Voici les incidents majeurs concernant des pertes et des vols de données découverts durant ce dernier tour de veille hebdomadaire.
Bonne lecture et merci pour le café car cette veille est produite avec un vrai cerveau non artificiel 😉
Millions of Americans’ personal DMV data exposed in massive MOVEit hack
Over 6.5 million residents of Louisiana and Oregon affected, impact may potentially widen.
A Massive Vaccine Database Leak Exposes IDs of Millions of Indians
Personal information, including ID documents and phone numbers, have been released on Telegram.
Two Energy Department entities breached as part of massive MOVEit compromise
The Cybersecurity and Infrastructure Security Agency said it’s working with « several federal agencies » affected by a flaw in the file transfer software.
Microsoft sued for alleged misuse of stolen Dark Web credentials
Hold Security LLC, a cybersecurity company, has sued Microsoft for misusing 360 million compromised credentials collected from the Dark Web.
Unreleased Music Stolen and Sold on Dark Web: Hacker Fined
The dark web hacker pleaded guilty to multiple charges, including copyright offences, computer misuse, and possession of criminal property.
A DB containing data of +8.9 million Zacks users was leaked online
A database containing the personal information of more than 8.9 million Zacks Investment Research users was leaked on a cybercrime forum.
WordPress Stripe payment plugin bug leaks customer order details
The WooCommerce Stripe Gateway plugin for WordPress was found to be vulnerable to a bug that allows any unauthenticated user to view order details placed through the plugin.
Rhysida ransomware leaks documents stolen from Chilean Army
Threat actors behind a recently surfaced ransomware operation known as Rhysida have leaked online what they claim to be documents stolen from the network of the Chilean Army (Ejército de Chile).
The US government buys your user data. Here’s what it does with it
A declassified report confirms for the first time that the US government purchases Americans’ personal information from third-party data brokers. Here’s what you need to know about it.
Draft AI Act Passes, Banning Police Facial Recognition
The European Parliament has passed the first draft of the AI Act, paving the way for a ban on police use of live facial recognition technology in public places.
Cyberattaque contre l’entreprise Xplain: les premiers résultats des analyses indiquent que des mesures sont nécessaires
Informations actuelles de l’administration. Tous les communiqués de l’administration fédérale, des départements et des offices.