Voici le rapport de veille de la semaine faisant le tour des actualités les plus intéressantes. Certaines d’entre elles seront développées dans les prochains articles. Bonne lecture et merci pour le café 😉
Vol / perte de données
How we handled a recent phishing incident that targeted Dropbox
By Dropbox Security Team * Nov 01, 2022 What happened and our response What we’re doing next We were recently the target of a phishing campaign that successfully accessed some of the code we store in GitHub. No one’s content, passwords, or payment information was accessed, and the issue was quickly resolved.
Hackers selling access to 576 corporate networks for $4 million
A new report shows that hackers are selling access to 576 corporate networks worldwide for a total cumulative sales price of $4,000,000, fueling attacks on the enterprise.
Cyberattaques / fraudes
LockBit ransomware claims attack on Continental automotive giant
The LockBit ransomware gang has claimed responsibility for a cyberattack against the German multinational automotive group Continental.
Thales de nouveau inquiété par Lockbit – Le Monde Informatique
Sécurité : Dans un avis publié sur le darknet, le groupe de cyberpirates Lockbit 3.0 revendique une attaque informatique réussie contre Thales. Un ultimatum a…
French-speaking crooks stole $30m in bank cyber-heist spree
Smooth ‘OPERA1ER’ hit orgs around the world over four or more years
Malicious Android apps with 1M+ installs found on Google Play
A set of four malicious applications currently available in Google Play, the official store for the Android system, are directing users sites that steal sensitive information or generate ‘pay-per-click’ revenue for the operators.
Australian Defence Force Communications Service Hit by Ransomware Attack
ForceNet, a communications platform used by Australian military personnel and defense employees, is the latest victim of a ransomware attack.
Failles / vulnérabilités
Samsung Galaxy Store Bug Could’ve Let Hackers Secretly Install Apps on Targeted Devices
Researchers describe a recently reported vulnerability in Samsung’s Galaxy Store app that could have enabled attackers to install and/or launch apps.
Justice / police / réglementation
Hacker Charged With Extorting Online Psychotherapy Service
A 25-year-old Finnish man has been charged with extorting a once popular and now-bankrupt online psychotherapy company and its patients. Finnish authorities rarely name suspects in an investigation, but they were willing to make an exception for Julius “Zeekill” Kivimaki, a notorious hacker who – at the tender age of 17 – had been convicted of more than 50,000 cybercrimes, including data breaches, payment fraud, operating botnets, and calling in bomb threats.
Student Suspected of Running Germany’s Largest Dark Web Market DiDW
Authorities arrested a student in Bavaria on suspicion of his involvement in running one of the country’s largest dark web marketplaces DiDW.
SolarWinds reaches $26m settlement, expects SEC action
One 8-K filing, two bombshells
Suisse
Rapport semestriel du NCSC: la cybertechnologie dans les conflits armés
Informations actuelles de l’administration. Tous les communiqués de l’administration fédérale, des départements et des offices.
Le délégué fédéral à la cybersécurité a représenté la Suisse au sommet international de la Counter Ransomware Initiative à Washington
Informations actuelles de l’administration. Tous les communiqués de l’administration fédérale, des départements et des offices.
Divers
Insurance giant settles NotPetya lawsuit, signaling cyber insurance shakeup
Cyber insurance have already started to find other ways to avoid covering losses related to cyberattacks linked to nation-state hackers.
Second sommet contre les ransomwares à la Maison-Blanche – Le Monde Informatique
Sécurité : Réunis à la Maison-Blanche, les représentants de 36 pays – dont la France avec l’Anssi – et l’UE s’accordent à dire que la lutte contre les…
1 commentaire
Commentaires désactivés.