{"id":367087,"date":"2022-09-16T02:40:25","date_gmt":"2022-09-16T04:40:25","guid":{"rendered":"https:\/\/teknomers.com\/fr\/uber-dit-quil-enquete-sur-une-violation-potentielle-de-ses-systemes-informatiques\/"},"modified":"2022-09-16T02:40:26","modified_gmt":"2022-09-16T04:40:26","slug":"uber-dit-quil-enquete-sur-une-violation-potentielle-de-ses-systemes-informatiques","status":"publish","type":"post","link":"https:\/\/teknomers.com\/fr\/uber-dit-quil-enquete-sur-une-violation-potentielle-de-ses-systemes-informatiques\/","title":{"rendered":"Uber dit qu&#8217;il enqu\u00eate sur une violation potentielle de ses syst\u00e8mes informatiques"},"content":{"rendered":"<p> <br \/>\n<\/p>\n<div id=\"articlebody\">\n<div class=\"separator\" style=\"clear: both\"><\/div>\n<p>Ride saluant le g\u00e9ant Uber <a rel=\"nofollow noopener\" href=\"https:\/\/twitter.com\/Uber_Comms\/status\/1570584747071639552\" target=\"_blank\">divulgu\u00e9<\/a> Jeudi, il r\u00e9pond \u00e0 un incident de cybers\u00e9curit\u00e9 impliquant une violation de son r\u00e9seau et qu&#8217;il est en contact avec les forces de l&#8217;ordre.<\/p>\n<p>Le New York Times d&#8217;abord <a rel=\"nofollow noopener\" href=\"https:\/\/www.nytimes.com\/2022\/09\/15\/technology\/uber-hacking-breach.html\" target=\"_blank\">signal\u00e9<\/a> L&#8217;incident.  La soci\u00e9t\u00e9 a soulign\u00e9 sa d\u00e9claration tweet\u00e9e lorsqu&#8217;elle a \u00e9t\u00e9 invit\u00e9e \u00e0 commenter la question.<\/p>\n<div class=\"ad_two clear\"><a rel=\"nofollow noopener\" href=\"https:\/\/go.thn.li\/strike-d\" target=\"_blank\" title=\"DevOps backupy\"><img decoding=\"async\" alt=\"La cyber-s\u00e9curit\u00e9\" class=\"lazyload\" loading=\"lazy\" src=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2022\/08\/La-nouvelle-vulnerabilite-Amazon-Ring-aurait-pu-exposer-tous-vos.png\" width=\"300\" height=\"250\" \/><\/a><\/div>\n<p>Le piratage aurait forc\u00e9 l&#8217;entreprise \u00e0 mettre ses syst\u00e8mes de communication et d&#8217;ing\u00e9nierie internes hors ligne alors qu&#8217;elle enqu\u00eatait sur l&#8217;\u00e9tendue de la violation.<\/p>\n<p>La publication indique que l&#8217;intrus malveillant a compromis le compte Slack d&#8217;un employ\u00e9 et l&#8217;a exploit\u00e9 pour diffuser un message indiquant que l&#8217;entreprise avait \u00ab subi une violation de donn\u00e9es \u00bb, en plus de r\u00e9pertorier les bases de donn\u00e9es internes cens\u00e9es avoir \u00e9t\u00e9 compromises.<\/p>\n<p>&#8220;Il est apparu que le pirate a ensuite pu acc\u00e9der \u00e0 d&#8217;autres syst\u00e8mes internes, en publiant une photo explicite sur une page d&#8217;information interne pour les employ\u00e9s&#8221;, a d\u00e9clar\u00e9 le New York Times.<\/p>\n<div class=\"video-container\">\n<blockquote class=\"twitter-tweet\" data-conversation=\"none\" data-dnt=\"true\">\n<p lang=\"en\" dir=\"ltr\">Mise \u00e0 jour : Un Threat Actor pr\u00e9tend avoir compl\u00e8tement compromis Uber &#8211; ils ont publi\u00e9 des captures d&#8217;\u00e9cran de leur instance AWS, du panneau d&#8217;administration HackerOne, et plus encore.<\/p>\n<p>Ils se moquent et se moquent ouvertement <a rel=\"nofollow noopener\" href=\"https:\/\/twitter.com\/Uber?ref_src=twsrc%5Etfw\" target=\"_blank\">@Uber<\/a>. <a rel=\"nofollow\" href=\"https:\/\/t.co\/Q3PzzBLsQY\">pic.twitter.com\/Q3PzzBLsQY<\/a><\/p>\n<p>\u2014 vx-underground (@vxunderground) <a rel=\"nofollow noopener\" href=\"https:\/\/twitter.com\/vxunderground\/status\/1570597582417821703?ref_src=twsrc%5Etfw\" target=\"_blank\">16 septembre 2022<\/a><\/p><\/blockquote><\/div>\n<p>Ce n&#8217;est pas la premi\u00e8re violation d&#8217;Uber.  Il a fait l&#8217;objet d&#8217;un examen minutieux pour avoir omis de divulguer correctement une violation de donn\u00e9es de 2016 affectant 57 millions de passagers et de conducteurs, et finalement pay\u00e9 100 000 $ aux pirates pour cacher la violation.  Il n&#8217;est devenu public que fin 2017.<\/p>\n<p>Les procureurs f\u00e9d\u00e9raux aux \u00c9tats-Unis ont depuis accus\u00e9 son ancien agent de s\u00e9curit\u00e9, Joe Sullivan, d&#8217;une pr\u00e9tendue tentative de dissimulation de l&#8217;incident, d\u00e9clarant qu&#8217;il avait &#8220;charg\u00e9 son \u00e9quipe de garder la connaissance de la violation de 2016 \u00e9troitement contr\u00f4l\u00e9e&#8221;.  Sullivan a <a rel=\"nofollow noopener\" href=\"https:\/\/www.nytimes.com\/2018\/01\/12\/technology\/uber-hacker-payment-100000.html\" target=\"_blank\">contest\u00e9<\/a> les accusations.<\/p>\n<div class=\"ad_two clear\"><a rel=\"nofollow noopener\" href=\"https:\/\/go.thn.li\/crowd-mid-d\" target=\"_blank\" title=\"CyberSecurity\"><img decoding=\"async\" alt=\"La cyber-s\u00e9curit\u00e9\" class=\"lazyload\" loading=\"lazy\" src=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2022\/08\/Google-Cloud-bloque-une-attaque-DDoS-record-de-46-millions.png\" width=\"728\" height=\"90\" \/><\/a><\/div>\n<p>En d\u00e9cembre 2021, Sullivan s&#8217;est vu infliger trois chefs d&#8217;accusation suppl\u00e9mentaires de fraude par fil suite \u00e0 des accusations d&#8217;obstruction criminelle et d&#8217;erreur de prise en charge pr\u00e9c\u00e9demment d\u00e9pos\u00e9es.  &#8220;Sullivan aurait orchestr\u00e9 le versement d&#8217;un paiement \u00e0 six chiffres \u00e0 deux pirates en \u00e9change de leur silence sur le piratage&#8221;, l&#8217;acte d&#8217;accusation de remplacement <a rel=\"nofollow noopener\" href=\"https:\/\/www.justice.gov\/usao-ndca\/pr\/former-uber-chief-security-officer-face-wire-fraud-charges-0\" target=\"_blank\">a dit<\/a>.<\/p>\n<p>Il a en outre d\u00e9clar\u00e9 qu&#8217;il &#8220;avait pris des mesures d\u00e9lib\u00e9r\u00e9es pour emp\u00eacher les personnes dont les PII avaient \u00e9t\u00e9 vol\u00e9es de d\u00e9couvrir que le piratage avait eu lieu et avait pris des mesures pour dissimuler, d\u00e9tourner et induire en erreur la Federal Trade Commission (FTC) des \u00c9tats-Unis au sujet de la violation de donn\u00e9es&#8221;.<\/p>\n<p>La derni\u00e8re br\u00e8che survient \u00e9galement alors que le <a rel=\"nofollow noopener\" href=\"https:\/\/www.nytimes.com\/2022\/09\/06\/technology\/joe-sullivan-uber-security-trial-ciso.html\" target=\"_blank\">casier criminel<\/a> contre Sullivan <a rel=\"nofollow noopener\" href=\"https:\/\/www.courthousenews.com\/fired-uber-attorney-testifies-against-ex-security-chief-in-trial-over-2016-data-breach-cover-up\/\" target=\"_blank\">va au proc\u00e8s<\/a> au tribunal de district am\u00e9ricain de San Francisco.<\/p>\n<p><\/p>\n<\/div>\n<p><br \/>\n<br \/><a href=\"https:\/\/thehackernews.com\/2022\/09\/uber-says-its-investigating-potential.html\" rel=\"nofollow noopener\" target=\"_blank\">ttn-fr-57<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Ride saluant le g\u00e9ant Uber divulgu\u00e9 Jeudi, il r\u00e9pond \u00e0 un incident de cybers\u00e9curit\u00e9 impliquant une violation de son r\u00e9seau et qu&#8217;il est en contact avec les forces de l&#8217;ordre. Le New York Times d&#8217;abord signal\u00e9 L&#8217;incident. La soci\u00e9t\u00e9 a soulign\u00e9 sa d\u00e9claration tweet\u00e9e lorsqu&#8217;elle a \u00e9t\u00e9 invit\u00e9e \u00e0 commenter la question. Le piratage aurait [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":367088,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[4168,4158,4165,4161,995,1231,8154,4157,4159,4171,4170,4167,4160,4163,4162,45396,495,4172,4169,269,60,5046,10968,196,899,4166,4164],"class_list":["post-367087","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technologie","tag-comment-pirater","tag-cyber-actualites","tag-cyber-attaques","tag-cyber-mises-a-jour","tag-dit","tag-enquete","tag-informatiques","tag-lactualite-de-la-cybersecurite","tag-lactualite-de-la-cybersecurite-aujourdhui","tag-lactualite-des-hackers","tag-la-securite-des-informations","tag-logiciel-malveillant-de-ransomware","tag-mises-a-jour-de-la-cybersecurite","tag-nouvelles-de-piratage","tag-nouvelles-de-pirates","tag-potentielle","tag-quil","tag-securite-informatique","tag-securite-internet","tag-ses","tag-sur","tag-systemes","tag-uber","tag-une","tag-violation","tag-violation-de-donnees","tag-vulnerabilite-logicielle"],"_links":{"self":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/367087","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/comments?post=367087"}],"version-history":[{"count":0,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/367087\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media\/367088"}],"wp:attachment":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media?parent=367087"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/categories?post=367087"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/tags?post=367087"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}