Voici le rapport de veille de la semaine faisant le tour des actualités les plus intéressantes. Certaines d’entre elles seront développées dans les prochains articles. Bonne lecture et merci pour le café 😉
Vol / perte de données
Facebook to delete 1 billion faceprints in Face Recognition shutdown
Facebook announced today that they will no longer use the Face Recognition system on their platform and will be deleting over 1 billion people’s facial recognition profiles.
Ukraine Unmasks Armageddon Group as FSB Officers
More evidence of prolific threat activity from Russia
Iranian Hacking Group Leaks Patient and LGBTQ Info
Hundreds of thousands of Israelis affected by ransom breach
45 millions de données de clients d’un VPN diffusées sur le web
Tout aurait pu se passer tranquillement entre un lanceur d’alerte et la société ActMobile. Une menace plus tard, et 45 millions de données sont diffusées sur Internet. L’américain ActMobile est une société spécialisée dans les services VPN . Elle permet à ses clients de surfer de manière sécurisée, anonymat entre le client et les sites visités.
Cyberattaques / fraudes
The Booming Underground Market for Bots That Steal Your 2FA Codes
The bots convincingly and effortlessly help hackers break into Coinbase, Amazon, PayPal, and bank accounts.
BlackMatter ransomware gang to shut down. Oh dear, what a shame, never mind
The BlackMatter ransomware group, which just a month or two ago was asking internet users to stop bombarding it with insults as it attempted to negotiate payments from its corporate victims…
The ‘Groove’ Ransomware Gang Was a Hoax
A number of publications in September warned about the emergence of ” Groove,” a new ransomware group that called on competing extortion gangs to unite in attacking U.S. government interests online. It now appears that Groove was all a big hoax designed to toy with security firms and journalists.
FBI: Ransomware targets companies during mergers and acquisitions
The Federal Bureau of Investigation (FBI) warns that ransomware gangs are targeting companies involved in “time-sensitive financial events” such as corporate mergers and acquisitions to make it easier to extort their victims.
HelloKitty ransomware gang also targets victims with DDoS attacks
The US FBI has published a flash alert warning private organizations of the evolution of the HelloKitty ransomware (aka FiveHands).
Failles / vulnérabilités
Microsoft warns of rise in password sprays targeting cloud accounts
The Microsoft Detection and Response Team (DART) says it detected an increase in password spray attacks targeting privileged cloud accounts and high-profile identities such as C-level executives.
Cisco warns of hard-coded credentials and default SSH key issues in some products
Cisco fixed flaws that could have allowed unauthenticated attackers to access its devices with hard-coded credentials or default SSH keys
Justice / police / réglementation
US offers $10 million reward for information on DarkSide leaders, $5 million for affiliates
The State Department has put a bounty on the heads of the leaders of the DarkSide/BlackMatter ransomware.
Alleged Twitter hacker charged with theft of $784K in crypto via SIM swaps
The US Department of Justice has indicted a suspected Twitter hacker known as ‘PlugWalkJoe’ for also stealing $784,000 worth of cryptocurrency using SIM swap attacks.
Signal obligé de s’expliquer – encore – après une demande du FBI
Gestion des cookies We use cookies on our website to give you the most relevant experience by remembering your preferences and repeat visits. By clicking “Accept”, you consent to the use of ALL the cookies.
Ukraine intel doxed 5 FSB Officers that are members of Gamaredon APT
Ukraine ‘s authorities revealed the real identities of five FSB members behind the Gamaredon cyberespionage group.
Suisse
Le nombre de cyberattaques a doublé au premier semestre en Suisse
Deux fois plus de cas de cyberattaques ont été signalés durant le premier semestre 2021 au Centre national de cybersécurité (NCSC) par rapport à la même période l’an dernier. Les cas de “fake sextorsion” et de phishing ont notamment considérablement augmenté.
Divers
Twitter joins backlash against Australian plan to ID social media users
As another critic says, the government’s ‘incredibly reckless’ idea would strip the shield of anonymity from myriad vulnerable groups because ‘a few white men are uncomfortable’ with criticism online.
US Bans Trade With Pegasus Spyware Maker
NSO Group plans to fight the trade ban, saying it’s “dismayed” and clinging to the mantra that its tools actually help to prevent terrorism and crime.