Voici le rapport de veille de la semaine faisant le tour des actualités les plus intéressantes. Certaines d’entre elles seront développées dans les prochains articles. Bonne lecture et merci pour le café 😉
Vol / perte de données
Nearly 100,000 NPM Users’ Credentials Stolen in GitHub OAuth Breach
GitHub shares more details about the recent OAuth token breach, revealing that the attacker gained access to the credentials of nearly 100k NPM users.
Personal Data of Tens of Millions of Russians and Ukrainians Exposed Online
The trove of data was leaked due to a misconfigured ElasticSearch server which contained « millions of logs of personal data. »
142 Million MGM Resorts Records Leaked on Telegram for Free Download
According to the hacker who published the data on Telegram, there are 142,479,938 (over 142 million) records in the leak dating back to 2017.
Cyberattack on General Motors exposes customer data
US automobile behemoth General Motors (GM) has confirmed that it suffered a credential stuffing attack last month. GM said that it detected malicious login a
Cyberattaques / fraudes
Conti Ransomware Gang Shutdown, Conti ransomware rebranding 2022
Conti ransomware gang shutdown. Learn about why the Conti ransomware gang disbanded and members’ new affiliations.
Ransomware attack grounds flights at India’s SpiceJet
Incident comes a week after ‘SAP glitch’ kept some planes on the taxiway
Ransomware demands acts of kindness to get your files back
Rather than demand thousands of pounds worth of cryptocurrency, the GoodWill ransomware wants you to do something good for the world
Guerre en Ukraine : la Russie sous le feu des cyberattaques
Depuis le début de son invasion de l’Ukraine, il y a trois mois, la Russie est la cible de nombreuses représailles numériques, qui ont fait redescendre de son piédestal ce pays réputé en matière de cybersécurité.
Derrière le piratage d’e-mails de militants pro-Brexit, un groupe de hackeurs russes
Google a attribué à un groupe de pirates russes le piratage et la publication récente d’e-mails de cadres du mouvement pro-Brexit.
Pro-Russian Hackers Hit Critical Government Websites in Italy
Hacker group Killnet has targeted approximately 50 Italian institutions, including the council of judiciary
Russian hackers perform reconnaissance against Austria, Estonia
In a new reconnaissance campaign, the Russian state-sponsored hacking group Turla was observed targeting the Austrian Economic Chamber, a NATO platform, and the Baltic Defense College.
Microsoft warns of new highly evasive web skimming campaigns
Threat actors behind web skimming campaigns are using malicious JavaScript to mimic Google Analytics and Meta Pixel scripts to avoid detection.
Failles / vulnérabilités
Messages Sent Through Zoom Can Expose People to Cyber-Attack
Videoconferencing platform, Zoom, has experienced several vulnerabilities in its software.
Data on ransomware attacks is ‘fragmented and incomplete’, warns Senate report
The US government must clean up ransomware reporting and data collection if it wants to devise adequate policy responses.
Tesla cars, Bluetooth locks, vulnerable to hackers, researchers say
Millions of digital locks worldwide, including on Tesla cars, can be remotely unlocked by hackers exploiting a vulnerability in Bluetooth technology, a cybersecurity firm said on Tuesday.
Justice / police / réglementation
INTERPOL hauls in alleged Nigerian cybercrime ringleader
The group is believed to have hit more than 50,000 victims.
Clearview AI fined £7.5m for harvesting data
Clearview AI has been fined by the UK’s Information Commissioner’s Office (ICO) for breaking UK data protection laws. The £7.5m fine is a huge reduction fro
Regulators slam Twitter with $150M fine over using consumer security data for advertising
The practice violates federal law and a 2011 order from the FTC, which alleged Twitter’s failure to safeguard user data led to two breaches.
Suisse
Après l’Armée, au tour des policiers suisses d’utiliser Threema
Les forces de police suisses vont utiliser l’app de messagerie Threema. La Conférence des commandants des polices cantonales a attribué un contrat à la solution helvétique dans le cadre d’une procédure de gré à gré. Threema va remplacer une solution signée Abraxas.
Le Préposé fédéral suspend la suppression des données de Mesvaccins.ch
Les données de la plateforme Mesvaccins.ch ne seront vraisemblablement pas supprimées. En collaboration avec les autorités sanitaires, le Département de santé et des affaires sociales du canton d’Argovie tente de sauver les données des utilisateurs de la plateforme. Le Préposé fédéral à la protection des données et à la transparence (PFPDT) soutient cette démarche.
Divers
Democrats press Google to overhaul data location practices to protect abortion-seekers
« Google cannot allow its online advertising-focused digital infrastructure to be weaponized against women, » the lawmakers write.
Italy announced its National Cybersecurity Strategy 2022/26
Italy announced its National Cybersecurity Strategy, a crucial document to address cyber threats and increase the resilience of the country.
Verizon Report: Ransomware, Human Error Among Top Security Risks
2022’s DBIR also highlighted the far-reaching impact of supply-chain breaches and how organizations and their employees are the reasons why incidents occur.
