Voici le rapport de veille de la semaine faisant le tour des actualités les plus intéressantes. Certaines d’entre elles seront développées dans les prochains articles. Bonne lecture et merci pour le café 😉
Vol / perte de données
Health system data breach due to Meta Pixel hits 3 million patients
Advocate Aurora Health (AAH), a 26-hospital healthcare system in the states of Wisconsin and Illinois, is notifying its patients of an unintentional data breach that impacts 3,000,000 individuals.
Microsoft Exposed 2.4 TB of Business Customer Data in BlueBleed Breach
BlueBleed – The leaked files were dated from 2017 to August 2022 and involved several misconfigured cloud storage buckets.
Hackers Threaten to Release Medical Info of High-Profile Australians
The hackers claim to have 200 gigabytes of data stolen from Medibank health insurance company.
EnergyAustralia Electricity company discloses security breach
Electricity company EnergyAustralia suffered a security breach, threat actors had access to information on 323 customers
Cyberattaques / fraudes
Ransomware attack halts circulation of some German newspapers
German newspaper ‘Heilbronn Stimme’ published today’s 28-page issue in e-paper form after a Friday ransomware attack crippled its printing systems.
BlackByte ransomware uses new data theft tool for double-extortion
A BlackByte ransomware affiliate is using a new custom data stealing tool called ‘ExByte’ to steal data from compromised Windows devices quickly.
Chinese Hackers Targeting Online Casinos with GamePlayerFramework Malware
Chinese Hackers Targeting Online Casinos with GamePlayerFramework Malware | Read more hacking news on The Hacker News cybersecurity news website and learn how to protect against cyberattacks and software vulnerabilities.
Pro-Russia Hackers DDoS Bulgarian Government
Killnet reportedly claims responsibility once again
Failles / vulnérabilités
When cops hack back: Dutch police fleece DEADBOLT criminals (legally!)
Crooks: Show us the money! Cops: How about you show us the decryption keys first?
Microsoft avoue avoir négligé la sécurité de millions de PC sous Windows pendant des années
Le système de protection de Windows censé bloquer les pilotes obsolètes et potentiellement malveillants ne fonctionnait pas laissant des millions de machines ouvertes aux malwares.
Justice / police / réglementation
Clearview AI gets third €20 million fine for illegal data collection
France’s data protection authority (CNIL) has fined Clearview AI with €20 million for illegal collection and processing of biometric data belonging to French citizens.
INTERPOL-led Operation Takes Down ‘Black Axe’ Cyber Crime Organization
Interpol has announced the arrest of 75 people as part of a coordinated global operation against an organised cybercrime syndicate called Black Axe.
Police dismantles criminal ring that hacked keyless cars
Authorities from France, Latvia, and Spain arrested 31 suspects believed to be part of a car theft ring that targeted vehicles from two French car manufacturers.
Brazilian police arrested a man suspected of being a member of LAPSUS$ gang
The Federal Police of Brazil arrested an individual who is suspected of being a member of the notorious LAPSUS$ extortionist group.
Fashion brand SHEIN fined $1.9m for lying about data breach
Is « pay a small fine and keep on trading » a sufficient penalty for letting a breach happen, impeding an investigation, and hiding the truth?
Suisse
Canton de Neuchâtel: Cyberattaque: « Pas de signe de fuite de données »
Une attaque informatique ayant encore pour cible le réseau pédagogique neuchâtelois a été constatée mercredi soir. Selon les autorités, l’attaque malveillante a été contrée.
Des pirates informatiques éthiques ont attaqué la Confédération sans trouver de faille critique
Des pirates éthiques se sont attaqués au système central d’accès de la Confédération. Aucune faille critique n’a été découverte. Les tests effectués ont permis de renforcer la sécurité du système, annonce la Chancellerie fédérale.
Divers
Lufthansa fait marche arrière sur l’interdiction des AirTags – Le Monde Informatique
Objets Connectés : Rétropédalage autour de l’interdiction des AirTags par Lufthansa. La compagnie aérienne les autorisera désormais sur ses vols, s’appuyant sur…
Singapore, Germany to mutually recognise IoT cybersecurity labels
The two countries have signed an agreement to recognise their respective security rating mechanism for a range of consumer products, including smart televisions, smart speakers, health trackers, and home automation hubs.
1 commentaire
Commentaires désactivés.