Catégories
Sur les réseaux sociaux
Contact

La veille cyber-sécurité (sem 12 juin 2022)

Voici le rapport de veille de la semaine faisant le tour des actualités les plus intéressantes. Certaines d’entre elles seront développées dans les prochains articles. Bonne lecture et merci pour le café 😉

Vol / perte de données

MyEasyDocs Exposed 30GB of Israeli and Indian Students PII Data

MyEasyDocs is a Chennai, India based online documents verification platform whose Microsoft Azure server exposed data of over 57,000 students.

Cyberattaques / fraudes

Lockbit gang claims to have hacked cybersecurity giant Mandiant

LockBit ransomware gang claims to have hacked the cybersecurity firm Mandiant, which is investigating the alleged security breach.

This hacking group quietly spied on their targets for 10 years

Hackers crafted social lures and used a fake removable device to trick targets into installing malware.

This new Linux malware is ‘almost impossible’ to detect

Symbiote is parasitic malware that provides rootkit-level functionality.

Ukrainian Officials’ Phones Targeted by Russian Hackers

On Monday, a senior cybersecurity official said that the phones of Ukrainian officials had been targeted by hackers as Russia pursues its invasion of Ukraine.

Dark web sites selling alleged Western weapons sent to Ukraine

Several weapon marketplaces on the dark web have listed military-grade firearms allegedly coming from Western countries that sent them to support the Ukrainian army in its fight against the Russian invaders.

Russian Ministry Website Hacked to Display “Glory To Ukraine” Message

A group called “DumpForums” hacked the website of Russian Ministry of Construction, Housing and Utilities to display “Glory to Ukraine” message.

Italian Municipality of Palermo Suffers Cyberattack

On Friday the municipality of Palermo, Italy, suffered a cyberattack. The attack appears to have had an impact on multiple services and operations to both citiz

Iranian hackers target energy sector with new DNS backdoor

The Iranian Lycaeum APT hacking group uses a new .NET-based DNS backdoor to conduct attacks on companies in the energy and telecommunication sectors.

Failles / vulnérabilités

Dark web sites selling alleged Western weapons sent to Ukraine

Several weapon marketplaces on the dark web have listed military-grade firearms allegedly coming from Western countries that sent them to support the Ukrainian army in its fight against the Russian invaders.

Emotet malware gang shifts to stealing credit cards

Crimeware groups are re-inventing themselves

Justice / police / réglementation

https://www.europol.europa.eu/media-press/newsroom/news/takedown-of-sms-based-flubot-spyware-infecting-android-phones

FBI Seizes ‘SSNDOB’ ID Theft Service for Selling Personal Info of 24 Million People

FBI seizes SSNDOB online marketplace known for selling personal information such as credit card numbers, and Social Security numbers.

Spanish court calls CEO of Israel’s NSO to testify in spying case

Spain’s High Court on Tuesday called the chief executive officer of Israel’s software firm NSO Group to testify as a witness in a case opened over the use of its Pegasus software to spy on Spanish politicians.

FBI warning: This gang steals data for ransom, then makes harassing phone calls to pile on the pressure

FBI, CISA and others issue warning over Karakurt Team, which steals data, demands ransom in Bitcoin for not publishing it.

Twitter pays $150M fine for using two-factor login details to target ads

Twitter targeted ads with phone numbers and emails collected for security purposes.

Mandiant: “No evidence” we were hacked by LockBit ransomware

American cybersecurity firm Mandiant is investigating LockBit ransomware gang’s claims that they hacked the company’s network and stole data.

Suisse

Lancement de l’Institut national de test pour la cybersécurité

L’Institut national de test pour la cybersécurité (NTC) annonce son lancement officiel, avec le soutien du canton de Zoug. Cette structure sans but lucratif a pour objectif de vérifier la fiabilité et la sécurité des produits connectés et des applications numériques.

Divers

Russia: Cyber-Attacks Could Escalate Military Conflict

Kremlin warns of “direct clash” if Western attacks continue

Darknet : le célèbre supermarché illégal AlphaBay ressurgit au premier plan

Démantelée en 2017, la plus grosse place de marché illégale de tous les temps refait surface et retrouve la première place du podium. Mais à une moindre échelle.

S'incrire à la newsletter

Inscrivez-vous et recevez la synthèse des nouveaux articles directement dans votre boîte aux lettres.

Merci pour votre inscription !

Un erreur s'est produite. Merci d'essayer à nouveau ou utiliser le formulaire disponible dans la barre latérale du site.

Fréquence habituelle : 2 envois / semaine

Abonnez-vous au canal Telegram
Abonnez-vous au canal Whatsapp
Mots-clés
Vous devriez également aimer

S'incrire à la newsletter

Inscrivez-vous et recevez la synthèse des nouveaux articles directement dans votre boîte aux lettres.

Merci pour votre inscription !

Un erreur s'est produite. Merci d'essayer à nouveau ou utiliser le formulaire disponible dans la barre latérale du site.

Fréquence habituelle : 2 envois / semaine

Send this to a friend