Le tour des actus cybersécurité

Voici le rapport de veille de la semaine faisant le tour des actualités les plus intéressantes. Certaines d’entre elles seront développées dans les prochains articles. Bonne lecture et merci pour le café 😉

Vol / perte de données

Les données volées par des hackers à Continental en vente sur Internet
L'équipementier automobile allemand est victime d'un vol massif de données. Celles-ci sont aujourd'hui en vente pour 50 millions de dollars….-Cybersécurité

https://www.bitdefender.com/blog/hotforsecurity/police-published-sexual-assault-victims-names-and-addresses-on-its-website/

White House expected to issue executive order reining in spyware
The prospect of an executive order limiting use of spyware within U.S. intelligence unleashes potentially even more debate in Washington.

Cyberattaques / fraudes

Iranian hackers use Log4Shell to mine crypto on federal computer system
Iranian hackers utilized a flaw in the ubiquitous open-source software library Log4j to breach a U.S. federal agency.

CommonSpirit Health Cyber Attack Ransomware 2022
According to analysts, healthcare tends to lag behind other industries in terms of bolstering cyber threat prevention and defense mechanisms.

Iran-linked threat actors compromise US Federal Network
Iran-linked threat actors compromised a Federal Civilian Executive Branch org using a Log4Shell exploit and installed a cryptomining malware.

https://securityaffairs.co/wordpress/138622/apt/dtrack-backdoor-targets-europe-latin-america.html

China-linked APT Billbug breached a certificate authority in Asia
A China-linked APT breached a digital certificate authority in Asia as part of a campaign aimed at government agencies since March 2022.

Lockbit gang leaked data stolen from global high-tech giant Thales
The Lockbit 3.0 ransomware gang started leaking the information allegedly stolen from the global high-tech company Thales.

FBI: Hive ransomware extorted $100M from over 1,300 victims
The Federal Bureau of Investigation (FBI) said today that the notorious Hive ransomware gang has successfully extorted roughly $100 million from over a thousand companies since June 2021.

Failles / vulnérabilités

EXCLUSIVE Russian software disguised as American finds its way into U.S. Army, CDC apps
Thousands of smartphone applications in Apple and Google’s online stores contain computer code developed by a technology company, Pushwoosh, that presents itself as based in the United States, but is actually Russian, Reuters has found.

Justice / police / réglementation

L’Ukraine signe la Convention d’extradition
Gestion des cookies We use cookies on our website to give you the most relevant experience by remembering your preferences and repeat visits. By clicking “Accept”, you consent to the use of ALL the cookies.

Ukraine Police dismantled fraud group that made €200M per year
Ukraine’s Cyber Police and Europol arrested 5 Ukrainian citizens that are members of a large-scale international criminal scheme.

The FBI Came Close to Deploying Spyware for Domestic Investigations
While the government had previously claimed it had no interest in using spyware to investigate criminals, new reporting from the NYT suggests otherwise.

Police Celebrate Arrest of 59 Suspected Scammers
Month-long European operation focused on online fraudsters

Suisse

Top Zeus Botnet Suspect “Tank” Arrested in Geneva
Vyacheslav “Tank” Penchukov, the accused 40-year-old Ukrainian leader of a prolific cybercriminal group that stole tens of millions of dollars from small to mid-sized businesses in the United States and Europe, has been arrested in Switzerland, according to multiple sources. Penchukov was named in a 2014 indictment by the U.S.

Divers

Twitter’s SMS Two-Factor Authentication Is Melting Down
Problems with the important security feature may be some of the first signs that Elon Musk’s social network is fraying at the edges.

Catégories

Sur les réseaux sociaux

Contact

Le tour des actus cybersécurité | 20 nov 2022

Vol / perte de données

Les données volées par des hackers à Continental en vente sur Internet

White House expected to issue executive order reining in spyware

Cyberattaques / fraudes

Iranian hackers use Log4Shell to mine crypto on federal computer system

CommonSpirit Health Cyber Attack Ransomware 2022

Iran-linked threat actors compromise US Federal Network

China-linked APT Billbug breached a certificate authority in Asia

Lockbit gang leaked data stolen from global high-tech giant Thales

FBI: Hive ransomware extorted $100M from over 1,300 victims

Failles / vulnérabilités

EXCLUSIVE Russian software disguised as American finds its way into U.S. Army, CDC apps

Justice / police / réglementation

L’Ukraine signe la Convention d’extradition

Ukraine Police dismantled fraud group that made €200M per year

The FBI Came Close to Deploying Spyware for Domestic Investigations

Police Celebrate Arrest of 59 Suspected Scammers

Suisse

Top Zeus Botnet Suspect “Tank” Arrested in Geneva

Divers

Twitter’s SMS Two-Factor Authentication Is Melting Down

Mots-clés

1 commentaire

Catégories

Sur les réseaux sociaux

Contact

Le tour des actus cybersécurité | 20 nov 2022

Vol / perte de données

Cyberattaques / fraudes

Failles / vulnérabilités

Justice / police / réglementation

Suisse

Divers

Partager cette info

S'incrire à la newsletter

Mots-clés

Vous devriez également aimer

1 commentaire

S'incrire à la newsletter