相關新聞 | HKCERT

Apple fixes two new iOS zero-days in emergency updates

Apple released emergency security updates to fix two zero-day vulnerabilities exploited in attacks and impacting iPhone, iPad, and Mac devices, reaching 20 zero-days patched since the start of the year. [...]

Bleepingcomputer 2023年12月01日 31 觀看次數

Black Basta ransomware made over $100 million from extortion

Russia-linked ransomware gang Black Basta has raked in at least $100 million in ransom payments from more than 90 victims since it first surfaced in April 2022, according to joint research from Corvus Insurance and Elliptic. [...]

Bleepingcomputer 2023年11月30日 60 觀看次數

Zyxel warns of multiple critical vulnerabilities in NAS devices

Zyxel has addressed multiple security issues, including three critical ones that could allow an unauthenticated attacker to execute operating system commands on vulnerable network-attached storage (NAS) devices. [...]

Bleepingcomputer 2023年11月30日 22 觀看次數

Google Chrome emergency update fixes 6th zero-day exploited in 2023

Google has fixed the sixth Chrome zero-day vulnerability this year in an emergency security update released today to counter ongoing exploitation in attacks. [...]

Bleepingcomputer 2023年11月29日 84 觀看次數

Google Drive users say Google lost their files; Google is investigating

Google tells users to not delete local Drive profile data while it investigates.

Ars Technica 2023年11月29日 71 觀看次數

GoTitan Botnet - Ongoing Exploitation on Apache ActiveMQ

The attacker initiates a connection to ActiveMQ through the OpenWire protocol, typically on port 61616. By transmitting a crafted packet, the attacker triggers the system to unmarshal a class under their control.

Cyware News 2023年11月29日 72 觀看次數

New Rust-based SysJoker backdoor linked to Hamas hackers

A new version of the multi-platform malware known as 'SysJoker' has been spotted, featuring a complete code rewrite in the Rust programming language.

Bleeping Computer 2023年11月28日 93 觀看次數

U.S., U.K., and Global Partners Release Secure AI System Development Guidelines

The U.K. and U.S., along with international partners from 16 other countries, have released new guidelines for the development of secure artificial intelligence (AI) systems.

The Hacker News 2023年11月28日 131 觀看次數

Atomic Stealer malware strikes macOS via fake browser updates

The 'ClearFake' fake browser update campaign has expanded to macOS, targeting Apple computers with Atomic Stealer (AMOS) malware. [...]

Bleepingcomputer 2023年11月25日 101 觀看次數

Critical bug in ownCloud file sharing app exposes admin passwords

Open source file sharing software ownCloud is warning of three critical-severity security vulnerabilities, including one that can expose administrator passwords and mail server credentials. [...]

Bleepingcomputer 2023年11月25日 97 觀看次數