Le tour des actus cybersécurité

Offrez un café pour soutenir cette veille indépendante.

Voici le rapport de veille de la semaine faisant le tour des actualités les plus intéressantes. Certaines d’entre elles seront développées dans les prochains articles. Bonne lecture et merci pour le café 😉

Vol / perte de données

Les armées du Chili, du Mexique, du Salvador, du Pérou et de Colombie ont subi un gigantesque piratage informatique
Un groupe de hackeurs s’est emparé de 10 téraoctets de données, incluant des millions d’e-mails, des informations confidentielles détaillant des opérations militaires et des contrats, ensuite divulgués à la presse.

Optus confirms 2.1 million ID numbers exposed in data breach
Optus confirmed yesterday that 2.1 million customers had government identification numbers compromised during a cyberattack last month.

Telstra discloses data breach impacting former and current employees
Bad news for the Australian telecommunications industry, the largest company in the country Telstra Telecom suffered a data breach.

Hackers Leak 500 GB of Data Stolen From Los Angeles School District
The data dump reportedly includes sensitive identifying information like social security numbers, as well as passport, and tax form details.

Finnish intelligence warns of Russia’s cyberespionage activities
The Finnish Security Intelligence Service (SUPO) warns Russia will highly likely intensify its cyber activity over the winter.

Cyberattaques / fraudes

Hacker stole $566M worth of Binance Coins from Binance Bridge
Threat actors have stolen 2 million Binance Coins (BNB), worth $566 million, from the popular Binance Bridge.

Russian Hackers Shut Down US State Government Websites
Russian-speaking cyberattackers boast they are behind disruption of Colorado, Kentucky, and Mississippi government websites.

Gare au backdoor caché dans un logo Windows – Le Monde Informatique
Intrusion, Hacking et Pare-feu : Le cybergang Witchetty a étoffé l’arsenal de sa backdoor LookBack avec une technique stéganographique. Le but ? Camoufler une charge utile dans un…

Le constructeur automobile Ferrari piraté
Gestion des cookies We use cookies on our website to give you the most relevant experience by remembering your preferences and repeat visits. By clicking « Accept », you consent to the use of ALL the cookies.

Failles / vulnérabilités

Facebook warns 1 million users about apps trying to compromise accounts
Facebook identified 400 apps across the Google Play and Apple App store that posed as harmless lifestyle and business services to dupe users.

Ikea Smart Light System Flaw Lets Attackers Turn Bulbs on Full Blast
With just one malformed Zigbee frame, attackers could take over certain Ikea smart lightbulbs, leaving users unable to turn the lights down.

Justice / police / réglementation

Former Uber CSO convicted of covering up megabreach back in 2016
Obstructed FTC proceedings, and concealed a crime, said the jury.

Australian Teen Accused of Using Leaked Data to Blackmail Telecom Customers
The 19-year-old allegedly sent text messages demanding payment of $2,000 into a bank account.

German police identified a gang that stole €4M via phishing attacks
German police arrested one individual suspected of having stolen €4 million from users via large-scale phishing campaigns.

Meta Law Suit Against Chinese Devs Over WhatsApp Malware Plot
Earlier today, WhatsApp parent company Meta announced that they are suing three Chinese developers for allegedly tricking users into downloading fake versions of the app that harvested their login details.

Biden’s Privacy Shield 2.0 order unlikely to satisfy EU
Also, Albania almost called in NATO over cyber attacks, and Facebook warns of account-stealing mobile apps

Australia moots changes to privacy laws after Optus data breach
Government is revising regulations to allow telcos to temporarily share some of their customers’ personal information, such as driver’s licence and passport numbers, with financial services institutions to facilitate monitoring and remediation in the event of a data breach.

NIS 2 – die neue Cyber-Security-Richtlinie der EU im Überblick
Die EU will mit NIS 2 die Cyber-Resilienz erhöhen. Lesen Sie im InfoGuard Cyber Security Blog, weshalb NIS 2 auch für Schweizer Unternehmen relevant ist.

Canadian Sentenced 20 Years in US Prison For Ransomware Attacks
Sebastien Vachon-Desjardins, 35, was also ordered to forfeit $21.5m

Suisse

https://www.ictjournal.ch/news/2022-10-06/la-confederation-sommee-dagir-pour-renforcer-la-cybersecurite-de-son-administration

Divers

Cyber-assurance : entre mobilisation et critique – Le Monde Informatique
Audit – Conseil : Plusieurs grandes entreprises ont décidé de créer leur propre assurance pour couvrir les cyber-risques. Dans le même temps, les membres du Cesin ont…

FBI and CISA Publish Advisory on Malicious Cyber Activity Against Election Infrastructure
Threat actors trying to compromise elections are unlikely to result in large-scale disruptions

💡 Ne manquez plus l'essentiel
Recevez les analyses et tendances cybersécurité directement dans votre boîte mail.

💡 Note : Certaines images ou extraits présents dans cet article proviennent de sources externes citées à des fins d’illustration ou de veille. Ce site est indépendant et à but non lucratif. 👉 En savoir plus sur notre cadre d’utilisation.

Vous appréciez ces analyses ?
Soutenez DCOD en offrant un café ☕

💡 Ne manquez plus l’essentiel

Les derniers articles

Toutes les catégories

Le tour des actus cybersécurité | 9 oct 2022

Vol / perte de données

Cyberattaques / fraudes

Failles / vulnérabilités

Justice / police / réglementation

Suisse

Divers

Etiquettes

1 commentaire

Des idées de lecture cybersécurité