L’hebdo cybersécurité | 7 Mai 2023

Voici le rapport de veille de la semaine faisant le tour des actualités les plus intéressantes. Certaines d’entre elles seront développées dans les prochains articles. Bonne lecture et merci pour le café 😉

Mullvad VPN’s Office Raided By Police for User Data

Mullvad VPN does not store any user data; therefore, the Swedish police could not access any user data during the raid.

FBI seized other domains used by the shadow library Z-Library

The FBI disrupted once again the illegal eBook library, Z-Library, the authorities seized several domains used by the service.

New Vulnerability in Popular WordPress Plugin Exposes Over 2 Million Sites to Cyberattacks

A security flaw has been discovered in the Advanced Custom Fields plugin that could allow for reflected cross-site scripting attacks.

Ransomware attack forces Dallas to shut down courts, disrupts some 911 services

The City of Dallas, Texas says a ransomware attack has downed 911 dispatch systems and forced the cancelation of jury trials.

Twitter confirms Circle tweets temporarily were not private

Twitter confirmed that a security error that made Circle tweets — posts that only go out to a small subset of friends — surface publicly.

T-Mobile has suffered yet another data breach

T-Mobile has reported its second data breach this year, reporting that personal information belonging to hundreds of account holders was exposed in an attack between late February and March 2023.

288 dark web vendors arrested in major marketplace seizure | Europol

This operation, codenamed SpecTor, was composed of a series of separate complementary actions in Austria, France, Germany, the Netherlands, Poland, Brazil, the United Kingdom, the United States, and Switzerland. Intelligence packages as basis for investigations Europol has been compiling intelligence packages based on troves of evidence provided by German authorities, who successfully seized the marketplace’s criminal infrastructure in December 2021….

Ex-Uber CSO Joe Sullivan gets probation for breach cover-up

Exec begged judge for leniency – and it worked

Seized: 9 Crypto Laundering Sites Used by Ransomware Gangs

The US and Ukraine have jointly seized nine websites that offer cryptocurrency laundering services to cybercriminals and ransomware gangs.

German IT provider Bitmarck hit by cyberattack

Bitmarck, one of the largest IT service providers for social insurance carriers in Germany, announced yesterday that it has suffered a cyber attack.

ALPHV gang claims ransomware attack on Constellation Software

Canadian diversified software company Constellation Software confirmed on Thursday that some of its systems were breached by threat actors who also stole personal information and business data.

Attackers Route Malware Activity Over Popular CDNs

One way to hide malicious activity is to make it look benign by blending in with regular traffic passing through content delivery networks (CDNs) and cloud service providers, according to a Netskope report.

https://www.computerworld.com/article/3695731/white-house-unveils-ai-rules-to-address-safety-and-privacy.html#tk.rss_all

BlackCat publie des données volées à Western Digital – Le Monde Informatique

Intrusion, Hacking et Pare-feu : Le groupe de ransomware monte la pression d’un cran sur Western Digital en publiant plusieurs images provenant du vol de données survenu en avril….

Le site du Sénat sous le coup d’une attaque DDoS (MAJ) – Le Monde Informatique

Intrusion, Hacking et Pare-feu : Le site du Sénat est inaccessible depuis ce matin. Le groupe NoName qui avait revendiqué l’attaque DDoS contre l’Assemblée nationale en mars indique…

ChatGPT : Samsung menace de licencier les employés qui utilisent l’IA

Samsung interdit l’utilisation de ChatGPT, Bard, Bing ou de n’importe quelle IA générative à son personnel. Suite à un incident malheureux, la firme considère les chatbots comme des dangers pour ses données confidentielles…

Google now lets you sign in with a passkey instead of a password

Now you can sign into your Google account using a fingerprint, a facial scan, or a PIN, eliminating the need to remember or use a password.

Apple delivers first-ever Rapid Security Response « cyberattack » patch – leaves some users confused

Just when we’d got used to three-numbered versions, such as « 13.3.1 », here comes an update suffix, bringing you « 13.3.1 (a) »…