Voici le rapport de veille avec des liens directs vers les actus les plus intéressantes de la semaine passée. Certaines d’entre elles seront développées dans les prochains articles.
Pour information, cette veille est préparée avec un vrai cerveau non artificiel, alors bonne lecture et merci de soutenir le Décodeur !
Les actus sélectionnées cette semaine
BreachForums seized! One of the world’s largest hacking forums is taken down by the FBI… again
Law enforcement agencies worldwide have taken down one of the largest hacker forums, BreachForums, in a major cybercrime bust.
Nigeria Halts Cybersecurity Tax After Public Outrage
In an economy choking on swelling inflation, the Nigerian government paused plans for a levy on domestic transactions, aimed at enhancing cybersecurity.
EXCLUSIVE: Two students uncover security bug that could let millions do their laundry for free
Laundry services giant CSC ServiceWorks ignored requests to fix a security bug.
Black Basta ransomware group is imperiling critical infrastructure, groups warn
Threat group has targeted 500 organizations. One is currently struggling to cope.
Financial institutions have 30 days to disclose breaches under new rules
Amendments contain loopholes that may blunt their effectiveness.
L’équipe chargée de la sécurité d’une super IA chez OpenAI dissoute
Après le départ de ses deux responsables, l’équipe d’OpenAI (ChatGPT) chargée de la sécurité d’une potentielle super intelligence artificielle (IA) a été dissoute. Ses membres ont été intégrés à d’autres groupes de recherche de l’entreprise.
Europol confirms incident after data break-in claims
Intelligence-sharing platform remains down for maintenance
US woman allegedly aided North Korean IT workers infiltrate 300 firms
The U.S. Justice Department charged five individuals today, a U.S. Citizen woman, a Ukrainian man, and three foreign nationals, for their involvement in cyber schemes that generated revenue for North Korea’s nuclear weapons program.
US Offers $5 Million Reward to Stop North Koreans From Spying Via US IT Jobs
Workers affiliated with North Korea have secured remote jobs at US companies, according to the State Department, which is willing to pay up to $5 million for more information about the scheme.
Log4Shell shows no sign of fading, spotted in 30% of CVE exploits – Help Net Security
Organizations continue to run insecure protocols across their WAN, making it easier for cybercriminals to move across networks.
CySecurity News – Latest Information Security and Hacking Incidents: LockBit Ransomware Group Challenges FBI: Opens Contest to Find Dmitry Yuryevich
Explore the intriguing response of the LockBit ransomware group as they challenge FBI allegations and initiate a contes.
Ukrainian, Latvian TV Hijacked to Broadcast Russian Celebrations
At least 15 television channels were interrupted in Ukraine alone, which, reportedly, is not out of the norm in this “information war.”
FBI, DoJ Shut Down BreachForums, Launch Investigation
Instead of online contraband, the website now asks anyone with information that could help with the investigation to contact authorities.
Botnet sent millions of emails in LockBit Black ransomware campaign
Since April, millions of phishing emails have been sent through the Phorpiex botnet to conduct a large-scale LockBit Black ransomware campaign.
INC ransomware source code selling on hacking forums for $300,000
A cybercriminal using the name “salfetka” claims to be selling the source code of INC Ransom, a ransomware-as-a-service (RaaS) operation launched in August 2023.
Authorities Seized Notorious Data Leak Site BreachForums
The notorious data leak site BreachForums has been taken over by the police. Cybercrime and data leaks are still being fought.
Apple blocked $7 billion in fraudulent App Store purchases in 4 years
Apple’s antifraud technology has blocked more than $7 billion in potentially fraudulent transactions in four years, the company states in its latest annual fraud prevention analysis.
MediSecure e-script firm hit by ‘large-scale’ ransomware data breach
Electronic prescription provider MediSecure in Australia has shut down its website and phone lines following a ransomware attack believed to originate from a third-party vendor.
Google Cloud Accidentally Deletes $125 Billion Pension Fund’s Online Account
A major mistake in setup caused Google Cloud and UniSuper to delete the financial service provider’s private cloud account.