👁 socat @socat@nanao.cybtex.fr
Peek-a-boo! 👻 / Schrödinger 🐈
Inscrit·e en jan. 2021
L'éditeur français de logiciels spécialisés en sécurité informatique Stormshield annonce avoir subi une intrusion sur son portail dédié à la gestion technique du support client. Des données ont été compromises et du code source relatif aux produits Network Security a été exfiltré.
#FRANCE #CYBER #INFOSEC #INFORMATIQUE #DATABREACH
https://www.stormshield.com/fr/incident-de-securite-stormshield/
[Announce] [Security fix] Libgcrypt 1.9.1 relased.
This version fixes a critical security bug in the recently released version 1.9.0.
There is a heap buffer overflow in libgcrypt due to an incorrect assumption in the block buffer management code. Just decrypting some data can overflow a heap buffer with attacker controlled data, no verification or signature is validated before the vulnerability occurs.
Only one released version is affected:
- Libgcrypt 1.9.0 (released 2021-01-19)
Exploiting this bug is simple and thus immediate action for 1.9.0 users is required. A CVE-id has not yet been assigned. ( CVE-2021-3345 )
https://lists.gnupg.org/pipermail/gnupg-announce/2021q1/000456.html
Vdoo have discovered six major vulnerabilities in Realtek's RTL8195A Wi-Fi module. An attacker can gain remote root access to the Wi-Fi module.
The RTL8195 module is an extremely compact, low-power Wi-Fi module targeted at embedded devices. It has supported software from major vendors such as ARM, Samsung, Google, Amazon and more.
https://www.vdoo.com/blog/realtek-rtl8195a-vulnerabilities-discovered
Les opérateurs derrière le ransomware RansomExx revendiquent une attaque contre :
- 🇨🇱 Indura S.A (
indura.net)
Soluciones Integrales con Gases y Soldaduras para un mundo de procesos. Indura SA operates as an industrial gas company. The Company provides production and distribution of oxygen, acetylene, and nitrogen gases, as well as manufactures welding material and equipment. Indura serves industries worldwide.
📌 L'échantillon de données (1.1 Go) est proposé via InterPlanetary File System.
#CHILE #RANSOMWARE #RANSOMEXX #DATABREACH #INDUSTRIAL #DISTRIBUTION #SUPPORT #MAINTENANCE #NITROGEN #AIR #OXYGEN #ACETYLENE #ARGENTINA #BRASIL #COLOMBIA #ECUADOR #PERU #INDUSTRY #GASES #GAS #MATERIAL #EQUIPMENT #INDUSTRIES
Selon les données publiées par VMware Carbon Black, en 2020, les attaques sur les acteurs de la santé ont ⬆️ de + 9,851% par rapport à 2019.
Classement des 5 premières familles de ransomware qui ont ciblés les clients du secteur de la santé en 2020 :
- Cerber: 58%:
- Sodinokibi: 16%
- VBCrypt: 14%
- Cryxos: 8%
- VBKrypt: 4%
https://www.carbonblack.com/blog/the-state-of-healthcare-cybersecurity/
📁 CyberChef
Around 300 operations in CyberChef allowing you to carry out simple & complex tasks easily.
- Decode a Base64-encoded string
- Convert a date and time to a different time zone
- Parse a Teredo IPv6 address
- Convert data from a hexdump, then decompress
- Decrypt and disassemble shellcode
- Display multiple timestamps as full dates
- Carry out different operations on data of different types
- Use parts of the input as arguments to operations
- ...
Les opérateurs derrière le ransomware Avaddon revendiquent une attaque contre :
- 🇫🇷 SVI Assurances (
svi-assurances.com)
SVI Assurances est un courtier d'assurance présent dans la plupart des secteurs de l'assurance professionnelle. Transport, Construction, RC PRO,.. Nous sommes l'un des leaders de l'assurance VTC en France.
#FRANCE #RANSOMWARE #AVADDON #DATABREACH #COURTIER #COMMERCIAL #BUSINESS #SERVICES #ASSURANCES #TRANSPORT #CONSTRUCTION #GDPR #IMMOBILIER #COURTAGE #ASSURANCES #ASSUREURS #PRÉVOYANCE #FINANCES #RGPD #QUITTANCES #EUROPE #ATTESTATIONS #RÈGLEMENTS #SINISTRES #EXTRANET #GESTION #COMPTES #APPLICATION
Les opérateurs derrière le ransomware Conti diffusent :
- 50% de données dérobées à Supply New England (
supplynewengland.com) soit 6.41 Go.
Et revendiquent des attaques contre :
- 🇺🇸 PrimaFrutta (
primafrutta.com) - 🇨🇦 RE/MAX Kelowna (
remaxkelowna.com) - 🇺🇸 Nocona General Hospital (
noconageneral.com)
Les opérateurs derrière le ransomware DopplePaymer revendiquent des attaques contre :
- 🇯🇵 Yamagata Prefectural Federation of Societies of Commerce & Industry
Located in the southwest corner of Tohoku, facing the Sea of Japan 300km north of Tokyo. It borders Niigata Prefecture & Fukushima Prefecture to the south, Miyagi Prefecture to the east, & Akita Prefecture to the north.
- 🇪🇸 Urbaser Group (
urbaser.com)
Urbaser es uno de los líderes mundiales en gestión medioambiental, una compañía global orientada a la sostenibilidad, que da servicio a más de 50 millones de personas en 20 países a través de una enorme red de más de 30.000 empleados y más de 160 compañías subsidiarias.
- 🇺🇸 Jacobsen Construction Co., Inc. (
jacobsenconstruction.com)
Ranked as one of the nation's top general contractors specializing in healthcare, higher education, commercial, civic, technology, historic renovation & religious projects.
#USA #JAPAN #SPAIN #RANSOMWARE #DOPPLEPAYMER #DATABREACH #COMMERCIAL #INFRASTRUCTURE #CONSTRUCTION #BUILDING #PLANNING #DESIGN #RENOVATION #ARCHITECTURE #ENVIRONMENT #HEALTHCARE #EDUCATION #TECHNOLOGIES #METAL #STEEL #SUPPORT #EQUIPMENT #SERVICES #INDUSTRIAL #BUSINESS #COMMERCIAL
Les opérateurs derrière le ransomware Revil revendiquent une attaque contre :
- 🇺🇸 Reese Pyle Meyer PLL (
reesepyle.com)
Largest law firm in Licking County, with a long tradition of commitment and service to our community. Our attorneys enjoy the highest professional reputations & bring outstanding levels of expertise and experience to the resolution of our client's legal questions & concerns.
#USA #RANSOMWARE #REVIL #DATABREACH #LAW #LEGAL #SERVICES #BUSINESS #CORPORATE #ATTORNEY #ESTATE #PLANNING #TAXATION #LITIGATION #INJURY #JUSTICE #DIVORCE #FIDUCIARY #AVOCATE #ADMINISTRATION #COMMERCIAL #RESIDENTIAL #TAX #FAMILY #CRIMINAL
Une base de données comprenant 650 000 enregistrements relative au portail gouvernemental iranien Ministry of Labor and Social Affair (mcls.gov.ir) est actuellement en vente pour $1400 USD sur l'internet clandestin.
Interview with a LockBit ransomware operator.
LockBit is a ransomware-as-a-service (RaaS) platform.
🇧🇷 Vazamento pode ter exposto na internet 220 milhões de dados pessoais de brasileiros
🇮🇳 Hackers are selling all India Airtel subscribers data including Aadhaar Number.
🇺🇸 American Cable & Comcast Exposed Development Database Online
On December 1st, 2020 the WebsitePlanet research team in cooperation with Security Researcher Jeremiah Fowler discovered a non-password protected database that contained over 1.5 billion records.
- The total size of the database was 477.95 GB and contained 1,507,301,521 (1.5 Billion) records.
Les opérateurs derrière le ransomware Revil revendiquent une attaque contre :
- 🇺🇸 Kahan Kerensky Capossela, LLP (
kkc-law.com)
Connecticut Law Practice KKC is your trusted full-service law practice serving Vernon and Connecticut with unparalleled client experiences & legal services. Our team is full of caring & compassionate individuals with the experience & skills needed to guide you through legal issues surrounding business law, estate planning, family law, elder law, and more. 55 years serving individuals and organizations throughout Connecticut.
#USA #RANSOMWARE #REVIL #DATABREACH #LAW #LEGAL #SERVICES #BUSINESS #CORPORATE #ATTORNEY #ESTATE #PLANNING #TAXATION #LITIGATION #INJURY #JUSTICE #DIVORCE #FIDUCIARY #ADMINISTRATION #COMMERCIAL #RESIDENTIAL #TAX #FAMILY #CRIMINAL
Les opérateurs derrière le ransomware Revil revendiquent une attaque contre :
- 🇱🇹 Civinity Solutions (
civinitysolutions.eu), a part of Civinity (civinity.eu)
Civinity Solutions is an international commercial & public facility management company with more than 3 million sq. m under management across the Baltic states. Civinity Group aims for expansion in Latvia. Civinity has been operating in the market since 1991. Upon the acquisition of AS Hausmaster & SIA RBSSkals Serviss, Civinity Group becomes the largest private real estate managing company in Latvia. Being one of the market's leaders, the company oversees diplomatic offices, as well as shopping and entertainment malls, business centers, municipal buildings, industrial buildings, and other types of facilities in all main Lithuanian and Latvian cities. Civinity Solutions is a part of Civinity, one of the largest residential and commercial facility management providers in the Baltic States.
#LITHUANIA #BALTIC #RANSOMWARE #REVIL #DATABREACH #INDUSTRY #BUILDING #CITIES #OFFICE #DIPLOMATIC #MARKET #ESTATE #BUSINESS #SOLUTIONS #COMMERCIAL #PROJECTS #RESIDENTIAL #APARTMENT #LITUANIE #FACILITY #INDUSTRIAL #SHOPPING #TECHNOLOGIES #TAX #ACCOUNTING #PARTNERS #SMART #ENGINEERING #SYSTEM #SUPPORT #MAINTENANCE
📕 Géopolitique de l'intelligence artificielle (Pascal Boniface)
Après le nucléaire (1945-1949) puis l'espace (1961-1969), voilà que l'Intelligence Artificielle est devenue le nouvel horizon stratégique.
L'actuelle révolution numérique va bouleverser nos conditions de vie autant que les rapports de force internationaux. L'intelligence artificielle va-t-elle créer une corne d'abondance dans laquelle chacun pourra se servir ? Ou au contraire intensifier les inégalités à un stade inconnu pour l'humanité, opposant une poignée de nantis richissimes aux multitudes privées d'emploi et démunies.
#cybernétique #intelligence #asservissement #digital #esclavagisme #numérique
https://www.editions-eyrolles.com/Livre/9782416000553/geopolitique-de-l-intelligence-artificielle
🛠 ssldump v1.3 is out.
This tool is an SSLv3/TLS network protocol analyzer. It identifies TCP connections on the chosen network interface and attempts to interpret them as SSLv3/TLS traffic. When it identifies SSLv3/TLS traffic, it decodes the records and displays them in a textual form to stdout.
Peek-a-boo! 👻 / Schrödinger 🐈
Inscrit·e en jan. 2021
👁 socat recommande :
