chirp @minus@nanao.cybtex.fr

Le portail zonebourse.com, le « média financier de référence en 🇫🇷 #France » est en #panne #outage #services #online #threats #informatique

Varnish retournait une erreur 500 depuis un moment, voici le message désormais affiché.

Perturbations ce dimanche 10 mars 2024. ANSSI & DINUM sollicitées. Une cellule de crise activée d'après le cabinet de Gabriel Attal, Premier ministre depuis un mois et 24 jours. #france #government #ddos #online #threats #informatique

Des employés d'un Ministère reçoivent un courriel. Il est question d'un « incident de production concernant les infrastructures du Réseau Interministériel de l'État ». Un volume assez conséquent d'articles pour générer un bruit. À ce jour, aucun communiqué officiel.

Le fameux courriel. Rupture de confidentialité ? Y'a t'il eu d'une façon ou d'une autre un consentement préalable ou est-ce une violation du secret de la correspondance ?

À suivre…

🇬🇧 hosts the first Global Fraud Summit, bringing together leaders from government, law enforcement & the public and private sectors to combat fraud. #uk #usa #interpol #online #escroqueries #frauds #arnaques #numérique #technologies #police #money #trafficking #partnership #digital #citizens #scams #international #crimes #threats [ https://www.gov.uk/government/news/uk-hosts-world-leaders-for-first-global-fraud-summit ] #informatique

🇲🇦 #Morocco : Mise à jour du référentiel de qualification des PASSI. #informatique [ https://www.dgssi.gov.ma/fr/publications/referentiel-de-qualification-des-prestataires-daudit-de-la-securite-des-systemes ]

This blog provides an update on the nation-state attack that was detected by the 🇺🇸 Microsoft Security Team on January 12, 2024. « In recent weeks, we've seen evidence that M⁡id⁢ni⁠ght B⁢⁢lizz⁣ar⁢d is using information initially exfiltrated from our corporate email systems to gain, or attempt to gain, unauthorized access. This has included access to some of the company's source code repositories & internal systems » #usa #microsoft #corporate #technologies #software #apt #systems #networks #email #data #future #corporation #threats #informatique [ https://msrc.microsoft.com/blog/2024/03/update-on-microsoft-actions-following-attack-by-nation-state-actor-midnight-blizzard/ ]

🇫🇷 La Direction Générale de l'Armement a notifié des accords-cadres auprès de cinq (5) sociétés, Alice&Bob (alice-bob.com), C12 (c12qe.com), Pasqal (pasqal.com), ** Quandela** (quandela.com) & Quobly (quobly.io), en vue d'identifier les solutions permettant le développement d'ordinateurs quantiques universels. #france #military #innovative #quantum #technologies #business [ https://www.defense.gouv.fr/dga/actualites/dga-notifie-accords-cadres-aupres-cinq-societes-developpement-dordinateurs-quantiques-universels ] #informatique

🇺🇸 New York Attorney General Letitia James led a bipartisan coalition of 41 attorneys general in sending a letter to Meta Platforms, Inc. ( #Meta ) addressing the recent rise of #Facebook & #Instagram account takeovers by #scammers & #frauds. #usa #citizens #data #hijacking #social #services #online #future #threats [ https://ag.ny.gov/press-release/2024/attorney-general-james-leads-bipartisan-coalition-calling-meta-protect-users ] #informatique

Lecture en français: [ https://fr.ag.ny.gov/press-release/2024/attorney-general-james-leads-bipartisan-coalition-calling-meta-protect-users ]

🇪🇺 C-604/22 « IAB Europe has sought to evade its responsibility for this charade. But the European Court of Justice has set it straight. This decision will not only end the biggest spam operation in history. It will deal a mortal wound to the online tracking-based advertising industry » ( Dr Johnny Ryan ) #europe #data #rgpd #belgium #justice #cjeu #web #advertising #online #brokers #digital #gegevensbeschermingsautoriteit #citizens #threats #gdpr [ https://www.iccl.ie/digital-data/european-court-of-justice-finds-iab-europe-responsible-for-tcf-consent-spam-popups-across-the-internet/ ] [ https://curia.europa.eu/juris/documents.jsf?num=C-604/22 ] #informatique

CVE-2024-25082 : « Fonts are complicated & safely handling them is a difficult problem to solve. You should treat fonts like any other untrusted input ». Excellent billet de Angus Cornall & Peter Kydas avec une conclusion sur laquelle nous devrions porter davantage notre attention. Et « It's not a new idea. In 2015, … ». #fonts #compression #vuln [ https://www.canva.dev/blog/engineering/fonts-are-still-a-helvetica-of-a-problem/ ] #informatique

🚨 VMSA-2024-0006.1 #vmware #software #vuln #threats #informatique [ https://www.vmware.com/security/advisories/VMSA-2024-0006.html ]

Former college track & field coach sentenced to five (5) years in prison. Steve Waithe, 31, formerly of 🇺🇸 Chicago, Ill., and Somerville, Mass., was sentenced by U.S. District Court ⚖️ Judge Patti B. Saris to five (5) years in prison to be followed by three (6) years of supervised release. #usa #justice #sextortion #online #staff #harassment #education #sports #students #college #fraud #threats #cyber #menaces #snapchat #informatique [ https://www.justice.gov/usao-ma/pr/former-college-track-and-field-coach-sentenced-five-years-prison-sextortion ]

🇳🇱 #Netherlands : Duizenden gestolen paspoorten zijn sinds kort te vinden op het dark web, het verborgen deel van het internet. Het gaat in totaal om ruim 5100 digitale kopieën van identiteitsbewijzen die op het dark web zijn gepubliceerd. #web #online #databreach #citizens #idtheft #telegram #digital #identity #snapchat #numerique #ransomware #threats #informatique [ https://www.rtlnieuws.nl/tech/artikel/5437388/nederlandse-paspoorten-dark-web-ransomware-aanvallen ]

🇺🇸 A federal ⚖️ grand jury indicted 🇨🇳 Linwei Ding, aka Leon Ding, charging him with four counts of theft of trade secrets in connection with an alleged plan to steal from Google LLC proprietary information related to AI technology. #usa #justice #google #china #innovative #hardware #ai #technologies #ml #datacenter #threats [ https://www.justice.gov/opa/pr/chinese-national-residing-california-arrested-theft-artificial-intelligence-related-trade ] #informatique

⁠

🇵🇱 P⁢ola⁡nd is receiving a high number of DDoS attacks that originate from 🇷🇺 Ru⁠s⁢si⁢a. #poland #services #ddos #online #threats #informatique [ https://www.euronews.com/2024/03/06/poland-experiences-increase-in-ddos-attacks-from-russia ]

JetBrains TeamCity (jetbrains.com) #software #jetbrains #vuln #threats #informatique [ https://www.rapid7.com/blog/post/2024/03/04/etr-cve-2024-27198-and-cve-2024-27199-jetbrains-teamcity-multiple-authentication-bypass-vulnerabilities-fixed/ ]

• CVE-2024-27198 CVSS v3 9.8)
• CVE-2024-27199 CVSS v3 7.3)

ⓘ LeakIX (leakix.net) added detection for compromised #TeamCity instances ( LeakIX )

📌 « The situation involving two (2) TeamCity vulnerabilities, CVE-2024-27198 & CVE-2024-27199, continues to unfold. Before noting anything else, we should state that dealing with this should be a highest-priority matter for users of the company’ s on-premises CI/CD dev platform – as in, now. » ( [Sophos X-Ops][https://infosec.exchange/@SophosXOps/112051642951259188) )

A new widescale attacks on (hacked) WordPress sites to inject scripts that force visitors' browsers to bruteforce passwords for other sites. #wordpress #software #web #cms #online #threats [ http://blog.sucuri.net/2024/03/from-web3-drainer-to-distributed-wordpress-brute-force-attack.html ] [ https://www.bleepingcomputer.com/news/security/hacked-wordpress-sites-use-visitors-browsers-to-hack-other-sites/ ] #informatique

Microsoft's LinkedIn said on Wednesday it was back up after a brief outage that had impacted thousands of users. #usa #business #online #services #outage #panne [ https://www.reuters.com/technology/linkedin-down-thousands-users-downdetector-shows-2024-03-06/ ] #informatique

🇫🇷 FRANCE 24 (france24.com) victim of a deepfake. Tentative de désinformation par l'usage de deepfake videos. #france #digital #media #tv #medias #press #journalism #deepfake #technologies #numerique #threats #l2i #informatique [ https://www.france24.com/fr/vid%C3%A9o/20240305-france-24-victime-d-un-deepfake-l-intox-continue-de-circuler-sur-le-web ]

🇺🇦 Кіберфахівці ГУР МО України реалізували чергову успішну спецоперацію проти держави-агресора росії - у результаті атаки вдалось отримати доступ до серверів міністерства оборони рф. #ukraine #cyber #military #threats [ https://gur.gov.ua/en/content/soft-shyfry-sekretni-dokumenty-kiberfakhivtsi-hur-zlamaly-minoborony-rosii.html ] #informatique

🇨🇦 City of Hamilton (̀hamilton.ca) ⁠ #canada #city #ransomware #threats [ https://www.hamilton.ca/city-council/news-notices/news-releases/city-update-ongoing-cybersecurity-incident ] #informatique