Voici la sélection des cyberattaques majeures découvertes durant ce dernier tour de veille hebdomadaire.
Bonne lecture et merci pour le café car cette veille est produite avec un vrai cerveau non artificiel 😉
Chinese Espionage Malware Targets European Healthcare via USB Drives
The malware campaign has been attributed to the Chinese APT group Mustang Panda, also known as Camaro Dragon.
3CX data exposed, third-party to blame
A third-party vendor of 3CX, a popular Voice over Internet Protocol (VoIP) comms provider, left an open server and exposed sensitive 3CX data.
https://www.bleepingcomputer.com/news/microsoft/microsoft-confirms-azure-outlook-outages-caused-by-ddos-attacks/
Reddit hackers threaten to leak data stolen in February breach
The BlackCat (ALPHV) ransomware gang is behind a February cyberattack on Reddit, where the threat actors claim to have stolen 80GB of data from the company.
Chinese Hacker Group ‘Flea’ Targets American Ministries with Graphican Backdoor
Flea, a Chinese state-sponsored actor, strikes foreign affairs ministries and more with the powerful Graphican backdoor.
Cybercrime Group ‘Muddled Libra’ Targets BPO Sector with Advanced Social Engineering
Watch out, BPOs! Discover how ‘Muddled Libra’ cybercrime group is leveraging the 0ktapus phishing kit and social engineering tactics.
Fresh Ransomware Gangs Emerge as Market Leaders Decline
The ransomware landscape is energized with the emergence of smaller groups and new tactics, while established gangs like LockBit see fewer victims.
LockBit Developing Ransomware for Apple M1 Chips, Embedded Systems
Under construction: The world’s leading ransomware gang is workshopping ransomware for less obvious systems beyond Windows environments. Experts weigh in on how worried we should be.
Suspicious Smartwatches Mailed to US Army Personnel
Unknown senders have been shipping smartwatches to service members, leading to questions regarding what kind of ulterior motive is at play, malware or otherwise.
Le CHU de Rennes touché par une cyberattaque (MAJ) – Le Monde Informatique
Intrusion, Hacking et Pare-feu : Mercredi 21 juin en fin de journée, le centre hospitalier universitaire de Rennes a été victime d’une attaque informatique. Si l’établissement…
Le CHU de Rennes victime d’une intrusion informatique
L’établissement de santé explique avoir coupé ses accès internet pour limiter les effets de l’attaque informatique.
https://www.theverge.com/2023/6/19/23765895/reddit-hack-phishing-leak-api-pricing-steve-huffman
Microsoft says June Outlook outages were a DDoS attack
Microsoft Outlook was hit in early June by a large-scale Distributed Denial-of-Service attack by a group calling itself Anonymous Sudan that resulted in intermittent outages for about a day.