相關新聞 | HKCERT

Bitwarden password vaults targeted in Google ads phishing attack

Bitwarden and other password managers are being targeted in Google ads phishing campaigns to steal users' password vault credentials. [...]

Bleepingcomputer 2023年01月27日 35 觀看次數

Lexmark warns of RCE bug affecting 100 printer models, PoC released

Lexmark has released a security firmware update to fix a severe vulnerability that could enable remote code execution (RCE) on more than 100 printer models. [...]

Bleepingcomputer 2023年01月27日 34 觀看次數

Microsoft urges admins to patch on-premises Exchange servers

Microsoft urged customers today to keep their on-premises Exchange servers patched by applying the latest supported Cumulative Update (CU) to have them always ready to deploy an emergency security update. [...]

Bleepingcomputer 2023年01月27日 38 觀看次數

Hackers auction alleged source code for League of Legends

Threat actors are auctioning the alleged source code for Riot Game's League of Legends and the Packman anti-cheat software, confirmed to be stolen in a recent hack of the game company's developer environment.

Bleeping Computer 2023年01月26日 46 觀看次數

Hackers now use Microsoft OneNote attachments to spread malware

Threat actors now use OneNote attachments in phishing emails that infect victims with remote access malware which can be used to install further malware, steal passwords, or even cryptocurrency wallets.

Bleeping Computer 2023年01月26日 47 觀看次數

Ransomware access brokers use Google ads to breach your network

A threat actor tracked as DEV-0569 uses Google Ads in widespread, ongoing advertising campaigns to distribute malware, steal victims' passwords, and ultimately breach networks for ransomware attacks.

Bleeping Computer 2023年01月26日 50 觀看次數

Attackers Crafted Custom Malware for Fortinet Zero-Day

The "BoldMove" backdoor demonstrates a high level of knowledge of FortiOS, according to Mandiant researchers, who said the attacker appears to be based out of China.

Dark Reading 2023年01月20日 86 觀看次數

Finally, ransomware victims are refusing to pay up

Near 50% drop in extorted dosh ... or so it says here The amount of money paid to ransomware attackers dropped significantly in 2022, and not because the number of attacks fell.…

The Register 2023年01月20日 87 觀看次數

Microsoft pushes KB5021751 to check for outdated Office installs

Microsoft is pushing the KB5021751 update to find out how many of its customers are using an Office version that has reached its end of support or will soon be out of support. [...]

Bleepingcomputer 2023年01月20日 85 觀看次數

MailChimp discloses new breach after employees got hacked

Email marketing firm MailChimp suffered another breach after hackers accessed an internal customer support and account administration tool, allowing the threat actors to access the data of 133 customers. [...]

Bleepingcomputer 2023年01月19日 94 觀看次數