Actus pour LeDécodeu

L’hebdo cybersécurité | 15 janv 2023

Voici le rapport de veille de la semaine faisant le tour des actualités les plus intéressantes. Certaines d’entre elles seront développées dans les prochains articles. Bonne lecture et merci pour le café 😉

Vol / perte de données

Social marketplace Trustanduse exposes nearly half a million users

Disclosing personal data on platforms providing digital services is always risky. The Cybernews research team identified a publicly accessible database storing up to 855GB of sensitive user and business data that belongs to social marketplace trustanduse.com. The leaked database was first found on June 21 and remained potentially accessible to threat actors for at least six months.

Canada’s largest alcohol retailer’s site hacked to steal credit cards

The Liquor Control Board of Ontario (LCBO), a Canadian government enterprise and the country’s largest beverage alcohol retailer, revealed that unknown attackers had breached its website to inject malicious code designed to steal customer and credit card information at check-out.

The Guardian Confirms UK Members’ Data Was Accessed in Ransomware Attack

The Guardian has confirmed that threat actors stole the personal data of UK staff members during the ransomware attack that affected its systems on December 20, 2022. The updates come from The Guardian Media Group’s chief executive, Anna Bateson, and The Guardian’s editor-in-chief, Katharine Viner, who emailed staff members on Wednesday.

CircleCI says hackers stole encryption keys and customers’ source code

In a post-mortem, CircleCi blamed malware stole an employee’s session token allowing intruders to access customer data.

Cyberattaques / fraudes

Vice Society ransomware claims attack on Australian firefighting service

Australia’s Fire Rescue Victoria has disclosed a data breach caused by a December cyberattack that is now claimed by the Vice Society ransomware gang. Fire Rescue Victoria (FRVP) is a fire and rescue service operating across 85 stations in the Australian state of Victoria that has approximately 4,500 operational and corporate employees.

ChatGPT is enabling script kiddies to write functional malware

Since its beta launch in November, AI chatbot ChatGPT has been used for a wide range of tasks, including writing poetry, technical papers, novels, and essays and planning parties and learning about new topics. Now we can add malware development and the pursuit of other types of cybercrime to the list.

Royal Mail’s Attackers Linked to Russia-Backed LockBit

The infamous Russia-backed LockBit ransomware group has been identified as potential culprits behind the recent cyber-incident involving the UK’s postal service. On January 11, 2023, while Royal Mail’s international deliveries were severely disrupted because of a « cyber-incident, » printers at a distribution site of the UK’s postal service in Belfast, Northern Ireland, started printing ransom notes.

Airline company Air France-KLM discloses security breach

Airline company Air France-KLM announced it has suffered a data breach, data belonging to customers of its loyalty program Flying Blue were exposed. The Flying Blue loyalty program is used by other airlines, including Aircalin, Kenya Airways, TAROM, and Transavia.

GitHub disables pro-Russian hacktivist DDoS pages

Written by AJ Vicens Jan 12, 2023 | CYBERSCOOP GitHub on Tuesday disabled accounts on the platform belonging to a pro-Russian hacktivist group linked to attacks on entities in NATO countries, including efforts to disrupt the websites of Denmark’s central bank and other financial institutions in the country, GitHub confirmed to CyberScoop.

Russian Hackers Targeted Three US Nuclear Research Labs

According to reports, a group of Russian hackers targeted three high-profile nuclear research laboratories in 2021.

Pro-Russian Hacktivist Group Targets Czech Presidential Election

The pro-Russia hacktivist group known as NoName057(16) has recently started new attacks against organizations and businesses across Poland, Lithuania and other countries. Most recently, the group began targeting the websites of the Czech presidential election candidates.

Failles / vulnérabilités

Russian Hackers Eager to Bypass OpenAI’s Restrictions to Abuse ChatGPT

According to Check Point Research (CPR), Russian hackers are trying to bypass OpenAI’s restrictions for the malicious use of ChatGPT.

L’EPFZ a identifié des failles dans le chiffrement de Threema

Une équipe de chercheurs du département informatique de l’EPF de Zurich a passé Threema au crible. Le groupe de cryptographie appliquée de la haute école a examiné la technologie de chiffrement du service de messagerie suisse et découvert plusieurs points faibles. Le 9 janvier, les chercheurs ont publié un document détaillant sept scénarios d’attaque possibles.

US Department of the Interior’s passwords « easily cracked »

It’s bad news for the US Department of the Interior-a Government watchdog’s security audit has revealed its passwords are simply not up to the job of warding off cracking attempts. The audit’s wordy title was not kind: P@s$w0rds at the U.S.

Justice / police / réglementation

Call centres selling fake crypto taken down in Bulgaria, Serbia and Cyprus | Europol

The Action day on 11 January 2022 led to: 15 arrests, 14 in Serbia and one in Germany; 261 individuals questioned, some of whom are awaiting prosecution (42 in Bulgaria, 2 in Cyprus, 3 in Germany and 214 in Serbia); 22 locations searched (5 in Bulgaria, 2 in Cyprus, 15 in Serbia) including: 4 call centres and 11 residences…

TikTok Fined $5.4 Million by French Regulator for Violating Cookie Laws

The French data protection watchdog has fined TikTok €5 million for failing to comply with cookie consent regulations.

Suisse

WEF’s Global Risks Report 2023 Keeps Cybersecurity on the Agenda

A lot has happened in the 12 months since the World Economic Forum’s (WEF) previous « Global Risks Report. » Russia invaded Ukraine. The consequential impact on the supply of food and energy has led to a cost-of-living crisis being experienced by many. Extreme weather events have become a reality for more and more people.

Divers

Un bug informatique bloque les vols aux Etats-Unis – Le Monde Informatique

La base de données Notam (Notice to air missions) gérée par l’aviation civile américaine a subi une panne interdisant en début de matinée tout trafic aérien aux Etats-Unis. Le service a repris progressivement depuis. C’est une chose assez rare, mais les Etats-Unis ont été privés de trafic aérien ce matin jusqu’à 9h (15h heure française).

un petit clic pour ma veille
un super clic pour la maintenance du blog

Veilleur et spécialiste en cybersécurité

Post a comment

Votre adresse e-mail ne sera pas publiée. Les champs obligatoires sont indiqués avec *

Ce site utilise Akismet pour réduire les indésirables. En savoir plus sur comment les données de vos commentaires sont utilisées.

S'incrire à la newsletter

Inscrivez-vous et recevez la synthèse des nouveaux articles directement dans votre boîte aux lettres.

Merci pour votre inscription !

Un erreur s'est produite. Merci d'essayer à nouveau ou utiliser le formulaire disponible dans la barre latérale du site.

Send this to a friend