Actualité CYBER

 

Bonjour à  tous,
voici les news du jour



Outils/Techniques d'attaque:
============================
Exploitations fonctionnelles de Linux et Windows pour la vulnérabilité Spectre détectées sur VirusTotal

https://v7hnyool4zxq7gdzjbqovtpq4u--exploit-in.translate.goog/2021/14254/

Google publie un code PoC pour une vulnérabilité critique dans Windows 10

https://v7hnyool4zxq7gdzjbqovtpq4u--exploit-in.translate.goog/2021/14258/

Un hacker intercepte l'appel d'une femme au support technique d'Apple et lui a volé tout son argent

https://v7hnyool4zxq7gdzjbqovtpq4u--exploit-in.translate.goog/2021/14257/

HAFNIUM targeting Exchange Servers with 0-day exploits

https://www.microsoft.com/security/blog/2021/03/02/hafnium-targeting-exchange-servers/

'ObliqueRAT' Now Hides Behind Images on Compromised Websites

https://www.darkreading.com/threat-intelligence/obliquerat-now-hides-behind-images-on-compromised-websites-/d/d-id/1340306?_mc=rss_x_drr_edt_aud_dr_x_x-rss-simple

Multi-payload Gootloader platform stealthily delivers malware and ransomware | #malware | #ransomware | #hacking

https://nationalcybersecuritynews.today/multi-payload-gootloader-platform-stealthily-delivers-malware-and-ransomware-malware-ransomware-hacking/

https://www.itsecuritynews.info/multi-payload-gootloader-platform-stealthily-delivers-malware-and-ransomware/

Ransomware targeting Drapeau de l'Inde via malicious document. Ransom note mentions farmer protests. (.sarbloh)

https://twitter.com/MBThreatIntel/status/1366922640754024455

Outils/Techniques de defense:
=============================
Policy Group Calls for Public-Private Cyber-Defense Program

https://www.darkreading.com/threat-intelligence/policy-group-calls-for-public-private-cyber-defense-program/d/d-id/1340308?_mc=rss_x_drr_edt_aud_dr_x_x-rss-simple

Les chercheurs d’Avast obtiennent des données sur les victimes du malware Ursnif

https://www.undernews.fr/malwares-virus-antivirus/les-chercheurs-davast-obtiennent-des-donnees-sur-les-victimes-du-malware-ursnif.html

Cybersecurity researchers build a better 'canary trap'

https://www.sciencedaily.com/releases/2021/03/210301112400.htm

RGPD:
======

LEAKS:
======
Oxfam Australia confirms 'supporter' data accessed in cyber attack

https://www.itnews.com.au/news/oxfam-australia-confirms-supporter-data-accessed-in-cyber-attack-561657

Piratages:
==========
Cryptocurrency Firm Tether Refuses to Pay Ransom to Hackers

https://www.databreachtoday.com/cryptocurrency-firm-tether-refuses-to-pay-ransom-to-hackers-a-16090?utm_source=dlvr.it&utm_medium=twitter

https://v7hnyool4zxq7gdzjbqovtpq4u--exploit-in.translate.goog/2021/14259/

Des hackers chinois attaquent les fabricants indiens de vaccins COVID-19

https://v7hnyool4zxq7gdzjbqovtpq4u--exploit-in.translate.goog/2021/14255/

L'attaque de Ryuk a coûté 67 millions de dollars à l'un des plus grands fournisseurs de services médicaux aux États-Unis

https://v7hnyool4zxq7gdzjbqovtpq4u--exploit-in.translate.goog/2021/14253/

Fr Boat builder Beneteau admits to cyber/malware attack

https://translate.google.com/translate?sl=en&tl=fr&u=https://www.dslreports.com/forum/r33047516-Fr-Boat-builder-Beneteau-admits-to-cyber-malware-attack%2333047516

Payroll/HR Giant PrismHR Hit by Ransomware?

https://krebsonsecurity.com/2021/03/payroll-hr-giant-prismhr-hit-by-ransomware/

Tentative d’intrusion : ce que dit et ne dit pas Lactalis

https://www.lemagit.fr/actualites/252497166/Tentative-dintrusion-ce-que-dit-et-ne-dit-pas-Lactalis

Histoire:
=========
Aaron SWARTZ

https://fr.wikipedia.org/wiki/Aaron_Swartz
Technologies:
=============

Cosmopolitan – Compiler un binaire unique multi-OS

https://korben.info/cosmopolitan-compiler-binaire-unique-multi-os.html

 

Microsoft Azure Storage Explorer 1.18.0 (Freeware)

https://anith.com/microsoft-azure-storage-explorer-1-18-0-freeware/

 

Increased cyber-biosecurity for DNA synthesis

https://www.nature.com/articles/s41587-020-00761-y.pdf