Voici le rapport de veille de la semaine faisant le tour des actualités les plus intéressantes. Certaines d’entre elles seront développées dans les prochains articles. Bonne lecture et merci pour le café 😉
Vol / perte de données
Millions of Aflac, Zurich insurance customers in Japan have data leaked after breach
The Japanese customers of two large insurance companies had their personal information leaked after a third-party supplier breach.
EXCLUSIVE: U.S. airline accidentally exposes ‘No Fly List’ on unsecured server
Leaked TSA No Fly List: CommuteAir, a regional carrier, left a copy of the U.S. No Fly List on an unsecured server.
ICE releases asylum seekers after exposing their data
Also: US terrorist no-fly list found left on unsecured server, Russian dark web drug markets go to war
BlackCat Ransomware gang stole secret military data from industrial explosives manufacturer
The BlackCat Ransomware group claims to have hacked SOLAR INDUSTRIES INDIA and to have stolen 2TB of « secret military data. »
US law enforcement has warrantless access to many money transfers | Engadget
US law enforcement can access details of some international money transfers without a warrant..
Yandex Source Code Online Leaked, Company Denies Hack
According to analysis, Yandex source code does not contain user data, but it does contain over 1,900 factors for ranking search results and more.
French rugby club Stade Français leaks source code
Prestigious club Stade Français potentially endangered its fans for over a year after leaking its website’s source code.
Cyberattaques / fraudes
Ukraine: Sandworm hackers hit news agency with 5 data wipers
The Ukrainian Computer Emergency Response Team (CERT-UA) found a cocktail of five different data-wiping malware strains deployed on the network of the country’s national news agency (Ukrinform) on January 17th.
German Government, Airports, Banks Hit With Killnet DDoS Attacks
After Berlin pledged tanks for Ukraine, some German websites were knocked offline temporarily by Killnet DDoS attacks.
Crypto : le FBI a démasqué le coupable d’un des plus grands hacks de 2022
Le FBI vient de confirmer l’identité des pirates derrière le hack de la blockchain Harmony. En coopérant avec des plates-formes comme Binance, les autorités sont remontées jusqu’à un groupe de pirates passé maître dans le vol de cryptomonnaies…
Copycat Criminals mimicking Lockbit gang in northern Europe
Recent reports of Lockbit locker-based attacks against North European SMBs indicate that local crooks started using Lockbit locker variants.
Failles / vulnérabilités
Bitwarden responds to encryption design flaw criticism
Password vault vendor accused of making a hash of encryption
Justice / police / réglementation
Rewards for Justice on Twitter: « FBI disrupts the Dark Web site of the Hive ransomware group.If you have information that links Hive or any other malicious cyber actors targeting U.S. critical infrastructure to a foreign government, send us your tip via our Tor tip line. You could be eligible for a reward. https://t.co/7Bqz0DUSCf pic.twitter.com/n8U3TNC7lh / Twitter »
FBI disrupts the Dark Web site of the Hive ransomware group.If you have information that links Hive or any other malicious cyber actors targeting U.S. critical infrastructure to a foreign government, send us your tip via our Tor tip line. You could be eligible for a reward. https://t.co/7Bqz0DUSCf pic.twitter.com/n8U3TNC7lh
Extradited Alleged ShinyHunters Hacker Pleads Not Guilty in US Court
The alleged member of the ShinyHunters group, Sebastian Raoult, is a French citizen who was arrested in Morocco and extradited to the U.S.
Dutch suspect locked up for alleged personal data megathefts
Undercover Austrian « controlled data buy » leads to Amsterdam arrest and ongoing investigation. Suspect is said to steal and sell all sorts of data, including medical records.
Australian man given two-year jail sentence for $69K phishing scams
Sydney Local Court dishes out a jail term totalling 32 months to a man who stole more than AU$100,000 ($69,751) in an SMS phishing scam involving 450 victims.
Deux ans de prison pour l’un des membres de DrugSource
Gestion des cookies We use cookies on our website to give you the most relevant experience by remembering your preferences and repeat visits. By clicking « Accept », you consent to the use of ALL the cookies.
Suisse
Suisse: Caméras de surveillance de l’armée jugées trop vulnérables
Obsolètes, des caméras sont des « proies faciles pour les pirates », conclut un audit interne qui affirme que l’armée néglige sa sécurité informatique.
Le nouveau casier judiciaire informatique suisse est en service
Avec l’entrée en vigueur du nouveau droit du casier judiciaire, Vostra, le nouveau système de casier judiciaire informatisé, est mis en service. L’objectif annoncé est de faciliter et automatiser, la saisie et la gestion des données. La commande d’un extrait sera désormais un peu moins chère.
Divers
GitHub disables pro-Russian hacktivist DDoS pages
NoName057 used the software development platform to carry out DDoS attacks on targets in a variety of NATO nations.
Fewer ransomware victims are paying up. But there’s a catch
Cyber criminals are finding it harder to make money from ransomware attacks. But that doesn’t mean ransomware is less dangerous.
1 commentaire
Commentaires désactivés.