👁 socat @socat@nanao.cybtex.fr
Peek-a-boo! 👻 / Schrödinger 🐈
Inscrit·e en jan. 2021
👁 socat
a partagé
CVE-2022-0847 - A flaw was found in the way the « flags » member of the new pipe buffer structure was lacking proper initialization in copy_page_to_iter_pipe and push_pipe functions in the 🐧 Linux kernel and could thus contain stale values. An unprivileged local user could use this flaw to write to pages in the page cache backed by read only files and as such escalate their privileges on the system. #vuln #linux #informatique
👁 socat
a partagé
🔥 (CVE-2022-26485 & CVE-2022-26486) 0-day ITW #vuln #mozilla #firefox #browser #threats #informatique
https://www.mozilla.org/en-US/security/advisories/mfsa2022-09/
👁 socat
a partagé
🇷🇴 Le prestataire informatique Telekom du groupe pétrolier The Rompetrol Group N.V sérieusement impacté par une attaque informatique de type ransomware. « KMG International owns the largest and most modern refinery in Romania and .. the Black Sea region » #romania #oil #gas #logistics #international #cyber #energies #malware #threats #hive #industry #ransomware #europe #market #sabotage #distribution #drilling #network #disruptive #informatique
https://dnsc.ro/vezi/document/dnsc-comunicat-presa-incident-rompetrol
👁 socat
a partagé
🇺🇸 U.S microchip powerhouse Nvidia hit by cyber attack, parts of its business are « completely compromised ». « We are investigating an incident. We don't have any additional information to share at this time. » #usa #chips #russia #cyber #nvidia #semiconductors #networks #business #incident #technology #software #electronic #chips #industry #technologies #solutions #threats #network #informatique
https://www.telegraph.co.uk/business/2022/02/25/us-microchip-powerhouse-nvidia-hit-cyber-attack/
👁 socat
a partagé
🇬🇧 UK's Defence Academy (da.mod.uk), the Ministry of Defence's (MoD), academic arm, suffered a cyberattack with « significant consequences » #uk #ministry #military #education #cyber #government #threats #disruptive #defense #software #databreach #informatique
👁 socat
a partagé
🇯🇵 Cyberattack on Mitsubishi Electric Corp. compromise Japan's National Security. Radars, guided missiles, and other defence equipment are made by Mitsubishi Electric. Hackers targeted NEC and Mitsubishi Electric, while Olympus was forced to halt operations in Europe, the Middle East, and Africa after being infected with the BlackMatter ransomware. #japan #cyber #threats #ransomware #databreach #military #intel #japon #informatique
https://techstory.in/japan-defence-ministry-finds-security-threat-in-hack/
👁 socat
a partagé
🇫🇷 Une partie des systèmes informatiques de CompuGroup Medical SE & Co. KGaA (cgm.com), l'une des principales entreprises mondiales dans le domaine de la santé en ligne, impactée par une attaque informatique. CGM est le plus grand développeur européen d'automatisation des #soins primaires. Des mises à jour logicielles de cabinets médicaux probablement retardées. #germany #europe #allemagne #france #ransomware #healthcare #medical #digital #health #databreach #backdoors #supply #chain #cyber #threats #malware #santé #pharma #numérique #télésoin #informatique
👁 socat
a partagé
🇧🇪 Le Ministère de la Défense (mil.be) a reconnu dans la nuit de dimanche 19 décembre 2021 avoir été visé par une attaque informatique qui semble majeure car elle paralyse une partie de ses activités depuis plusieurs jours. #belgium #government #ministry #cyber #gouvernement #threats #disruptive #software #gouvernement #outage #defense #belgique #informatique
👁 socat
a partagé
🇫🇷 Le groupe Inetum (inetum.com), anciennement GFI ( Groupe Français d'Informatique ) impacté par une attaque informatique perpétrée ce dimanche 19 décembre 2021. #france #numérique #ransomware #cyber #internet #threats #databreach #disruptive #digital #outage #software #informatique
https://www.lemagit.fr/actualites/252511212/Cyberattaque-Inetum-est-frappe-par-un-ransomware
Les opérateurs Conti revendiquent de nombreuses attaques, parmi elles :
- 🇺🇸 Dunmore (
dunmore.com)
For more than 50 years, the Dunmore brand has stood for quality in coated, laminated and metalized films. During that time, several diverse industries have come to know our name, as a films manufacturer / coated films manufacturer, for outstanding standard and specialty products. Dunmore's electro-static dissipative (ESD) films protect spacecraft during the construction and integration process.
#USA #RANSOMWARE #CONTI #DATABREACH #AERO #INDUSTRIES #SPACE #CYBER #SATELLITE #THREATS #SPACECRAFT #CRITICAL #METALLIZING #TECHNOLOGY #INSULATION #TRIBOELECTRIC #COATING #OPERATIONS #AIRCRAFT #ELECTROSTATIC #ELECTRO #DISSIPATIVE #MARKETS #LAMINATING #PACKAGING #COMMERCIAL #SERVICES #PRODUCTS #CONVERSION #TAPES #PHOTOVOLTAIC #INSTRUMENTS #CAREERS #STRATEGIC #INNOVATIONS #DEVELOPMENT #PROJECTS #FILMS #MANAGEMENT #LAYERS #CERTIFICATIONS
Les opérateurs Everest ont proposé pour le Black Friday des promotions sur des accès intranet/extranet. Une université française semble avoir été compromise.
University employee access. Email, vpn. Access to internal infrastructure via anyconnect. Price 10k$
En lien avec Eduservices ?
A suivre..
🇫🇷 Compromission du portail d'abonnement L'Express à des fins malveillantes.
🔥 Une injection de code malveillant a été identifiée sur l'espace boutique d'un hebdomadaire français.
Les pages sont piégées par un code de type JavaScript payment card-skimmer. Celui-ci se charge d'ajouter des champs de saisie dans le navigateur de la victime afin de collecter et d'exfiltrer ses informations bancaires.
Credit: Anis H.
RETEX de la compromission du SI de l'AFNOR (afnor.org) - Février 2021, les systèmes Windows sont infectés par le #ransomware #Ryuk, c'est la paralysie généralisée, tout s'écroule.
« An experience you wouldn't wish to anyone... but highly instructive »
Les opérateurs Vice Society diffusent des données relatives à :
- 🇩🇪 City of Witten (
witten.de)
Located in the southeast of the Ruhr area in the state of North Rhine-Westphalia and is a large city in the Ennepe-Ruhr district in the administrative district of Arnsberg.
- 🇬🇧 Holy Family RC & CE College (
hfch.co.uk)
St Joseph's RC High School is a mixed secondary school located in Heywood in the English county of Greater Manchester. The message of Christ is at the very heart of the education we look to provide here at Holy Family instilling the values of Faith, Integrity, Compassion, Perseverance and Community in our young people.
#GERMANY #RANSOMWARE #CITY #DATABREACH #UK #VICESOCIETY #SCHOOLS
Le(s) opérateur(s) de Moses Staff revendiquent huit (8) nouvelles attaques informatiques ciblant des entités israéliennes.
- 🇮🇱 H.G.M Engineering (
hgm-eng.co.il) - 🇮🇱 David Engineers (
davideng.co.il) - 🇮🇱 Ehud Leviathan Engineering (
e.ehudl.co.il) - 🇮🇱 AHEC Tax Solutions (
ahec-tax.co.il) - 🇮🇱 V-ON
- 🇮🇱 Matitiahu Bruchim Law office
- 🇮🇱 Unit 8200
- 🇮🇱 [22TB] 3D imagery of israel
Et diffusent 28GB de données relatives à 🇮🇱 Epsilor.
Les opérateurs de RansomExx diffusent des données relatives à la communauté de communes :
- 🇮🇹 [530.24GB] Unione dei Comuni Terre di Pianura (
terredipianura.it)
L'Unione comprende i seguenti comuni della bassa pianura bolognese: Baricella, Granarolo dell'Emilia, Malalbergo, Minerbio. Fino al 31 dicembre 2020 ne hanno fatto parte anche i comuni di Budrio e Castenaso. Comprende un'area di 243 km² nella quale risiedono circa 70 000 abitanti. L'Unione è nata su un territorio nel quale emergono analoghe caratteristiche e simili problematiche economiche, ambientali, di viabilità, di sicurezza e di organizzazione degli Enti.
Les opérateurs de Lorenz revendiquent une attaque contre :
- 🇺🇸 Component Assembly Systems, Inc. (
componentassembly.com)
For over 57 years, Component Assembly Systems, Inc. has been a business built on values, quality construction practices, and innovation. Component Assembly Systems, Inc. is one of the nation’s premier drywall and acoustic specialty contractors, with over $6 billion of completed work in a portfolio spanning over 54 years. We maintain regional offices in New York, Boston, New Jersey, Washington D.C., Philadelphia, Las Vegas, Southern California and Northern California. The TEAMING program has been implemented on more than $130 million in projects for a range of clients including the U.S. Army Corp of Engineers, NAVAC, NY/NJ Port Authority, DASNY and the Greater Philadelphia Urban Affairs Coalition. Component Assembly Systems is the industry leader in custom, cutting-edge information technology solutions. We have mastered the art, design, development, application, implementation, support and management of computer-based information tools.
#USA #CONSTRUCTION #LORENZ #RANSOMWARE #DATABREACH #CUTTING #MARKET #TECHNOLOGIES #CORPORATION #DESIGN #MANAGEMENT #FIRMS #DRYWALL #BUSINESS #MILLWORK #INSTALLATION #INTERIOR #CONTRACTORS #ACOUSTICAL #INNOVATION #CYBER #COMMITMENT #RELATIONSHIPS #INDUSTRY #SHAREHOLDERS #FRAMING #SHEATHING #DRYWALL #CEILINGS #ART #SERVICES #EMPLOYEES #ENTERPRISE #STANDARDS #TRADE #EXTERIOR #CORPORATE #WALL #COMPONENTS #3D #CARPENTRY #MARKETS #LEADERSHIP #SOLUTIONS #SUPPORT #PRODUCTS #BUSINESSES #APPLICATION #BUILDING #BLUEPRINT #SAFETY #THREATS #PROGRAM #ARMY #PROJECTS #COMPLEX #CLIENTS #MODELING #STADIUM #RESIDENTIAL #PLANNING #HEALTHCARE #EDUCATION #CULTURE #HOTELS #COMMERCIAL #PRECONSTRUCTION #EDGE
Les opérateurs Everest vendent aux plus offrants des accès intranet/extranet à :
- 🇧🇷 👮 Police of Brazil
Et revendiquent des attaques avec vols de données contre :
🇫🇷 [75GB] Precredit (
precredit.com)🇫🇷 [21GB] Charlie Hebdo (
charliehebdo.fr)
Les opérateurs de Conti revendiquent des attaques contre :
- 🇺🇸 BenefitExpress (
benefitexpress.info) - 🇮🇹 Socage (
socage.it) - 🇺🇸 Enviroplas, Inc (
enviroplas.com) - 🇨🇳 ARM China (
armchina.com) - 🇳🇮 Agricorp (
agricorp.com.ni) - 🇬🇧 Star Refrigeration (
star-ref.co.uk) - 🇺🇸 L.K. McLean Associates (
lkma.com) - 🇺🇸 EZ Loader Boat Trailers (
ezloader.com) - 🇳🇱 Bochane (
bochane.nl) - 🇺🇸 Mutual Materials (
mutualmaterials.com) - 🇺🇸 Metro Group (
metrogroupinc.com) - 🇺🇸 Portalp (
portalp.com) - 🇦🇹 Vienna Insurance Group (
vig.com) - 🇺🇸 Hudson Brothers Construction Company (
hudsonbros.com) - 🇺🇸 Indian Creek Fabricators Inc. (
indiancreekfab.com) - 🇫🇷 Dalloyau (
dalloyau.fr) - 🇺🇸 M3 (
m3as.com) - 🇦🇺 Trina Solar (
trinasolar.com) - 🇺🇸 Meyer Corporation (
meyerus.com) - 🇫🇷 Jean Floc'h (
jean-floch.com) - 🇮🇹 Argos S.r.l (
argos.company)
#USA #FRANCE #ITALY #UK #NETHERLANDS #AUSTRIA #CHINA #AUSTRALIA #NICARAGUA #RANSOMWARE #CONTI #DATABREACH
Les opérateurs de LockBit 2.0 revendiquent des attaques contre :
- 🇺🇸 GCF Valuation (
gvalue.com) - 🇧🇪 Immo De Laet (
immodelaet.be) - 🇺🇸 BDT Architects & Designers (
bdtaid.com) - 🇺🇸 Morgan Skenderian Real Estate (
morganskenderian.com) - 🇺🇸 Williams, Porter, Day, & Neville (
wpdn.net) - 🇨🇦 DTS Technical Inc. (
dtstechnical.ca) - 🇲🇽 JK TORNEL S.A. (
tornel.com.mx) - 🇺🇸 Growe Eisen Karlen Eilerts (
groweeisen.com) - 🇺🇸 Besttaxfiler (
besttaxfiler.com) - 🇺🇸 RT Tax (
rttax.com) - 🇺🇸 McManis Faulkner (
mcmanislaw.com) - 🇺🇸 Owens Carolina Orthotics & Prosthetics (
owenscarolina.com) - 🇺🇸 True Blue Environmental (
trueblueenvironmental.com) - 🇵🇪 M & M Repuestos y Servicios (
mym.com.pe) - 🇺🇸 Optimum Design (
optimumdesign.com) - 🇺🇸 Arrowhead Advance (
arrowheadadvance.com) - 🇫🇷 Fandi (
fandi.fr) - 🇪🇸 Logistia (
logistia.com) - 🇫🇷 CEPI Management (
cepimanagement.com) - 🇺🇸 Wave Rider Nursery (
waveridernursery.com) - 🇺🇸 WAC Lighting (
waclighting.com) - 🇹🇼 Radium Group (
radium.com.tw) - 🇺🇸 Plumas County (
plumascounty.us) - 🇺🇸 Automated Laundry Systems & Supply (
autolaundrysystems.com) - 🇮🇹 Cilento (
cilentospa.it) - 🇯🇵 Nurihiko (
nurihiko.co.jp) - 🇭🇰 Eban (
eban.com) - 🇬🇧 Royale International Couriers Ltd (
royale.co.uk) - 🇹🇭 Chatrium Hotels & Residences (
chatrium.com) - 🇮🇹 EBERLE S.R.L. (
eberlesrl.com)
#USA #JAPAN #CANADA #HONGKONG #MEXICO #GERMANY #FRANCE #ITALY #BELGIUM #SPAIN #PERU #BELGIQUE #RANSOMWARE #LOCKBIT #DATABREACH
Peek-a-boo! 👻 / Schrödinger 🐈
Inscrit·e en jan. 2021
👁 socat recommande :
