L’hebdo cybersécurité (1 octobre 2023)

Voici le rapport de veille avec des liens directs vers les actus les plus intéressantes de la semaine passée. Certaines d’entre elles seront développées dans les prochains articles.

Pour information, cette veille est préparée avec un vrai cerveau non artificiel, alors bonne lecture et merci de soutenir le Décodeur !

Les actus sélectionnées cette semaine

The NSA has a new security center specifically for guarding against AI
The National Security Agency (NSA) is starting an artificial intelligence security center to safeguard our defense and intelligence systems. This should discourage bad actors from stealing or sabotaging currently-used AI models.

Johnson Controls International Disrupted by Major Cyberattack
The company filed with the SEC and is assessing its operations and financial damages.

FBI Warns of Rising Trend of Dual Ransomware Attacks Targeting U.S. Companies
FBI Alert: Dual ransomware attacks are surging, targeting U.S. businesses with multiple variants.

Cyber Attack paralysis IT operations at Volkswagen – Cybersecurity Insiders
Volkswagen (VW) manufacturing operations in Germany faced a significant disruption due to a cyberattack that targeted its IT infrastructure. Suspicions

Canada govt websites disrupted by Cyber Attacks from India – Cybersecurity Insiders
Numerous government websites in Canada experienced performance issues and error messages due to a cyber-attack orchestrated by the India Cyber Force.

Backdoored firmware lets China state hackers control routers with « magic packets »
The modified firmware used by BlackTech is hard to detect.

Sony investigates the alleged data breach that has led to hacker infighting
On Monday, relatively new hacking group Ransomed.vc made the lofty claim that it had successfully compromised « all » of the company’s systems, as reported by Cybersecurity Connect. Now a second threat actor has leaked the data believed to be in Ransomed.vc’s possession, claiming the former are « scammers » trying to « chase influence. »

Hackers steal $200M from crypto company Mixin | TechCrunch
Hong Kong-based crypto company Mixin announced it was breached, with hackers stealing around $200 million.

JPMorgan’s Chase UK bans crypto transactions amid surge in scams
The value of crypto fraud in the UK increased 41% last year – reaching a record high of £306mn (€352mn).

FBI and CISA Issue Joint Advisory on Snatch Ransomware Threat
Snatch ransomware’s victims span various critical infrastructure sectors, including the Defense Industrial Base, Food and Agriculture, and IT sectors.

BORN Ontario data breach impacted 3.4 million newborns and pregnancy care patients
The Better Outcomes Registry & Network (BORN), the Ontario birth registry disclosed a data breach affecting some 3.4 million people.

Russian zero-day broker is willing to pay $20M for zero-day exploits for iPhones and Android devices
A Russian zero-day broker is willing to pay $20 million for zero-day exploits for iPhones and Android mobile devices.

Aviation : les cyberattaques passent par le WiFi – Le Monde Informatique
Sécurité : Les terminaux avec WiFi des passagers offrent aux pirates un meilleur accès aux avions de ligne que l’avionique embarquée.

Air Canada Hack: Employees Personal Information Exposed
Air Canada has recently announced that their internal systems have experienced a security breach. The unauthorized access was carried out by an unknown group, and the extent of the breach is currently being investigated. This incident has raised concerns regarding the protection of sensitive information and the need for stronger security measures.

ShadowSyndicate: A New Cybercrime Group Linked to 7 Ransomware Families
Cyber experts uncover a new threat: ShadowSyndicate. Explore their connections to ransomware and the latest findings from cybersecurity experts.

iOS 17: iPhone Users Report Worrying Privacy Settings Change After Update
Have you updated your iPhone to iOS 17? You should check your privacy settings as they could reveal an unwanted and surprising change.

How TikTok Has Exposed Celebrities And Politicians’ Closest Personal Contacts
TikTok and ByteDance staff’s easy access to the friend lists of the First Family and public figures has created national security and privacy risks ahead of the election.

MOVEit cyberattacks: keeping tabs on the biggest data theft of 2023
The Clop ransomware attacks took millions of people’s data from thousands of organizations by exploiting Progress Software’s MOVEit Transfer.

CISA task force aims to improve supply chain security with new hardware standards
The Hardware Bill of Materials Framework looks to standardize how vendors and customers communicate about the capabilities and use of hardware systems.

Des idées de lecture cybersécurité

La cybersécurité pour les Nuls

L'essentiel Cybersécurité, IA & Tech

Rejoignez la communauté. 3 fois par semaine, recevez l'analyse des tendances par Marc Barbezat. Pas de spam, juste de l'info.

Ou suivez le flux temps réel

Pour obtenir toutes les informations sur la cybersécurité, apprendre à protéger ses données sensibles sereinement et à éviter le hacking

Amazon Securite informatique Ethical Hacking

Sécurité informatique – Ethical Hacking : Apprendre l’attaque pour mieux se défendre

Ce livre a pour objectif d’initier le lecteur aux techniques des attaquants pour lui apprendre comment se défendre.

Cyberattaques: Les dessous d’une menace mondiale

Un documentaire captivant et éclairant sur les affrontements entre attaquants et défenseurs du numérique, face à la plus grande menace de la prochaine décennie.

Cette veille indépendante vous est utile ?
Offrez un café pour soutenir le serveur (et le rédacteur).

☕ Je soutiens DCOD

💡 Ne manquez plus l’essentiel

Les derniers articles

CodeRED : Alerte d’urgence piratée et mots de passe en clair

Quand la poésie se transforme en vecteur d’attaque contre l’IA

Narcotrafic et GrapheneOS, le bouclier anti-police

Les vulnérabilités à suivre – 1 déc 2025

L’UE reporte l’AI Act à 2027 : un pari risqué pour la sécurité?

Toutes les catégories

L’hebdo cybersécurité (1 octobre 2023)

Les actus sélectionnées cette semaine

The NSA has a new security center specifically for guarding against AI

Johnson Controls International Disrupted by Major Cyberattack

FBI Warns of Rising Trend of Dual Ransomware Attacks Targeting U.S. Companies

Cyber Attack paralysis IT operations at Volkswagen – Cybersecurity Insiders

Canada govt websites disrupted by Cyber Attacks from India – Cybersecurity Insiders

Backdoored firmware lets China state hackers control routers with « magic packets »

Sony investigates the alleged data breach that has led to hacker infighting

Hackers steal $200M from crypto company Mixin | TechCrunch

JPMorgan’s Chase UK bans crypto transactions amid surge in scams

FBI and CISA Issue Joint Advisory on Snatch Ransomware Threat

BORN Ontario data breach impacted 3.4 million newborns and pregnancy care patients

Russian zero-day broker is willing to pay $20M for zero-day exploits for iPhones and Android devices

Aviation : les cyberattaques passent par le WiFi – Le Monde Informatique

Air Canada Hack: Employees Personal Information Exposed

ShadowSyndicate: A New Cybercrime Group Linked to 7 Ransomware Families

iOS 17: iPhone Users Report Worrying Privacy Settings Change After Update

How TikTok Has Exposed Celebrities And Politicians’ Closest Personal Contacts

MOVEit cyberattacks: keeping tabs on the biggest data theft of 2023

CISA task force aims to improve supply chain security with new hardware standards

Des idées de lecture cybersécurité

L'essentiel Cybersécurité, IA & Tech

Marc Barbezat

1 commentaire

Des idées de lecture cybersécurité

💡 Ne manquez plus l’essentiel

Les derniers articles

Toutes les catégories

Les actus sélectionnées cette semaine

Des idées de lecture cybersécurité

L'essentiel Cybersécurité, IA & Tech

A lire également

1 commentaire

Des idées de lecture cybersécurité