<\/p>\n
<\/p>\n
Actualit\u00e9 de la Cybers\u00e9curit\u00e9<\/strong><\/p>\n<\/div>\n Revue de presse<\/strong><\/p>\n CSIRT IICRAI<\/strong><\/p>\n Mercredi 05 juin 2019<\/span><\/strong><\/p>\n CYBERCRIME<\/span><\/strong><\/p>\n<\/div>\n The Australian National University suffered a major, sophisticated attack<\/span><\/em><\/strong><\/p>\n The Australian National University suffered a vast hack carried out by a \u201csophisticated operator\u201d who gained access to 19 years of sensitive data.<\/span><\/p>\n Securityaffairs.co<\/span><\/a><\/span><\/p>\n Norsk Hydro Q1 2019 Profits Sank Following Ransomware Attack<\/span><\/strong><\/em><\/p>\n The first quarter profits for Norsk Hydro sank after the Norwegian aluminum and renewable energy company fell victim to a ransomware attack. Securityboulevard.com<\/span><\/a><\/span><\/p>\n An Inside Look at the Evolution of a West African Cybercriminal Startup Turned BEC Enterprise<\/span><\/em><\/strong><\/p>\n Following an unsuccessful business email compromise (BEC) attack against a security firm, researchers have used active defense techniques to gain unprecedented insight into a Nigerian scamming group. The initial attack purported to be an email from the firm’s CEO asking the CFO to instigate \u00ab\u00a0a domestic wire transfer to a vendor.\u00a0\u00bb<\/span><\/p>\n Securityweek.com<\/span><\/a><\/span><\/p>\n MALWARE<\/span><\/strong><\/p>\n<\/div>\n HiddenWasp : un programme malveillant d\u00e9tect\u00e9 sur Linux, capable de contr\u00f4ler totalement les machines infect\u00e9es<\/span><\/em><\/strong><\/p>\n Les chercheurs d’Intezer ont d\u00e9couvert la semaine derni\u00e8re une porte d\u00e9rob\u00e9e sous Linux surnomm\u00e9e HiddenWasp. Selon les chercheurs, cette porte d\u00e9rob\u00e9e est une suite de programmes comprenant un cheval de Troie, un rootkit et un script de d\u00e9ploiement initial. Linux.developpez.com<\/span><\/a><\/span><\/p>\n Platinum is back<\/span><\/strong><\/p>\n In June 2018, Kaspersky came across an unusual set of samples spreading throughout South and Southeast Asian countries targeting diplomatic, government and military entities. The campaign, which may have started as far back as 2012, featured a multi-stage approach and was dubbed EasternRoppels. The actor behind this campaign, believed to be related to the notorious PLATINUM APT group, used an elaborate, previously unseen steganographic technique to conceal communication.<\/span><\/p>\n Securelist.com<\/span><\/a><\/span><\/p>\n Magecart skimmers found on Amazon CloudFront CDN<\/span><\/strong><\/em><\/p>\n Late last week, MalwareBytes observed a number of compromises on Amazon CloudFront \u2013 a Content Delivery Network (CDN) \u2013 where hosted JavaScript libraries were tampered with and injected with web skimmers.<\/span><\/p>\n Blog.malwarebytes.com<\/span><\/a><\/span><\/p>\n HACK<\/span><\/strong><\/p>\n<\/div>\n How Hackers Use Social Media To Profile Targets<\/span><\/strong><\/em><\/p>\n As cybercrime is all about monetary gain, attackers know that the more intelligence they gather about their targets the easier it is to achieve a compromise. On the other hand, most people voluntarily share large amounts of personal information on social networks without fully appreciating the risks. In this post, we\u2019ll find out how hackers use social media to profile targets and how you can protect yourself and your business.<\/span><\/p>\n Sentinelone.com<\/span><\/a><\/span><\/p>\n Newly Discovered Tap \u2019n Ghost Attack Let Hackers to Remotely Control Android Smartphones<\/span><\/strong><\/em><\/p>\n A new attack dubbed Tap \u2018n Ghost targets NFC enabled Android smartphones, let attackers to trigger malicious events on the victim\u2019s smartphone and to take control over the smartphone remotely.<\/span><\/p>\n Gbhackers.com<\/span><\/a><\/span><\/p>\n VULNERABILITIES<\/span><\/strong><\/p>\n<\/div>\n Even the NSA is urging Windows users to patch BlueKeep (CVE-2019-0708)<\/span><\/strong><\/em><\/p>\n After Microsoft warned Windows users on two separate occasions to patch a severe security flaw known as BlueKeep, now, the US National Security Agency has echoed the OS maker’s warning in the hopes of avoiding another WannaCry-like incident.<\/span><\/p>\n Zdnet.com<\/span><\/a><\/span><\/p>\n Unpatched Bug Let Attackers Bypass Windows Lock Screen On RDP Sessions<\/span><\/strong><\/em><\/p>\n A security researcher today revealed details of a newly unpatched vulnerability in Microsoft Windows Remote Desktop Protocol (RDP). Thehackernews.com<\/span><\/a><\/span><\/p>\n Kb.cert.org<\/span><\/a><\/span><\/p>\n PRIVACY<\/span><\/strong><\/p>\n<\/div>\n Protecting Yourself from Identity Theft<\/span><\/strong><\/em><\/p>\n I don’t have a lot of good news for you. The truth is there’s nothing we can do to protect our data from being stolen by cybercriminals and others. Schneier.com<\/span><\/a><\/span><\/p>\n Ledecodeur.ch<\/span><\/a><\/span><\/p>\n REPORTS & WHITE PAPERS<\/span><\/strong><\/p>\n<\/div>\n Wajam: From start-up to massively-spread adware<\/span><\/strong><\/em><\/p>\n How a Montreal-made \u00ab\u00a0social search engine\u00a0\u00bb application has managed to become a widely-spread adware, while escaping consequences<\/span><\/p>\n Welivesecurity.com<\/span><\/a><\/span><\/p>\n BUZZ<\/span><\/strong><\/p>\n<\/div>\n La France bannit les IA de pr\u00e9diction des comportements des juges<\/span><\/strong><\/em><\/p>\n Les technologies de justice pr\u00e9dictive sont-elles une menace pour la soci\u00e9t\u00e9 ?<\/span><\/p>\n Intelligence-Artificielle.developpez.com<\/span><\/a><\/span><\/p>\n
\nAccording to Reuters, Norsk Hydro\u2019s gains fell to 559 million Norwegian crowns (approximately $64.3 million at the time of reporting) in the first quarter of 2019. That number is down from 3.15 billion crowns a year earlier, constituting a drop of 82 percent.<\/span><\/p>\n
\nEn compl\u00e9ment de la revue de presse du 31\/05\/2019<\/i><\/span><\/p>\n
\nTracked as CVE-2019-9510, the reported vulnerability could allow client-side attackers to bypass the lock screen on remote desktop (RD) sessions.<\/span><\/p>\n
\nil faut partir du principe que nos donn\u00e9es ont probablement d\u00e9j\u00e0 \u00e9t\u00e9 vol\u00e9es plusieurs fois et que la meilleure option consiste \u00e0 s\u2019assurer qu\u2019elles ne soient pas utilis\u00e9es contre nous!<\/i><\/span><\/p>\n