Voici la sélection des cyberattaques majeures découvertes durant ce dernier tour de veille hebdomadaire.
Bonne lecture et merci pour le café car cette veille est produite avec un vrai cerveau non artificiel 😉
Kimsuky APT poses as journalists and broadcast writers in attacks
North Korea-linked APT group Kimsuky is posing as journalists to gather intelligence, a joint advisory from NSA and FBI warns.
Online sellers targeted by new information-stealing malware campaign
Online sellers are targeted in a new campaign to push the Vidar information-stealing malware, allowing threat actors to steal credentials for more damaging attacks.
Une cyberattaque hors norme frappe la Suisse, touchant l’armée et de nombreuses polices – Le Temps
Plusieurs polices cantonales, l’armée, mais aussi les douanes et l’Office fédéral de la police (Fedpol), sont concernés par le piratage de la société informatique alémanique Xplain. Cette attaque montre la vulnérabilité des prestataires IT
New Linux Ransomware Strain BlackSuit Shows Striking Similarities to Royal
An analysis reveals striking similarities between the BlackSuit and Royal ransomware strains.
Ransomware attack on US dental insurance giant exposes data of 9 million patients
Millions of patients will be notified following a suspected ransomware attack on one of America’s largest dental insurers.
Legal tech firm Casepoint investigates breach after hackers claim theft of government data
Casepoint is investigating a cybersecurity incident after hackers claimed they compromised the legal tech platform to steal terabytes of data.
Kaspersky Says New Zero-Day Malware Hit iPhones-Including Its Own
On the same day, Russia’s FSB intelligence service launched wild claims of NSA and Apple hacking thousands of Russians.
BlackCat claims the hack of the Casepoint legal technology platform used by US agencies
The BlackCat ransomware gang claims to have hacked the Casepoint legal technology platform used US agencies, including SEC and FBI.
US hospital forced to divert ambulances after cyberattack
The Idaho Falls Community Hospital fell victim to a cyberattack on Monday and had to divert ambulances to nearby hospitals and close some of its clinics.
Enzo Biochem Hit by Ransomware, 2.5 Million Patients’ Data Compromised
The information includes names, test information and 600,000 Social Security numbers
Discord Admins Hacked by Malicious Bookmarks
A number of Discord communities focused on cryptocurrency have been hacked this past month after their administrators were tricked into running malicious Javascript code disguised as a Web browser bookmark. According to interviews with victims, several of the attacks began with an interview request from someone posing as a reporter for a crypto-focused news outlet online.
Kaspersky Reveals iPhones of Employees Infected with Spyware
The CEO of cybersecurity giant Kaspersky, Eugene Kaspersky, revealed that dozens of iPhones used by their senior employees contained spyware
Dark Pink hackers continue to target govt and military organizations
The Dark Pink APT hacking group continues to be very active in 2023, observed targeting government, military, and education organizations in Indonesia, Brunei, and Vietnam.
Russia says US hacked thousands of iPhones in iOS zero-click attacks
Russian cybersecurity firm Kaspersky says some iPhones on its network were hacked using an iOS vulnerability that installed malware via iMessage zero-click exploits. Russia blames these attacks on US intelligence agencies.
Improved BlackCat Ransomware Strikes with Lightning Speed and Stealthy Tactics
Sneakier & faster! New BlackCat ransomware variant Sphynx sharpening claws on evasion techniques & encryption
La Russie accuse les Etats-Unis d’espionner ses diplomates via iPhone – Le Monde Informatique
Intrusion, Hacking et Pare-feu : Le service fédéral de sécurité russe (FSB) accuse les Etats-Unis d’avoir piraté des milliers de smartphones Apple à des fins d’espionnage sur ses…
Panne de Pathé: des données d’Unico Data sont sur le dark web (update)
La récente interruption des services en ligne des cinémas Pathé était due à l’attaque par ransomware subie par le prestataire informatique Unico Data. Ce dernier a admis que des données de ses clients sont publiées sur le dark web.
Ransomware Gangs Adopting Business-like Practices to Boost Profits
Cyber-criminal gangs are mirroring the practices of legitimate businesses to drive efficiencies and increase profits
US intelligence research agency examines cyber psychology to outwit criminal hackers
An Intelligence Advanced Research Projects Activity project looks to study hackers’ psychological weaknesses and exploit them.
Nigerian Cybercrime Ring’s Phishing Tactics Exposed
The criminal enterprise resulted in losses of up to $1m