{"id":1278148,"date":"2024-08-13T03:49:02","date_gmt":"2024-08-13T05:49:02","guid":{"rendered":"https:\/\/teknomers.com\/fr\/lukraine-met-en-garde-contre-une-nouvelle-campagne-de-phishing-visant-les-ordinateurs-du-gouvernement\/"},"modified":"2024-08-13T03:49:07","modified_gmt":"2024-08-13T05:49:07","slug":"lukraine-met-en-garde-contre-une-nouvelle-campagne-de-phishing-visant-les-ordinateurs-du-gouvernement","status":"publish","type":"post","link":"https:\/\/teknomers.com\/fr\/lukraine-met-en-garde-contre-une-nouvelle-campagne-de-phishing-visant-les-ordinateurs-du-gouvernement\/","title":{"rendered":"L&#8217;Ukraine met en garde contre une nouvelle campagne de phishing visant les ordinateurs du gouvernement"},"content":{"rendered":"<p> <br \/>\n<\/p>\n<div>\n<p><span class=\"p-author\"><i class=\"icon-font icon-calendar\">\ue802<\/i><span class=\"author\">13 ao\u00fbt 2024<\/span><i class=\"icon-font icon-user\">\ue804<\/i><span class=\"author\">Ravie Lakshmanan<\/span><\/span><span class=\"p-tags\">Renseignements sur les menaces et les logiciels malveillants<\/span><\/p>\n<\/div>\n<div id=\"articlebody\">\n<div class=\"separator\" style=\"clear: both;\"><a rel=\"nofollow\" href=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2024\/08\/LUkraine-met-en-garde-contre-une-nouvelle-campagne-de-phishing.png\" style=\"clear: left; display: block; float: left; text-align: center;\"><\/a><\/div>\n<p>L&#8217;\u00e9quipe d&#8217;intervention d&#8217;urgence informatique d&#8217;Ukraine (CERT-UA) a <a rel=\"nofollow noopener\" href=\"https:\/\/cert.gov.ua\/article\/6280345\" target=\"_blank\">averti<\/a> d&#8217;une nouvelle campagne de phishing qui se fait passer pour le Service de s\u00e9curit\u00e9 ukrainien pour diffuser des logiciels malveillants capables d&#8217;acc\u00e9der au bureau \u00e0 distance.<\/p>\n<p>L&#8217;agence suit cette activit\u00e9 sous le nom UAC-0198. On estime que plus de 100 ordinateurs ont \u00e9t\u00e9 infect\u00e9s depuis juillet 2024, y compris ceux li\u00e9s aux organismes gouvernementaux du pays.<\/p>\n<p>Les cha\u00eenes d&#8217;attaque impliquent la distribution massive d&#8217;e-mails pour d\u00e9livrer un fichier d&#8217;archive ZIP contenant un fichier d&#8217;installation MSI, dont l&#8217;ouverture conduit au d\u00e9ploiement d&#8217;un malware appel\u00e9 ANONVNC.<\/p>\n<p>ANONVNC, qui est bas\u00e9 sur un outil de gestion \u00e0 distance open source appel\u00e9 <a rel=\"nofollow noopener\" href=\"https:\/\/github.com\/Ylianst\/MeshAgent\" target=\"_blank\">Agent de maillage<\/a>permet un acc\u00e8s furtif et non autoris\u00e9 aux h\u00f4tes infect\u00e9s.<\/p>\n<div class=\"dog_two clear\"><center class=\"cf\"><a rel=\"nofollow noopener\" href=\"https:\/\/thehackernews.uk\/inside-c-d\" target=\"_blank\" title=\"Cybersecurity\"><img loading=\"lazy\" decoding=\"async\" class=\"lazyload\" alt=\"Cybers\u00e9curit\u00e9\" src=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2024\/08\/Des-experts-decouvrent-de-graves-failles-dans-AWS-conduisant-a.jpg\" width=\"727\" height=\"90\"\/><\/a><\/center><\/div>\n<p>Le d\u00e9veloppement intervient alors que CERT-UA <a rel=\"nofollow noopener\" href=\"https:\/\/cert.gov.ua\/article\/6280183\" target=\"_blank\">attribu\u00e9<\/a> le groupe de pirates UAC-0102 aux attaques de phishing propageant des pi\u00e8ces jointes HTML qui imitent la page de connexion de UKR.NET pour voler les informations d&#8217;identification des utilisateurs.<\/p>\n<p>Au cours des derni\u00e8res semaines, l&#8217;agence a \u00e9galement mis en garde contre une augmentation des campagnes de diffusion du malware PicassoLoader dans le but final de d\u00e9ployer Cobalt Strike Beacon sur des syst\u00e8mes compromis. Les attaques ont \u00e9t\u00e9 li\u00e9es \u00e0 un acteur malveillant identifi\u00e9 comme UAC-0057.<\/p>\n<p>\u00ab Il est raisonnable de supposer que les objets d&#8217;int\u00e9r\u00eat de l&#8217;UAC-0057 pourraient \u00eatre \u00e0 la fois des sp\u00e9cialistes des bureaux de projet et leurs \u00ab contractants \u00bb parmi les employ\u00e9s des gouvernements locaux concern\u00e9s de l&#8217;Ukraine \u00bb, a d\u00e9clar\u00e9 le CERT-UA. <a rel=\"nofollow noopener\" href=\"https:\/\/cert.gov.ua\/article\/6280159\" target=\"_blank\">dit<\/a>.<\/p>\n<p><\/p>\n<div class=\"cf note-b\">Vous avez trouv\u00e9 cet article int\u00e9ressant ? Suivez-nous sur <a rel=\"nofollow noopener\" href=\"https:\/\/twitter.com\/thehackersnews\" target=\"_blank\">Gazouillement <i class=\"icon-font icon-twitter\">\uf099<\/i><\/a>  et <a rel=\"nofollow noopener\" href=\"https:\/\/www.linkedin.com\/company\/thehackernews\/\" target=\"_blank\">LinkedIn<\/a> pour lire davantage de contenu exclusif que nous publions.<\/div>\n<\/div>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><br \/>\n<br \/><br \/>\n<br \/><a href=\"https:\/\/thehackernews.com\/2024\/08\/ukraine-warns-of-new-phishing-campaign.html\" rel=\"nofollow noopener\" target=\"_blank\">ttn-fr-57<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>\ue80213 ao\u00fbt 2024\ue804Ravie LakshmananRenseignements sur les menaces et les logiciels malveillants L&#8217;\u00e9quipe d&#8217;intervention d&#8217;urgence informatique d&#8217;Ukraine (CERT-UA) a averti d&#8217;une nouvelle campagne de phishing qui se fait passer pour le Service de s\u00e9curit\u00e9 ukrainien pour diffuser des logiciels malveillants capables d&#8217;acc\u00e9der au bureau \u00e0 distance. L&#8217;agence suit cette activit\u00e9 sous le nom UAC-0198. On estime [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":1278149,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[238714,200292,238582,238778,2930,4168,841,4158,6124,525,583,65,238584,200271,770,4955,238334,98340,197,4393,8153,238617,246491,4172,196,4166,34590,238583],"class_list":["post-1278148","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technologie","tag-actualites-des-hackers","tag-actualites-sur-la-cybersecurite","tag-actualites-sur-la-cybersecurite-aujourdhui","tag-actualites-sur-le-piratage-informatique","tag-campagne","tag-comment-pirater","tag-contre","tag-cyber-actualites","tag-cyberattaques","tag-garde","tag-gouvernement","tag-les","tag-les-nouvelles-des-hackers","tag-logiciel-malveillant-rancongiciel","tag-lukraine","tag-met","tag-mises-a-jour-cybernetiques","tag-mises-a-jour-de-cybersecurite","tag-nouvelle","tag-ordinateurs","tag-phishing","tag-securite-de-linformation","tag-securite-du-reseau","tag-securite-informatique","tag-une","tag-violation-de-donnees","tag-visant","tag-vulnerabilite-du-logiciel"],"_links":{"self":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/1278148","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/comments?post=1278148"}],"version-history":[{"count":0,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/1278148\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media\/1278149"}],"wp:attachment":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media?parent=1278148"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/categories?post=1278148"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/tags?post=1278148"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}