Data Breach at French Govt Agency Exposes Info of 10 Million People
•
France’s governmental unemployment registration and financial aid agency, Pôle emploi, has announced a data breach that has compromised the personal information of around 10 million individuals. The breach involved a third-party provider’s information system and could potentially expose personal data of job seekers. The breached data includes names and social security numbers, with email addresses, phone numbers, passwords, and banking details remaining unaffected.
•
Pôle emploi advised affected job seekers to remain vigilant regarding incoming communications and has established a dedicated phone support line to address concerns. The agency reassures that its financial aid programs are unaffected and encourages users to access their online portal with confidence.
•
The data breach is directly associated with the MOVEit attack campaign. However, the responsible Clop ransomware group has not yet included Pôle emploi in their extortion efforts. Notably, the Pôle emploi breach stands as the second-largest in terms of impacted individuals, following only behind Maximus’ breach, within the larger MOVEit attack campaign totaling 59.2 million compromised individuals and 988 organizations.
•
Acronis Advanced Data Loss Prevention monitors your data movement and prevents any data exfiltration, helping your company stay compliant. Following a data breach, it is crucial for victims to maintain vigilance against possible phishing attempts. In this regard, Acronis Advanced Email Security can help address and mitigate email-born threats.
Sneaky Amazon Google Ad Leads to Microsoft Support Scam
•
Researchers have discovered that a seemingly legitimate Amazon ad in Google search results redirects users to a Microsoft Defender tech support scam which locks their browser.
•
This ad displayed what looked like Amazon’s legitimate URL, but upon clicking, it led to a tech support scam masquerading as a Microsoft Defender alert about malware. These scams force full-screen mode, making it challenging to exit without terminating the Chrome process. When Chrome is relaunched, it prompts users to restore the previously closed pages, reopening the scam. This tactic was also used in a YouTube ad in June 2022.
•
Google has allowed advertisers to impersonate URLs, enabling these deceptive ads. Amazon took action to remove these ads after being informed.
Acronis Cyber Protect uses URL Filtering to block access to malicious sites and blocks any malicious payload downloaded with its included AI-based and behavioral detection engine.