L’hebdo cybersécurité | 2 avril 2023

Voici le rapport de veille de la semaine faisant le tour des actualités les plus intéressantes. Certaines d’entre elles seront développées dans les prochains articles. Bonne lecture et merci pour le café 😉

LockBit leaks data stolen from South Korean National Tax Service

The LockBit ransomware gang announced the publishing of data stolen from the South Korean National Tax Service.

Latitude Financial Admits Breach Impacted Millions

Over 14 million records stolen from consumer lender

https://www.bitdefender.com/blog/hotforsecurity/us-sends-million-dollar-scammer-to-prison-for-four-years/

UK Sets Up Fake Booter Sites To Muddy DDoS Market

The United Kingdom’s National Crime Agency (NCA) has been busy setting up phony DDoS-for-hire websites that seek to collect information on users, remind them that launching DDoS attacks is illegal, and generally increase the level of paranoia for people looking to hire such services.

German Police Raid DDoS-Friendly Host ‘FlyHosting’

Authorities in Germany this week seized Internet servers that powered FlyHosting, a dark web offering that catered to cybercriminals operating DDoS-for-hire services, KrebsOnSecurity has learned. FlyHosting first advertised on cybercrime forums in November 2022, saying it was a Germany-based hosting firm that was open for business to anyone looking for a reliable place to host malware, botnet controllers, or DDoS-for-hire infrastructure.

Hacker Returns $200 Million Stolen from Euler Finance

Euler Finance was hacked on March 13, 2023, and around $197 million worth of cryptocurrency including $135.8 million stETH were stolen.

Europol warns of criminal use of ChatGPT

Europol warns of cybercriminal organizations can take advantage of systems based on artificial intelligence like ChatGPT.

Bitter APT group targets China’s nuclear energy sector

Intezer researchers reported that a South Asian espionage group, tracked as Bitter, is targeting the Chinese nuclear energy industry.

Toyota scrambles to patch customer data leak

Toyota Italy accidentally leaked sensitive data for more than one-and-a-half years, until this March, CyberNews reported.

Cyber Police of Ukraine arrested members of a gang that defrauded EU citizens of $4.33M

The Cyber Police of Ukraine, with law enforcement officials from Czechia, has arrested several members of a gang responsible for $4.33 million scam.

Bing search results hijacked via misconfigured Microsoft app

A misconfigured Microsoft application allowed anyone to log in and modify Bing.com search results in real-time, as well as inject XSS attacks to potentially breach the accounts of Office 365 users.

3CX Desktop App Supply Chain Attack Leaves Millions at Risk – Urgent Update on the Way!

Active supply chain attack targets popular voice & video conferencing software 3CX Desktop App, affecting hundreds of well-known brands.

Cyber Police of Ukraine Busted Phishing Gang Responsible for $4.33 Million Scam

Ukraine’s Cyber Police and Czechia’s law enforcement officials for working together to bust a phishing gang that targeted European users.

Hey, Siri: Hackers Can Control Smart Devices Using Inaudible Sounds

A technique, dubbed the « Near-Ultrasound Inaudible Trojan » (NUIT), allows an attacker to exploit smartphones and smart speakers over the Internet, using sounds undetectable by humans.

North Korean threat actor APT43 pivots back to strategic cyberespionage

The APT43 group is highly adept at using social engineering to target individuals and extract sensitive information.

Italian privacy regulator bans ChatGPT over collection, storage of personal data

Italy’s privacy Guarantor bans ChatGPT with immediate effect as it investigates its data privacy procedures.

Une attaque DDoS fait tomber le site web de l’Assemblée nationale – Le Monde Informatique

Intrusion, Hacking et Pare-feu : Le site web de l’Assemblée nationale est inaccessible depuis ce lundi matin. Une attaque par déni de service revendiquée par le groupe de hackers…

La Maison Blanche veut limiter le marché des spywares – Le Monde Informatique

Spyware : L’administration Biden a publié un décret interdisant au gouvernement fédéral d’utiliser des logiciels espions d’éditeurs étrangers. Plusieurs…

Microsoft Bing : une faille permettait de trafiquer les résultats de recherche

Une faille de sécurité affectant Microsoft Bing a été découverte. Elle permettait de trafiquer les résultats de recherche et de siphonner les données des internautes, dont les mails échangés sur Outlook et les messages Teams…

‘Vulkan files’ leak reveals Putin’s global and domestic cyberwarfare tactics

Vulkan engineers have worked for Russian military and intelligence agencies to support hacking operations, prepare for attacks on infrastructure and spread disinformation