Les ransomwares continuent de faire des victimes … qui paient de plus en plus 😡️ #veille (5 janv 2020)

Bon démarrage en 2020 👍️ et voici le premier rapport de veille de l’année. Comme d’habitude il fait le tour des actualités les plus intéressantes. Vous retrouverez un développement de certaines d’entre elles dans les prochains articles. Bonne lecture et belle semaine à vous !

un petit clic pour ma veille

Vol / perte de données

Security experts disclosed Wyze data leak

IoT vendor Wyze announced that details of roughly 2.4 million customers were accidentally exposed online. The company produces inexpensive smart home products and wireless cameras. The leak was reported to Wyze on December 26th at around 10:00 AM and the company immediately secured the database and launched an investigation.

Prison surveillance footage posted on YouTube | WeLiveSecurity

It’s not a stretch to surmise that the incident was enabled by poor security settings Law enforcement in Thailand is looking into an incident that resulted in the streaming of live surveillance footage from a local prison on YouTube, according to a report by The Bangkok Post The feed, which gave a glimpse into inmates’ daily lives in crowded cells, contained materials from several locations within the facility.

Poloniex Forces Password Reset After Data Leak Found Online

The Poloniex cryptocurrency trading platform has reset some of their user’s passwords after a list of alleged username and password combinations was found circulating on Twitter. On December 30th, 2019, users began receiving an email from Poloniex stating that their user name and password for the trading site may have been included in a data leak circulating on Twitter.

Cyber-attaques / fraudes

Microsoft élimine 50 noms de domaine exploités par de redoutables hackers nord-coréens

Le groupe Thallium s’en servait pour infiltrer des institutions américaines, japonaises et sud-coréennes. Pour y parvenir, Microsoft a reçu une ordonnance des autorités américaines.

Ransomware attack takes US maritime base offline

« Once the embedded malicious link in the email was clicked by an employee, the ransomware allowed for a threat actor to access significant enterprise information technology (IT) network files, and encrypt them, preventing the facility’s access to critical files, » it said.

Travelex Currency-Exchange Network Shut Down by Virus Attack

A crippling computer virus forced retail foreign-exchange specialist Travelex to shut its online services and its app. The company, a subsidiary of London-listed Finablr PLC, said it took down all online services after the attack was detected on New Year’s Eve to stop the spread of a virus.

After U.S. kills Iranian general, analysts warn of Tehran’s ability to retaliate in cyberspace – CyberScoop

After the U.S. military said it killed Qassem Soleimani, the chief of Iran’s Quds Force, in an airstrike early Friday in Baghdad, Iran’s supreme leader vowed to exact revenge on the United States. Of prime concern will be Iran’s ability to carry out violent physical attacks on U.S.

Colorado Town Wires Over $1 Million to BEC Scammers

Image: Town of Erie, Bleeping Computer Colorado Town of Erie lost more than $1 million to a business email compromise scam (BEC) that ended with the town’s employees sending the funds to a bank account controlled by scammers.

Failles / vulnérabilités

Google disables Xiaomi smart home integration after camera bug | WeLiveSecurity

A Xiaomi security camera owner reports receiving random images from strangers’ homes Smart-home security appliances are not always what they are made out to be and recently some have been running into more problems than is healthy. Some smart doorbells have been caught recording more data than thought, while Wyze Labs, which makes connected home gadgets, has been hit by a data breach.

Voici pourquoi les objets connectés Xiaomi ont été suspendus sur Google Home et Assistant

Si les objets connectés sont très pratiques, beaucoup de personnes se méfient de ces appareils à cause des risques que des enregistrements ou des flux des caméras puissent fuiter ou être piratés. Et malheureusement, l’incident qui a affecté quelques utilisateurs des caméras de surveillance Xiaomi tend à donner raison à ces sceptiques.

Starbucks Devs Leave API Key in GitHub Public Repo

One misstep from developers at Starbucks left exposed an API key that could be used by an attacker to access internal systems and manipulate the list of authorized users. The severity rating of the vulnerability was set to critical as the key allowed access to a Starbucks JumpCloud API.

Réglementaire / juridique

Cambridge Analytica scandal: Facebook hit with $1.6 million fine

The Cambridge Analytica scandal continues to haunt Facebook. The company has been receiving fines left round and center for its blatant neglect and disregard towards users’ privacy. The latest to join the bandwagon after the US, Italy, and the UK, is the Brazilian government.


U.S. Army bans TikTok amid ongoing scrutiny of Chinese-made video app – CyberScoop

The U.S. Army is barring its soldiers from using TikTok, a video-sharing app owned by a company with ties to the Chinese government. Lt. Col. Robin Ochoa, an Army spokeswoman, told Military.com on Dec. 30 the military branch considers TikTok a « cyberthreat » and that personnel may not use the app on government phones.

Le district de Séoul s’équipe de caméras dotées d’IA pour détecter un crime… avant même qu’il ne soit commis

La police de Séoul va déployer des caméras de surveillance dotées d'un algorithme capable de prédire si des crimes seront commis. Se basant sur le machine learning et des dossiers judiciaires passés, le dispositif pourra automatiquement donner l'alerte aux autorités.

Amazon travaille à un système de paiement grâce à la reconnaissance… des veines

En présentant sa main à une caméra infrarouge, le procédé peut identifier précisément la personne et ainsi débiter son compte bancaire.

Veilleur et spécialiste en cybersécurité