings – no password required
Cisco, the makers of Webex, had warned users of the online conferencing service that a vulnerability allowed unauthorised remote users to listen in on private online meetings – without having to enter…
Google’s bug bounty program just had a record-breaking year of payouts
The tech giant’s bug bounty program is alive and well, and it is only getting bigger.
Réglementaire / juridique
Berlin’s high court should rebuild computer system after Emotet infection, report finds
The court handles criminal and terrorism cases with sensitive witness lists.
UK High Court Approves Freezing Injunction on $1M Ransomware Payment
The UK High Court of Justice approved a freezing injunction on over $1 million paid by an English insurance company to ransomware actors.
AIG must cover client’s $5.9 million in cyber-related losses, judge rules
AIG had cited multiple clauses in its policy to argue against paying, though the court ruled the tactic did not count as « bad faith. »
Divers
Tech4Trust awards four cybersecurity startups
Tech4Trust is a 4-month acceleration program for companies developing innovative solutions to improve trust within information technologies. It is the first step of a broader, high impact initiative led by Canton de Vaud, academic institutions and leading corporations to promote and connect all actors active in digital trust and cybersecurity, at national level.
SwissID pourra servir à se connecter au dossier électronique du patient
Les services de Health Info Net, qui proposent notamment une identité numérique certifiée pour l’accès par les professionnels de la santé au dossier électronique du patient, peuvent désormais être utilisés avec SwissID, suite à un partenariat avec Swisssign.
Avast ferme sa filiale qui était accusée de vendre des données
Après la publication d’une enquête l’accusant de vendre des données d’utilisateurs, Avast annonce la fermeture de la filiale qui était concernée.
1 commentaire
Commentaires désactivés.