{"id":99752,"date":"2022-04-20T02:15:09","date_gmt":"2022-04-20T04:15:09","guid":{"rendered":"https:\/\/teknomers.com\/fr\/les-pirates-exploitant-la-vulnerabilite-du-spouleur-dimpression-windows-recemment-signalee-dans-la-nature\/"},"modified":"2022-04-20T02:15:17","modified_gmt":"2022-04-20T04:15:17","slug":"les-pirates-exploitant-la-vulnerabilite-du-spouleur-dimpression-windows-recemment-signalee-dans-la-nature","status":"publish","type":"post","link":"https:\/\/teknomers.com\/fr\/les-pirates-exploitant-la-vulnerabilite-du-spouleur-dimpression-windows-recemment-signalee-dans-la-nature\/","title":{"rendered":"Les pirates exploitant la vuln\u00e9rabilit\u00e9 du spouleur d&#8217;impression Windows r\u00e9cemment signal\u00e9e dans la nature"},"content":{"rendered":"<p> <br \/>\n<\/p>\n<div id=\"articlebody\">\n<div class=\"separator\" style=\"clear: both\"><\/div>\n<p>Une faille de s\u00e9curit\u00e9 dans le composant Windows Print Spooler qui a \u00e9t\u00e9 corrig\u00e9e par Microsoft en f\u00e9vrier est activement exploit\u00e9e dans la nature, la US Cybersecurity and Infrastructure Security Agency (CISA) a <a rel=\"nofollow noopener\" href=\"https:\/\/www.cisa.gov\/uscert\/ncas\/current-activity\/2022\/04\/19\/cisa-adds-three-known-exploited-vulnerabilities-catalog\" target=\"_blank\">averti<\/a>.<\/p>\n<p>\u00c0 cette fin, l&#8217;agence a ajout\u00e9 la lacune \u00e0 son <a rel=\"nofollow noopener\" href=\"https:\/\/www.cisa.gov\/known-exploited-vulnerabilities-catalog\" target=\"_blank\">Catalogue des vuln\u00e9rabilit\u00e9s exploit\u00e9es connues<\/a>exigeant que les agences du Pouvoir ex\u00e9cutif civil f\u00e9d\u00e9ral (FCEB) traitent les probl\u00e8mes d&#8217;ici le 10 mai 2022.<\/p>\n<div class=\"ad_two clear\"><a rel=\"nofollow noopener\" href=\"https:\/\/go.thn.li\/backhub-dm2\" target=\"_blank\" title=\"CyberSecurity\"><img loading=\"lazy\" decoding=\"async\" alt=\"La cyber-s\u00e9curit\u00e9\" class=\"lazyload\" src=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2022\/02\/Avertissement-\u2014-Deadbolt-Ransomware-ciblant-les-peripheriques-NAS-ASUSTOR.png\" width=\"300\" height=\"250\" \/><\/a><\/div>\n<p>Suivi comme <a rel=\"nofollow noopener\" href=\"https:\/\/msrc.microsoft.com\/update-guide\/en-US\/vulnerability\/CVE-2022-22718\" target=\"_blank\">CVE-2022-22718<\/a> (score CVSS\u00a0: 7,8), la vuln\u00e9rabilit\u00e9 de s\u00e9curit\u00e9 est l&#8217;une des quatre failles d&#8217;escalade de privil\u00e8ges dans le spouleur d&#8217;impression que Microsoft a r\u00e9solues dans le cadre de ses mises \u00e0 jour du mardi du correctif du 8\u00a0f\u00e9vrier\u00a02022.<\/p>\n<p>Il convient de noter que le g\u00e9ant de la technologie bas\u00e9 \u00e0 Redmond a corrig\u00e9 un certain nombre de failles du spouleur d&#8217;impression depuis que la vuln\u00e9rabilit\u00e9 critique d&#8217;ex\u00e9cution de code \u00e0 distance PrintNightmare a \u00e9t\u00e9 r\u00e9v\u00e9l\u00e9e l&#8217;ann\u00e9e derni\u00e8re, y compris 15 vuln\u00e9rabilit\u00e9s d&#8217;\u00e9l\u00e9vation des privil\u00e8ges en avril 2022.<\/p>\n<p>Sont \u00e9galement ajout\u00e9s au catalogue deux autres failles de s\u00e9curit\u00e9 bas\u00e9es sur des &#8220;preuves d&#8217;exploitation active&#8221; &#8211;<\/p>\n<ul>\n<li><a rel=\"nofollow noopener\" href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2018-6882\" target=\"_blank\"><strong>CVE-2018-6882<\/strong><\/a>  (Score CVSS\u00a0: 6,1) &#8211; Vuln\u00e9rabilit\u00e9 de script intersite (XSS) dans Zimbra Collaboration Suite (ZCS)<\/li>\n<li><a rel=\"nofollow noopener\" href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2019-3568\" target=\"_blank\"><strong>CVE-2019-3568<\/strong><\/a>  (Score CVSS\u00a0: 9,8) &#8211; Vuln\u00e9rabilit\u00e9 de d\u00e9bordement de la m\u00e9moire tampon de la pile VOIP de WhatsApp<\/li>\n<\/ul>\n<p>L&#8217;ajout de CVE-2018-6882 fait suite \u00e0 un avis publi\u00e9 la semaine derni\u00e8re par l&#8217;\u00e9quipe d&#8217;intervention d&#8217;urgence informatique d&#8217;Ukraine (CERT-UA), mettant en garde contre les attaques de phishing ciblant des entit\u00e9s gouvernementales dans le but de transmettre les e-mails des victimes \u00e0 un adresse e-mail tierce en exploitant la vuln\u00e9rabilit\u00e9 Zimbra.<\/p>\n<div class=\"ad_two clear\"><a rel=\"nofollow noopener\" href=\"https:\/\/go.thn.li\/crowdsec-tour-d\" target=\"_blank\" title=\"CyberSecurity\"><img loading=\"lazy\" decoding=\"async\" alt=\"La cyber-s\u00e9curit\u00e9\" class=\"lazyload\" src=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2022\/04\/1650021915_454_Haskers-Gang-donne-gratuitement-le-logiciel-malveillant-ZingoStealer-a-dautres.jpg\" width=\"728\" height=\"90\" \/><\/a><\/div>\n<p>Le CERT-UA a attribu\u00e9 les intrusions cibl\u00e9es \u00e0 un cluster de menaces identifi\u00e9 comme UAC-0097.<\/p>\n<p>\u00c0 la lumi\u00e8re des attaques du monde r\u00e9el qui militarisent les vuln\u00e9rabilit\u00e9s, il est recommand\u00e9 aux organisations de r\u00e9duire leur exposition en \u00ab donnant la priorit\u00e9 \u00e0 la correction rapide des [&#8230;] dans le cadre de leur pratique de gestion des vuln\u00e9rabilit\u00e9s.\u00a0\u00bb<\/p>\n<p><\/p>\n<\/div>\n<p><br \/>\n<br \/><a href=\"https:\/\/thehackernews.com\/2022\/04\/hackers-exploiting-recently-reported.html\" rel=\"nofollow noopener\" target=\"_blank\">ttn-fr-57<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Une faille de s\u00e9curit\u00e9 dans le composant Windows Print Spooler qui a \u00e9t\u00e9 corrig\u00e9e par Microsoft en f\u00e9vrier est activement exploit\u00e9e dans la nature, la US Cybersecurity and Infrastructure Security Agency (CISA) a averti. \u00c0 cette fin, l&#8217;agence a ajout\u00e9 la lacune \u00e0 son Catalogue des vuln\u00e9rabilit\u00e9s exploit\u00e9es connuesexigeant que les agences du Pouvoir ex\u00e9cutif [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":99753,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[4168,4158,4165,4161,429,29526,29063,4157,4159,4171,4170,65,4167,4160,5853,4163,4162,4394,12363,4172,4169,9499,52608,4166,3667,4164,45020],"class_list":["post-99752","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technologie","tag-comment-pirater","tag-cyber-actualites","tag-cyber-attaques","tag-cyber-mises-a-jour","tag-dans","tag-dimpression","tag-exploitant","tag-lactualite-de-la-cybersecurite","tag-lactualite-de-la-cybersecurite-aujourdhui","tag-lactualite-des-hackers","tag-la-securite-des-informations","tag-les","tag-logiciel-malveillant-de-ransomware","tag-mises-a-jour-de-la-cybersecurite","tag-nature","tag-nouvelles-de-piratage","tag-nouvelles-de-pirates","tag-pirates","tag-recemment","tag-securite-informatique","tag-securite-internet","tag-signalee","tag-spouleur","tag-violation-de-donnees","tag-vulnerabilite","tag-vulnerabilite-logicielle","tag-windows"],"_links":{"self":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/99752","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/comments?post=99752"}],"version-history":[{"count":0,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/99752\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media\/99753"}],"wp:attachment":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media?parent=99752"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/categories?post=99752"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/tags?post=99752"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}