Voici le rapport de veille de la semaine faisant le tour des actualités les plus intéressantes. Certaines d’entre elles seront développées dans les prochains articles. Bonne lecture et merci pour le café 😉
Vol / perte de données
After Attacking Medical Center, Hackers Leak Patients’ Abortion Details on the Dark Web
In a disgusting move, cybercriminals published the personal medical details of individual patients to the internet this week.
Medibank won’t pay ransom as more stolen data shows up on dark web
Australian health insurer calls the release of data compromised in recent security breach “disgraceful”, saying it will not fork out any ransom payment based on expert advice and government guidelines.
Cyberattaques / fraudes
Australia blames Russia for hosting health insurance hackers
Crims accessed 10 million customer records and are releasing intimate medical details
An initial access broker claims to have hacked Deutsche Bank
An initial access broker claims to have hacked Deutsche Bank and is offering access to its systems for sale on Telegram.
Canadian supermarket chain Sobeys suffered a ransomware attack
Sobeys, the second-largest supermarket chain in Canada, was the victim of a ransomware attack conducted by the Black Basta gang.
$1 billion of FTX customer funds have vanished, Reuters reported
Crypto exchange FTX appears to have been hacked, rumors state that attackers stole $600 million drained from the company’s wallets.
Le cybergang francophone OPERA1ER enchaine les victimes en Afrique – Le Monde Informatique
Intrusion, Hacking et Pare-feu : Identifié en 2019 par l’équipe threat intel de Group-IB, le cybergang francophone OPERA1ER est parvenu à extorquer 11 millions de dollars à des…
Notorious Russian military hacking crew behind October ransomware attacks on Ukraine, Poland
Researchers at Microsoft said a ransomware attack on transportation and logistics companies was the work of Russian military intelligence
A cyberattack blocked the trains in Denmark
At the end of October, a cyber attack caused the trains to stop in Denmark, the attack hit a third-party IT service provider.
Failles / vulnérabilités
Twitter Blue signups disappear a day after fakes and mayhem
Twitter’s new subscription service, Twitter Blue, has apparently gone offline just days after it launched. The $8 subscription tier was unavailable for users to access after first appearing in Twitter’s iOS app earlier this week.
Researcher received a $70k award for Google Pixel lock screen bypass
Google fixed a high-severity security bug affecting all Pixel smartphones that can allow attackers to unlock the devices.
Dangerous SIM-swap lockscreen bypass – update Android now!
A bit like leaving the front door keys under the doormat…
Justice / police / réglementation
LockBit ransomware suspect arrested in Canada, faces charges in US
Authorities arrested the suspect wanted for his alleged role in one of the most prolific ransomware crews in the world.
U.S. seized 18 web domains used for recruiting money mules
The FBI and U.S. Postal Inspection Service have seized eighteen web domains used to recruit money mules for work-from-home and reshipping scams.
Suisse
Divers
La Croix-Rouge veut créer un emblème pour dissuader les cyberpirates
Le CICR propose d’introduire un emblème numérique de la Croix-Rouge et du Croissant-Rouge. Cette mesure permettrait de protéger les systèmes informatiques des établissements médicaux et des bureaux de la Croix-Rouge contre les cyberattaques.
Swiss Re proposes government-backed cyber insurance
Giant forecasts premiums rising to $23b by 2025