相關新聞 | HKCERT

Google Fi data breach let hackers carry out SIM swap attacks

Google Fi, Google's U.S.-only telecommunications and mobile internet service, has informed customers that personal data was exposed by a data breach at one of its primary network providers, with some customers warned that it allowed SIM swapping attacks. [....

Bleepingcomputer 2023年02月02日 655 觀看次數

LockBit ransomware goes 'Green,' uses new Conti-based encryptor

The LockBit ransomware gang has again started using encryptors based on other operations, this time switching to one based on the leaked source code for the Conti ransomware. [...]

Bleepingcomputer 2023年02月02日 762 觀看次數

Over 29,000 QNAP devices unpatched against new critical flaw

Tens of thousands of QNAP network-attached storage (NAS) devices exposed online are waiting to be patched against a critical security flaw addressed by the Taiwanese company on Monday. [...]

Bleepingcomputer 2023年02月01日 562 觀看次數

PoS malware can block contactless payments to steal credit cards

New versions of the Prilex point-of-sale malware can block secure, NFC-enabled contactless credit card transactions, forcing consumers to insert credit cards that are then stolen by the malware. [...]

Bleepingcomputer 2023年02月01日 734 觀看次數

10M JD Sports Customers' Info Exposed in Data Breach

UK sportswear retailer asks exposed customers to stay "vigilant" against phishing attempts following cyberattack.

Dark Reading 2023年01月31日 679 觀看次數

Facebook Bug Allows 2FA Bypass Via Instagram

The Instagram rate-limiting bug, found by a rookie hunter, could be exploited to bypass Facebook 2FA in vulnerable apps, researcher reports.

Dark Reading 2023年01月31日 666 觀看次數

Porsche halts NFT launch, phishing sites fill the void

Porsche cut its minting of a new NFT collection short after a dismal turnout and backlash from the crypto community, allowing threat actors to fill the void by creating phishing sites that steal digital assets from cryptocurrency wallets. [...]

Bleepingcomputer 2023年01月31日 871 觀看次數

Shady reward apps on Google Play amass 20 million downloads

Bitwarden and other password managers are being targeted in Google ads phishing campaigns to steal users' password vault credentials. [...]

Bleepingcomputer 2023年01月30日 743 觀看次數

Bitwarden password vaults targeted in Google ads phishing attack

Bitwarden and other password managers are being targeted in Google ads phishing campaigns to steal users' password vault credentials. [...]

Bleepingcomputer 2023年01月27日 760 觀看次數

Lexmark warns of RCE bug affecting 100 printer models, PoC released

Lexmark has released a security firmware update to fix a severe vulnerability that could enable remote code execution (RCE) on more than 100 printer models. [...]

Bleepingcomputer 2023年01月27日 635 觀看次數