Voici les incidents majeurs concernant des pertes ou des vols de données découverts la semaine passée.
Vous retrouvez ci-dessous les liens directs vers les articles les plus intéressants. Pour information, cette veille est préparée avec un vrai cerveau non artificiel, alors bonne lecture et merci de soutenir le Décodeur !
Les actus sélectionnées cette semaine
Des milliers de réunions de l’armée allemande étaient accessibles sur le Web
” Plus de 6 000 réunions pouvaient être trouvées en ligne “, a rapporté, samedi, le média ” Zeit online “, dont certaines étaient classifiées.
CySecurity News – Latest Information Security and Hacking Incidents: Facial Recognition System Breach Sparks Privacy Concerns in Australia
Outabox has promised full cooperation with investigations but is under increasing pressure to address the breach’s repercussions promptly.
UnitedHealthcare CEO says ‘maybe a third’ of US citizens were affected by recent hack | TechCrunch
Two months after hackers broke into Change Healthcare systems stealing and then encrypting company data, it’s still unclear how many Americans were UnitedHealth Group CEO Andrew Witty finally gave an estimate of how many Americans were impacted by the hack on the company’s subsidiary Change Healthcare.
Data stolen in Change Healthcare attack likely included U.S. service members, executive says
UnitedHealth Group CEO Andrew Witty tells Senate committee that Change Healthcare didn’t have MFA enabled on the server that was attacked in February, resulting in a $22 million ransom payment.
Le ransomware Lockbit divulgue une montagne de ” données sensibles ” sur des patients français
Lockbit revendique la cyberattaque contre l’hôpital de Cannes. Les cybercriminels ont réclamé une rançon et menacé de divulguer des données sensibles sur les patients. Face au refus ferme des responsables, le gang a divulgué les informations sur le dark web. L’attaque entérine le retour de Lockbit sur le devant de la scène.
European Commission to probe Meta over misinformation
Europe takes action after Facebook parent withdraws monitoring tool
Quantas Customers’ Boarding Passes Exposed in Flight App Mishap
Some customers found that they had the ability to cancel a stranger’s flight to another country after opening the app, which was showing other individuals’ flight details.
Australian pubgoers’ personal info posted to leak site
Man arrested and blackmail charges expected after allegations of unpaid contractors and iffy infosec
FCC Fines Major U.S. Wireless Carriers for Selling Customer Location Data
The U.S. Federal Communications Commission (FCC) today levied fines totaling nearly $200 million against the four major carriers – including AT&T, Sprint, T-Mobile and Verizon – for illegally sharing access to customers’ location information without consent. The fines mark the culmination of a more than four-year investigation into the actions of the major carriers.
KGB von Belarus angeblich gehackt: Telegram-Bot soll Angestellte deanonymisieren
Beim Geheimdienst von Belarus wurden angeblich fast zehntausend Personalakten abgegriffen. Wer will, soll nun Angestellte über ein Foto identifizieren können.
Kaiser Insurance Leaks 13.4M Members’ Data to Online Advertisers
Tracking code used for keeping tabs on how members navigated through the healthcare giant’s online and mobile sites was oversharing a concerning amount of information.
CySecurity News – Latest Information Security and Hacking Incidents: Massive Data Breach Exposes Full Names, Birth Dates, and SSNs of 2 Million Individuals Held by Debt Collector
The breach occurred between February 14 and February 26.
Croatian president hits out at prospect of EU TikTok ban
“TikTok means nothing to me, but it means freedom for my children to use it if they want,” Zoran Milanović said.
Dropbox says hackers stole customer data, auth secrets from eSignature service
Cloud storage firm Dropbox says hackers breached production systems for its Dropbox Sign eSignature platform and gained access to authentication tokens, MFA keys, hashed passwords, and customer information.
Lockbit publie des données sensibles du CH Simone Veil de Cannes – Le Monde Informatique
Données personnelles : Le centre hospitalier de Cannes Simone Veil a confirmé que les données publiées dans la soirée du 1er mai suite à sa récente cyberattaque lui…