yaracroft @venom@nanao.cybtex.fr

Proofpoint has identified a likely nation-state sponsored phishing campaign using a possibly compromised Ukrainian armed service member's email account to target European government personnel involved in managing the logistics of refugees fleeing Ukraine. #email #cyber #europe #threats #military #informatique

https://www.proofpoint.com/us/blog/threat-insight/asylum-ambuscade-state-actor-uses-compromised-private-ukrainian-military-emails

🇨🇦 Canada is warning Canadian of an increased threat of cyberattacks amid Rus︀sia's invasion of U︀kraine. #canada #cyber #threats #informatique

https://www.theglobeandmail.com/business/article-ottawa-warns-of-increased-threat-of-cyberattacks/

🇧🇪 Les ministres de la Défense et des Affaires étrangères optent pour la prudence en l'absence d'éléments probants qui permettraient de déterminer le(s) responsable(s) et l'impact réels. « L'enquête du Service Général du Renseignement et de la Sécurité est toujours en cours, il est encore trop tôt pour tirer des conclusions » ( Ludivine Dedonder ) #belgium #military #cyber #government #threats #belgique #informatique

🇫🇷 « Dans un contexte de risques accrus, nous avons constaté une cyberattaque de l'ENT. Par mesure de sécurité, nous vous demandons de changer votre mot de passe pour un mot de passe plus robuste. » #france #education #ransomware #cyber #threats #databreach #informatique

https://www.lemondeinformatique.fr/actualites/lire-l-ent-des-lycees-franciliens-touche-par-une-cyberattaque-85995.html

🇺🇸 Strengthening American Cybersecurity Act of 2022 passed the Senate March 1, 2022 #usa #cyber #government #threats #informatique

https://www.congress.gov/117/bills/s3600/BILLS-117s3600es.pdf

🇺🇦 Several ISPs/ASes operating in 6 different regions of Ukraine with outages : Merlin, TVCOM, CDS, TVP Format, Interphone, Trinity, Arhat, Lanet and Triolan. #cyber #telecom #threats #internet #ukraine #outage #informatique

https://ioda.inetintel.cc.gatech.edu/region/4372?from=1646082182&until=1646168582

🇬🇧 La multinationale britannique, le Groupe Aon (aon.com), acteur majeur dans les domaines de la gestion des risques, du courtage d'assurance victime d'une attaque informatique #uk #europe #france #assurances #ransomware #services #courtage #business #cyber #threats #databreach #informatique

https://www.theregister.com/2022/03/01/aon_cyber_incident/

#Conti #Ransomware Group Diaries, Part I : Evasion. This is the first of several stories about the inner workings of Conti, based on the leaked chat records. Part II will be told through the private messages exchanged by Conti employees working in different operational units, and it explores some of the more unique and persistent challenges facing large-scale cybercriminal organizations today. #cyber #threats #informatique

https://krebsonsecurity.com/2022/03/conti-ransomware-group-diaries-part-i-evasion/

This report details a destructive cyberattack that impacted Ukrainian organizations on February 23rd, 2022, and a second attack that affected a different Ukrainian organization from February 24th through 26th, 2022. On February 23rd, 2022, a destructive campaign using HermeticWiper targeted multiple Ukrainian organizations. On February 24th, 2022, a second destructive attack against a Ukrainian governmental network started, using a wiper we have named IsaacWiper. #cyber #wiper #disruptive #malware #outage #informatique

https://www.welivesecurity.com/2022/03/01/isaacwiper-hermeticwizard-wiper-worm-targeting-ukraine/

#stormous #ransomware #cyber #threats #ukraine

Commercial #satellite operator Viasat is investigating a suspected cyberattack that caused a partial outage of its KA-SAT network in #Europe. #Network data indicate that the incident began on 24 February ~4 a.m. UTC and is currently ongoing down. #space #telecom #cyber #internet #networks #threats #informatique

https://www.cnbc.com/2022/02/28/ukraine-updates-viasat-says-cyber-event-disrupting-satellite-internet-service.html

Statistiques:

• 2535 comptes
• 60690 messages
• 1131 urls
• 301 IPs
• 271 DNS

• ~200 adresses BTC

• https://github.com/CronUp/EnAnalisis

• https://github.com/TheParmak/conti-leaks-englished

Dashboard BazarLoader (aka BazarBackdoor) utilisé par les opérateurs Conti.

🇸🇪 Axis Communications (axis.com), a company whose network cameras & physical security #solutions are used by #government & private sector #organisations from around the world, was recently hit by a cyberattack that disrupted its operations. Post mortem is now available for the cyber attack that occurred on February 20, 2022. #sweden #cctv #surveillance #software #malware #firmware #databreach #ransomware #networks #suede #informatique

https://status.axis.com

🇯🇵 Kojima Industries Corp (kojima-tns.co.jp) appeared to have been the victim of « some kind of cyber attack ». Toyota Motor Corp said it will suspend domestic factory operations on Tuesday, losing around 13,000 cars of output, after a supplier of plastic parts and electronic components was hit by a suspected cyber attack. #japan #industry #automotive #supply #outage #transport #ransomware #cyber #theats #japon #informatique

https://www.reuters.com/business/autos-transportation/toyota-suspends-all-domestic-factory-operations-after-suspected-cyber-attack-2022-02-28/

🇺🇦 Some Ukrainian Internet traffic is being rerouted through Russia, in « possible BGP hijack » #ukraine #internet #bgp #traffic #networks #informatique

https://www.datacenterdynamics.com/en/news/potential-bgp-hijacking-means-that-some-ukrainian-internet-traffic-is-being-rerouted-through-russia/

Le moteur de recherche Intelligence X indique avoir indexé le fichier conti.7z.

https://intelx.io/?did=64ea2187-8ae9-4053-ba46-06413b809713

Le compte Twitter @ContiLeaks a laissé fuiter sur ce qui semble être des données relatives à l'espace de clavardage du #ransomware #conti. La communauté vx-underground s'est empressée de redistribuer les fichiers. Depuis, elle est confrontée à des salves d'attaques #DDoS.

#Linux 5.17-rc6 #informatique

https://lkml.org/lkml/2022/2/27/350