Voici la sélection des cyberattaques majeures découvertes la semaine passée.
Vous retrouvez ci-dessous les liens directs vers les articles les plus intéressants. Pour information, cette veille est préparée avec un vrai cerveau non artificiel, alors bonne lecture et merci de soutenir le Décodeur !
Les actus sélectionnées cette semaine
Hackers may have accessed thousands of accounts on California state welfare platform
Threat actors accessed more than 19,000 online accounts on a California state platform for welfare programs.
Okta warns of « unprecedented » credential stuffing attacks on customers
Okta warns of an « unprecedented » spike in credential stuffing attacks targeting its identity and access management solutions, with some customer accounts breached in the attacks.
Cyberattacks on Poland surged after election of pro-Ukraine regime
DDoS attacks on Ukraine surged after last year’s change of government. NetScout tied the surge in cyberattacks to support for Ukraine
Des hackers ont exploité l’Apple Store pour voler plus de 400 000 dollars
Des cybercriminels ont dupé l’Apple Store pendant deux ans. Pour siphonner les fonds de cartes de crédit volées en toute impunité, des pirates chinois ont mis en place un astucieux stratagème qui s’appuie sur une option proposée par Apple.
Un ransomware empêche une ville britannique d’éteindre ses lampadaires
Une ville du Royaume-Uni a été victime d’une cyberattaque. Un ransomware est en effet parvenu à s’emparer des données confidentielles du conseil municipal, obligeant la ville à fermer son système informatique. Depuis, une partie de l’éclairage public est hors de contrôle.
Des pirates utilisent un antivirus pour propager des malwares depuis 2019
Des cybercriminels venus de Corée du Nord ont trouvé le moyen de détourner un antivirus afin de servir leurs desseins. Les pirates se sont en effet servis d’une mise à jour du logiciel pour injecter des virus sur l’ordinateur de leurs cibles. L’opération a pour objectif d’amasser des cryptomonnaies.
Change Healthcare Finally Admits It Paid Ransomware Hackers-and Still Faces a Patient Data Leak
The company belatedly conceded both that it had paid the cybercriminals extorting it and that patient data nonetheless ended up on the dark web.
CISA ransomware warning program will launch this year
The Cybersecurity and Infrastructure Security Agency has issued over 2,000 warnings since a pilot version of the program launched in January 2023.
Russian hacking group claims responsibility for cyberattack on Indiana wastewater plant | StateScoop
A video from the « People’s Cyber Army of Russia » claims responsibility for last week’s cyberattack on the Tipton West Wastewater Treatment Plant in Indiana.
Cyberattack hits Georgia county at center of voting software breach
State officials in Georgia have severed Coffee County’s access to statewide election systems while the breach is being addressed.
Experts warn of malware campaign targeting WP-Automatic plugin
A critical vulnerability in the WordPress Automatic plugin is being exploited to inject backdoors and web shells into websites
Ukraine Targeted in Cyberattack Exploiting 7-Year-Old Microsoft Office Flaw
Cybersecurity researchers have uncovered a targeted cyber attack against Ukraine that leveraged a 7-year-old Microsoft Office flaw to deploy Cobalt St
CySecurity News – Latest Information Security and Hacking Incidents: Cyber Attack Hits UK’s Carpetright, Affecting Customer Orders
For nearly a week now, Carpetright has faced an inability to conduct online transactions or operate its stores due to this attack.
Akira ransomware received $42M in ransom payments from over 250 victims
Government agencies revealed that Akira ransomware has breached over 250 entities worldwide and received over $42 million in ransom payments.
A cyber attack paralyzed operations at Synlab Italia
A cyber attack has been disrupting operations at Synlab Italy, a leading provider of medical diagnosis services, since April 18.
North Korea-linked APT groups target South Korean defense contractors
The National Police Agency in South Korea warns that North Korea-linked threat actors are targeting defense industry entities.
Hackers hijacked the eScan Antivirus update mechanism in malware campaign
A malware campaign has been exploiting the updating mechanism of the eScan antivirus to distribute backdoors and cryptocurrency miners.
Sweden’s liquor supply severely impacted by ransomware attack
A ransomware attack on a Swedish logistics company Skanlog severely impacted the country’s liquor supply…..
Military Tank Manual, 2017 Zero-Day Anchor Latest Ukraine Cyberattack
The targeted operation utilized CVE-2017-8570 as the initial vector and employed a notable custom loader for Cobalt Strike, yet attribution to any known threat actor remains elusive.
Hackers hijack antivirus updates to drop GuptiMiner malware
North Korean hackers have been exploiting the updating mechanism of the eScan antivirus to plant backdoors on big corporate networks and deliver cryptocurrency miners through GuptiMiner malware.
