Voici le rapport de veille de la semaine faisant le tour des actualités les plus intéressantes. Certaines d’entre elles seront développées dans les prochains articles.
Bonne lecture et merci pour le café car cette veille est produite avec un vrai cerveau non artificiel 😉
A Trojan SDK snuck past Google Play protections to infest 101 Android applications, bent on exfiltrating infected device data.
The Idaho Falls Community Hospital fell victim to a cyberattack on Monday and had to divert ambulances to nearby hospitals and close some of its clinics.
Plusieurs polices cantonales, l’armée, mais aussi les douanes et l’Office fédéral de la police (Fedpol), sont concernés par le piratage de la société informatique alémanique Xplain. Cette attaque montre la vulnérabilité des prestataires IT
Millions of patients will be notified following a suspected ransomware attack on one of America’s largest dental insurers.
The carmaker says it discovered more exposed data following an earlier investigation, including personal information of vehicle owners.
Casepoint is investigating a cybersecurity incident after hackers claimed they compromised the legal tech platform to steal terabytes of data.
Hidden code in hundreds of models of Gigabyte motherboards invisibly and insecurely downloads programs-a feature ripe for abuse, researchers say.
On the same day, Russia’s FSB intelligence service launched wild claims of NSA and Apple hacking thousands of Russians.
The information includes names, test information and 600,000 Social Security numbers
RaidForums, the notorious hacking and data leak forum seized and shut down by the authorities back in April 2022, is – perhaps surprisingly – at the centre of another cybersecurity breach.
The case involves Amazon’s settlement with the FTC over security and privacy violations committed by its subsidiaries, Ring and Alexa.
Security researcher Jeremiah Fowler made a concerning discovery: a non-password-protected database belonging to SimpleTire.
A misconfiguration of Swiss real estate agency Neho’s systems exposed sensitive credentials to the public.
WordPress.com owner Automat has started force installing a security patch on millions of websites today with the help of the WordPress Security Team to address a critical vulnerability in the Jetpack plug-in.
Leading snowboard maker Burton Snowboards notified customers of a data breach after some of their sensitive information was “potentially” accessed or stolen during what the company described in February as a “cyber incident.”
State-sponsored North Korean hacker group Kimsuky (a.ka. APT43) has been impersonating journalists and academics for spear-phishing campaigns to collect intelligence from think tanks, research centers, academic institutions, and various media organizations.
Critical zero-day flaw exploited for 7 months! Backdoor access, data exfiltration, and 3 potent malware strains discovered.
Sneakier & faster! New BlackCat ransomware variant Sphynx sharpening claws on evasion techniques & encryption
On-demand human solvers are now augmenting automated website cyberattacks, offering a better way around tougher anti-bot puzzles.