La veille cyber-sécurité (sem 12 juin 2022)

Voici le rapport de veille de la semaine faisant le tour des actualités les plus intéressantes. Certaines d’entre elles seront développées dans les prochains articles. Bonne lecture et merci pour le café 😉

Vol / perte de données

MyEasyDocs Exposed 30GB of Israeli and Indian Students PII Data
MyEasyDocs is a Chennai, India based online documents verification platform whose Microsoft Azure server exposed data of over 57,000 students.

Cyberattaques / fraudes

Lockbit gang claims to have hacked cybersecurity giant Mandiant
LockBit ransomware gang claims to have hacked the cybersecurity firm Mandiant, which is investigating the alleged security breach.

This hacking group quietly spied on their targets for 10 years
Hackers crafted social lures and used a fake removable device to trick targets into installing malware.

This new Linux malware is ‘almost impossible’ to detect
Symbiote is parasitic malware that provides rootkit-level functionality.

Ukrainian Officials’ Phones Targeted by Russian Hackers
On Monday, a senior cybersecurity official said that the phones of Ukrainian officials had been targeted by hackers as Russia pursues its invasion of Ukraine.

Dark web sites selling alleged Western weapons sent to Ukraine
Several weapon marketplaces on the dark web have listed military-grade firearms allegedly coming from Western countries that sent them to support the Ukrainian army in its fight against the Russian invaders.

Russian Ministry Website Hacked to Display « Glory To Ukraine » Message
A group called « DumpForums » hacked the website of Russian Ministry of Construction, Housing and Utilities to display « Glory to Ukraine » message.

Italian Municipality of Palermo Suffers Cyberattack
On Friday the municipality of Palermo, Italy, suffered a cyberattack. The attack appears to have had an impact on multiple services and operations to both citiz

Iranian hackers target energy sector with new DNS backdoor
The Iranian Lycaeum APT hacking group uses a new .NET-based DNS backdoor to conduct attacks on companies in the energy and telecommunication sectors.

Failles / vulnérabilités

Dark web sites selling alleged Western weapons sent to Ukraine
Several weapon marketplaces on the dark web have listed military-grade firearms allegedly coming from Western countries that sent them to support the Ukrainian army in its fight against the Russian invaders.

Emotet malware gang shifts to stealing credit cards
Crimeware groups are re-inventing themselves

Justice / police / réglementation

https://www.europol.europa.eu/media-press/newsroom/news/takedown-of-sms-based-flubot-spyware-infecting-android-phones

FBI Seizes ‘SSNDOB’ ID Theft Service for Selling Personal Info of 24 Million People
FBI seizes SSNDOB online marketplace known for selling personal information such as credit card numbers, and Social Security numbers.

Spanish court calls CEO of Israel’s NSO to testify in spying case
Spain’s High Court on Tuesday called the chief executive officer of Israel’s software firm NSO Group to testify as a witness in a case opened over the use of its Pegasus software to spy on Spanish politicians.

FBI warning: This gang steals data for ransom, then makes harassing phone calls to pile on the pressure
FBI, CISA and others issue warning over Karakurt Team, which steals data, demands ransom in Bitcoin for not publishing it.

Twitter pays $150M fine for using two-factor login details to target ads
Twitter targeted ads with phone numbers and emails collected for security purposes.

Mandiant: « No evidence » we were hacked by LockBit ransomware
American cybersecurity firm Mandiant is investigating LockBit ransomware gang’s claims that they hacked the company’s network and stole data.

Suisse

Lancement de l’Institut national de test pour la cybersécurité
L’Institut national de test pour la cybersécurité (NTC) annonce son lancement officiel, avec le soutien du canton de Zoug. Cette structure sans but lucratif a pour objectif de vérifier la fiabilité et la sécurité des produits connectés et des applications numériques.

Divers

Russia: Cyber-Attacks Could Escalate Military Conflict
Kremlin warns of « direct clash » if Western attacks continue

Darknet : le célèbre supermarché illégal AlphaBay ressurgit au premier plan
Démantelée en 2017, la plus grosse place de marché illégale de tous les temps refait surface et retrouve la première place du podium. Mais à une moindre échelle.

💡 Ne manquez plus l'essentiel
Recevez les analyses et tendances cybersécurité directement dans votre boîte mail.

💡 Note : Certaines images ou extraits présents dans cet article proviennent de sources externes citées à des fins d’illustration ou de veille. Ce site est indépendant et à but non lucratif. 👉 En savoir plus sur notre cadre d’utilisation.

Offrez un café pour soutenir cette veille indépendante.

☕ Je soutiens DCOD

Vous appréciez ces analyses ?
Soutenez DCOD en offrant un café ☕

💡 Ne manquez plus l’essentiel

Les derniers articles

Toutes les catégories