L’hebdo cybersécurité (8 octobre 2023)

Voici le rapport de veille avec des liens directs vers les actus les plus intéressantes de la semaine passée. Certaines d’entre elles seront développées dans les prochains articles.

Pour information, cette veille est préparée avec un vrai cerveau non artificiel, alors bonne lecture et merci de soutenir le Décodeur !

Les actus sélectionnées cette semaine

Après deux hacks, des pirates revendent des cryptomonnaies à prix cassé
Un mystérieux vendeur commercialise des cryptomonnaies à prix réduit sur Telegram. D’après une enquête, ces cryptodevises font partie des actifs volés lors des piratages de CoinEx et de Stake, survenus le mois dernier.

Pirater WhatsApp : les failles de la messagerie se vendent des millions de dollars
Les failles permettant de pirater un compte WhatsApp se vendent à prix d’or sur le marché des vulnérabilités. Ces dernières années, les primes offertes aux chercheurs qui découvrent une brèche donnant accès aux messages d’une cible ont même fortement augmenté…

Qakbot hackers are still spamming victims despite FBI takedown | TechCrunch
The FBI said its seizure of dozens of Qakbot servers would « permanently dismantle » the botnet, but researchers say their targeting continues.

MGM Resorts confirms hackers stole customers’ personal data during cyberattack | TechCrunch
The Las Vegas hotel and casino giant said it expects the cyberattack and data breach to cost the company at least $100 million in expenses.

Lyca Mobile says customer data was stolen during cyberattack | TechCrunch
The U.K.-based mobile operator says it has more than 16 million customers globally, but won’t say how many customers are affected.

They’ve begun: Attacks exploiting vulnerability with maximum 10 severity rating
Will attacks be as big as those targeting MOVEit? Maybe not, but they still can be plenty bad.

https://www.hackread.com/us-police-recover-3m-pakistani-crypto-scammers/

Hacker Claims to Have Data of 7 Million 23andMe Users from DNA Service
One threat actor has leaked 23andMe user data, another is advertising ‘Genetic Data For Sale,’ with prices determined by the number of profiles.

Two hacker groups are back in the news, LockBit 3.0 Black and BlackCat/AlphV
Researchers from cybersecurity firm TG Soft are warning Italian entities and companies of LockBit 3.0 Black and BlackCat/AlphV attacks.

Ransomware gangs now exploiting critical TeamCity RCE flaw
Ransomware gangs are now targeting a recently patched critical vulnerability in JetBrains’ TeamCity continuous integration and deployment server.

Qualcomm says hackers exploit 3 zero-days in its GPU, DSP drivers
Qualcomm is warning of three zero-day vulnerabilities in its GPU and Compute DSP drivers that hackers are actively exploiting in attacks.

Hundreds of malicious Python packages found stealing sensitive data
A malicious campaign that researchers observed growing more complex over the past half year, has been planting on open-source platforms hundreds of info-stealing packages that counted about 75,000 downloads.

Chinese Hackers Target Semiconductor Firms in East Asia with Cobalt Strike
Semiconductor companies in East Asia are under attack. Threat actors posing as TSMC deploy Cobalt Strike beacons via HyperBro backdoor

North Korea’s Lazarus Group Launders $900 Million in Cryptocurrency
Report reveals Lazarus Group, tied to North Korea, involved in $900 million cross-chain bridge laundering

Google, Yahoo Push DMARC, Forcing Companies to Catch Up
The move means that DMARC, already in use by half of enterprises, will become table stakes for anyone using email for marketing.

Patch now: This serious Linux vulnerability affects nearly all distributions
Qualys has discovered a nasty security hole, dubbed ‘Looney Tunables’, in the glibc C library. This means almost all Linux distributions have a bad security problem.

MGM Resorts Refused to Pay Ransom but Lost $100 Million in Wake of Cyberattack
The casino chain suffered a cyberattack in September that stole social security information from customers who transacted prior to March 2019.

Ransomware double-extortion attacks increased 72%
Malware, ransomware attacks and network security trends were analyzed in a recent report by WatchGuard, finding a rise in double-extortion attacks.

Sony confirms server security breaches that exposed employee data
Sony Interactive Entertainment sent letters to current and former employees of a MOVEit Transfer server hack that exposed personal data in June 2023. Sony confirmed a second breach in September 2023.

💡 Ne manquez plus l'essentiel
Recevez les analyses et tendances cybersécurité directement dans votre boîte mail.

Offrez un café pour soutenir cette veille indépendante.

☕ Je soutiens DCOD

💡 Note : Certaines images ou extraits présents dans cet article proviennent de sources externes citées à des fins d’illustration ou de veille. Ce site est indépendant et à but non lucratif. 👉 En savoir plus sur notre cadre d’utilisation.

Vous appréciez ces analyses ?
Soutenez DCOD en offrant un café ☕

💡 Ne manquez plus l’essentiel

Les derniers articles

Mexico City, record mondial avec 83 000 caméras de surveillance

Pentagon Pizza Meter : quand les livraisons de pizzas trahissent les opérations du Pentagone

SMS‑blasters : comment ces dispositifs alimentent le smishing moderne

Données de hauts responsables européens vendues sur des marchés opaques

Apple et WhatsApp s’engagent contre les spywares aux États-Unis

Toutes les catégories

L’hebdo cybersécurité (8 octobre 2023)

Les actus sélectionnées cette semaine

Après deux hacks, des pirates revendent des cryptomonnaies à prix cassé

Pirater WhatsApp : les failles de la messagerie se vendent des millions de dollars

Qakbot hackers are still spamming victims despite FBI takedown | TechCrunch

MGM Resorts confirms hackers stole customers’ personal data during cyberattack | TechCrunch

Lyca Mobile says customer data was stolen during cyberattack | TechCrunch

They’ve begun: Attacks exploiting vulnerability with maximum 10 severity rating

Hacker Claims to Have Data of 7 Million 23andMe Users from DNA Service

Two hacker groups are back in the news, LockBit 3.0 Black and BlackCat/AlphV

Ransomware gangs now exploiting critical TeamCity RCE flaw

Qualcomm says hackers exploit 3 zero-days in its GPU, DSP drivers

Hundreds of malicious Python packages found stealing sensitive data

Chinese Hackers Target Semiconductor Firms in East Asia with Cobalt Strike

North Korea’s Lazarus Group Launders $900 Million in Cryptocurrency

Google, Yahoo Push DMARC, Forcing Companies to Catch Up

Patch now: This serious Linux vulnerability affects nearly all distributions

MGM Resorts Refused to Pay Ransom but Lost $100 Million in Wake of Cyberattack

Ransomware double-extortion attacks increased 72%

Sony confirms server security breaches that exposed employee data

Marc Barbezat

1 commentaire

Des idées de lecture cybersécurité

Mexico City, record mondial avec 83 000 caméras de surveillance

Pentagon Pizza Meter : quand les livraisons de pizzas trahissent les opérations du Pentagone

SMS‑blasters : comment ces dispositifs alimentent le smishing moderne

Données de hauts responsables européens vendues sur des marchés opaques

Apple et WhatsApp s’engagent contre les spywares aux États-Unis