相關新聞 | HKCERT

Hackers use new, fake crypto app to breach networks, steal cryptocurrency

The North Korean 'Lazarus' hacking group is linked to a new attack spreading fake cryptocurrency apps under the made-up brand, "BloxHolder," to install the AppleJeus malware for initial access to networks and steal crypto assets. [...]

Bleepingcomputer 2022年12月03日 25 觀看次數

Rackspace rocked by ‘security incident’ that has taken out hosted Exchange services

Some of Rackspace’s hosted Microsoft Exchange services have been taken down by what the company has described as a “security incident”.…

The Register 2022年12月03日 23 觀看次數

Android malware infected 300,000 devices to steal Facebook accounts

An Android malware campaign masquerading as reading and education apps has been underway since 2018, attempting to steal Facebook account credentials from infected devices. [...]

Bleepingcomputer 2022年12月02日 75 觀看次數

Google warns about commercial Heliconia spyware hitting Chrome, Firefox and Microsoft Defender

Meanwhile NSO faces new lawsuit over Pegasus flying onto journalists' phones Google's Threat Analysis Group (TAG) said on Wednesday that its researchers discovered commercial spyware called Heliconia that's designed to exploit vulnerabilities in Chrome and Firefox browsers as well as Microsoft Defender...

The Register 2022年12月02日 74 觀看次數

LastPass Discloses Second Breach in Three Months

The threat actor behind an August intrusion used data from that incident to access customer data stored with a third-party cloud service provider, and affiliate GoTo reports breach of development environment.

Dark Reading 2022年12月02日 73 觀看次數

Critical RCE bugs in Android remote keyboard apps with 2M installs

Three Android applications that allow users to use devices as remote keyboards for their computers have critical vulnerabilities that could expose key presses and enable remote code execution.

Bleeping Computer 2022年12月01日 84 觀看次數

New Windows malware scans victims’ mobile phones for data to steal

Security researchers found a previously unknown backdoor they call Dophin that's been used by North Korean hackers in highly targeted operations for more than a year to steal files and send them to Google Drive storage.

Bleeping Computer 2022年12月01日 79 觀看次數

New Flaw in Acer Laptops Could Let Attackers Disable Secure Boot Protection

Acer has released a firmware update to address a security vulnerability that could be potentially weaponized to turn off UEFI Secure Boot on affected machines. Tracked as CVE-2022-4020, the high-severity vulnerability affects five different models that consist of Aspire A315-...

The Hacker News 2022年11月30日 91 觀看次數

Trigona ransomware spotted in increasing attacks worldwide

A previously unnamed ransomware has rebranded under the name 'Trigona,' launching a new Tor negotiation site where they accept Monero as ransom payments. [...]

Bleepingcomputer 2022年11月30日 90 觀看次數

$275M Fine for Meta After Facebook Data Scrape

Meta has been found in violation of Europe's GDPR rules requiring the social media giant to protect user data by "design and default."

Dark Reading 2022年11月29日 86 觀看次數