Voici le rapport de veille de la semaine faisant le tour des actualités les plus intéressantes. Vous retrouverez un développement de certaines d’entre elles dans les prochains articles. Bonne lecture et belle semaine à vous !
Vol / perte de données
Database with 271 million Wattpad accounts leaked on hacker forum
Wattpad database has been published on an English and Russian speaking hacker forum. Here’s what actually happened.
142 million MGM customers’ data sold on dark web marketplace
The hacker has put up for sale around 142, 479, 937 records on sale on a prominent dark web marketplace for $2,939.
Records of 45 million+ travelers to Thailand and Malaysia surfaced in the darkweb
Experts from Cyble discovered a the availability on the darkweb of records of over 45 million travelers to Thailand and Malaysia from multiple countries.
Iranian cyberspies leave training videos exposed online
Cyber-security firm IBM X-Force finds video recordings used to train Iranian state hackers.
Iran-linked hackers steal sensitive data from US Navy member, researchers say
The server appears to belong to a hacking outfit that IBM calls ITG18, and which overlaps with groups known as Charming Kitten and Phosphorous.
Millions of Logins from UK Ticket Site for Sale on Dark Web
KELA discovers 4.8 million records on underground site
Millions of LiveAuctioneers passwords offered for sale following data breach
Researchers claim to have found evidence that cybercriminals are offering for sale a database containing the personal details of 3.4 million users of an online art and antiques auction website…
Citrix allegedly hacked exposing database with 2000,000 users
In March 2019, about 6 TB of data from Citrix was hacked by an Iranian group. Now, a hacker is selling its database.
Cyber-attaques / fraudes
Twitter accounts of Elon Musk, Bill Gates and others hijacked to promote crypto scam
The verified accounts for Gates, Musk and Apple issued tweets promoting a cryptocurrency scam, asking followers to send money to a blockchain address.
Cyber-attaque : que s’est-il vraiment passé cette nuit sur Twitter ?
La série de piratages de comptes Twitter influents dévoile ses premières pistes d’explications. Un salarié du réseau social aurait contribué à la cyber-attaque.
Russia Is Trying to Hack COVID-19 Vaccine Development
The U.S., U.K., and Canada say the same hackers who targeted the Democratic party during the 2016 election are now trying to « hinder » the fight against COVID-19
Diebold Nixdorf warns of a new class of ATM ‘black box’ attacks across Europe
New ATM black box (jackpotting) attacks have been spotted in Belgium.
New Android Malware Now Steals Passwords For Non-Banking Apps Too
Hackers are spreading a new modified Android banking malware app that targets not only baking apps but also steals credentials for social networking, dating, cryptocurrency, and other non-financial apps.
Report: CIA runs secret cyberwar with little oversight after Trump gave the OK, say US government officials
Details start to emerge on real-world impact of Prez-signed secret memo
Hacker breaches security firm in act of revenge
Hacker claims to have stolen more than 8,200 databases from a security firm’s data leak monitoring service.
Failles / vulnérabilités
FBI Issues Cybersecurity Warning to Air Travelers
Cleverly faked airport websites prompt FBI to issue warning to travelers
PoC exploits released for SAP Recon vulnerabilities, patch now!
Just two days after SAP released patches for a critical NetWeaver AS JAVA remote code execution vulnerability, proof-of-concept (PoC) exploits have been released, and active scans are underway to exploit devices.
Réglementaire / juridique
L’UE sabre le Privacy Shield, l’accord qui autorisait le transfert des données vers les Etats-Unis
Le juge européen estime que l'accord qui autorisait le transfert de données personnelles européennes aux Etats-Unis n'est pas valide. Le…-Données personnelles
LinkedIn Hacker Finally Found Guilty
Yevgeniy Nikulin has waited years for his day in court
Divers
Fitbit, Google Assistant, Alexa… L’UE se penche sur les pratiques anticoncurrentielles des assistants et objets connectés
La Commission européenne va enquêter sur les pratiques antitrust dans le secteur de l'IoT qui brasse des quantités gigantesques de données,…-Objets connectés
UK Bans Deployment of Huawei Technology Over Security Fears
Huawei equipment to be removed completely from Britain’s 5G network by 2027
US Army Seeks Cryptocurrency Tracing Tools
US Army interested in acquiring cryptocurrency tracing tools for its cybercrime team
1 commentaire
Commentaires désactivés.