Voici le rapport de veille de la semaine faisant le tour des actualités les plus intéressantes. Certaines d’entre elles seront développées dans les prochains articles. Bonne lecture et merci pour le café 😉
Vol / perte de données
TikTok Denies It Was Hacked After a Gang Claimed to Leak Users’ Data
The short video app, known for sucking up a radical amount of your data, wants you to know that it didn’t let hackers steal any of it.
New cyberespionage group surfaces following attacks on mostly Asian targets
Active since 2020, the cyberespionage group has targeted a range or mostly Asian public and private entities.
États-Unis : cet outil permet à la police de traquer le smartphone des citoyens
Aux États-Unis, de nombreux agences des forces de l’ordre exploitent un outil baptisé Fog Reveal pour espionner le smartphone des citoyens.
Orange Cyberdefense victime d’une fuite importante de données clients
La filiale en cybersécurité d’Orange a été victime d’une fuite de données qui concernerait une centaine de clients.
Lazarus Group dropped a MagicRAT to spy on energy providers
Cisco finds custom malware in North Korea’s latest cyberespionage effort
Cyberattaques / fraudes
InterContinental Hotels Confirms Cyber-Attack After Two-Day Outage
IHG is assessing the nature, extent and impact of the incident and implementing response plans
Cyberattack Prompts Los Angeles School District To Shut Down Its Computer Systems
Such attacks have become a growing threat to U.S. schools, with several high-profile incidents reported since last year.
These hackers used Log4Shell vulnerability to target US energy firms
Lazarus hackers used the flaw to target servers of energy providers in the US, Canada, and Japan.
$30M worth of cryptocurrency stolen from Axie Infinity recovered
US authorities recovered more than $30 million worth of cryptocurrency stolen by the North Korea-linked Lazarus APT from Axie Infinity.
Microsoft: Iranian hackers encrypt Windows systems using BitLocker
Microsoft says an Iranian state-sponsored threat group it tracks as DEV-0270 (aka Nemesis Kitten) has been abusing the BitLocker Windows feature in attacks to encrypt victims’ systems.
Hackers Exploit Zero-Day in WordPress BackupBuddy Plugin in ~5 Million Attempts
Hackers exploit a new zero-day vulnerability in the WordPress plugin BackupBuddy, which is installed on over 140,000 websites.
Failles / vulnérabilités
New Linux malware evades detection using multi-stage deployment
A new stealthy Linux malware known as Shikitega has been discovered infecting computers and IoT devices with additional payloads.
Justice / police / réglementation
12 Arrested as Interpol Takes Down Transnational Sextortion Ring
Interpol has confirmed the dismantling of a transnational sextortion gang that raked in a whopping $47,000 from dozens of victims.
FBI warns of Vice Society ransomware attacks on school districts
FBI, CISA, and MS-ISAC warned today of U.S. school districts being increasingly targeted by the Vice Society ransomware group, with more attacks expected after the new school year start.
Espagne : Dix ans de prison pour avoir poussé un ado au suicide sur WhatsApp
Un sexagénaire a été condamné mardi pour avoir provoqué la mort d’un mineur de 17 ans, qui s’était jeté dans le vide après avoir été bombardé de 119 messages en quelques heures.
Indemnisation des cyber-rançons : les assureurs ravis, les experts cyber furieux
Le gouvernement va autoriser les assureurs à rembourser la rançon payée par leurs clients suite à une cyberattaque, à la seule condition qu’une plainte soit déposée dans les 48 heures suivantes. Cette mesure, qui met fin à un flou de plusieurs années, est très bien accueillie par les assureurs car elle conforte leurs pratiques.
Instagram Fined $402 Million in EU for Allegedly Mishandling Children’s Data
Instagram is being hit with the second-largest European Union privacy fine for allegedly mishandling data about children, ramping up the bloc’s enforcement of its privacy law against big technology companies.
Suisse
Cyberattaque contre Läderach: des données publiées sur le darkweb (update)
Le chocolatier suisse Läderach a fait état d’une cyberattaque à son encontre, qui a affecté sa production, sa logistique et son administration. Le gang de ransomware Bianlian a publié des données sur le darkweb.
Armasuisse teste une tech romande pour partager ses données en toute sécurité
La solution de Tune Insight, spin-off de l’EPFL, est testée par le Cyber-Defence Campus d’Armasuisse, dans l’objectif d’un partage confidentiel de données relatives aux cybermenaces.
Divers
Ukraine dismantles more bot farms spreading Russian disinformation
The Cyber Department of the Ukrainian Security Service (SSU) dismantled two more bot farms that spread Russian disinformation on social networks and messaging platforms via thousands of fake accounts.
Albania interrupted diplomatic ties with Iran over the mid-July attack
Albania interrupted diplomatic ties with Iran and expelled the country’s embassy staff over the mid-July attack.
Facebook Has No Idea What Data It Has
This is from a court deposition: Facebook’s stonewalling has been revealing on its own, providing variations on the same theme: It has amassed so much data on so many billions of people and organized it so confusingly that full transparency is impossible on a technical level.
