相關新聞 | HKCERT

Microsoft urges admins to patch on-premises Exchange servers

Microsoft urged customers today to keep their on-premises Exchange servers patched by applying the latest supported Cumulative Update (CU) to have them always ready to deploy an emergency security update. [...]

Bleepingcomputer 2023年01月27日 557 觀看次數

Hackers auction alleged source code for League of Legends

Threat actors are auctioning the alleged source code for Riot Game's League of Legends and the Packman anti-cheat software, confirmed to be stolen in a recent hack of the game company's developer environment.

Bleeping Computer 2023年01月26日 1184 觀看次數

Hackers now use Microsoft OneNote attachments to spread malware

Threat actors now use OneNote attachments in phishing emails that infect victims with remote access malware which can be used to install further malware, steal passwords, or even cryptocurrency wallets.

Bleeping Computer 2023年01月26日 562 觀看次數

Ransomware access brokers use Google ads to breach your network

A threat actor tracked as DEV-0569 uses Google Ads in widespread, ongoing advertising campaigns to distribute malware, steal victims' passwords, and ultimately breach networks for ransomware attacks.

Bleeping Computer 2023年01月26日 715 觀看次數

Attackers Crafted Custom Malware for Fortinet Zero-Day

The "BoldMove" backdoor demonstrates a high level of knowledge of FortiOS, according to Mandiant researchers, who said the attacker appears to be based out of China.

Dark Reading 2023年01月20日 588 觀看次數

Finally, ransomware victims are refusing to pay up

Near 50% drop in extorted dosh ... or so it says here The amount of money paid to ransomware attackers dropped significantly in 2022, and not because the number of attacks fell.…

The Register 2023年01月20日 785 觀看次數

Microsoft pushes KB5021751 to check for outdated Office installs

Microsoft is pushing the KB5021751 update to find out how many of its customers are using an Office version that has reached its end of support or will soon be out of support. [...]

Bleepingcomputer 2023年01月20日 666 觀看次數

MailChimp discloses new breach after employees got hacked

Email marketing firm MailChimp suffered another breach after hackers accessed an internal customer support and account administration tool, allowing the threat actors to access the data of 133 customers. [...]

Bleepingcomputer 2023年01月19日 529 觀看次數

Ukraine links data-wiping attack on news agency to Russian hackers

The Computer Emergency Response Team of Ukraine (CERT-UA) has linked a destructive malware attack targeting the country's national news agency (Ukrinform) to Sandworm Russian military hackers. [...]

Bleepingcomputer 2023年01月19日 539 觀看次數

Hackers can use GitHub Codespaces to host and deliver malware

GitHub Codespaces, a cloud-hosted integrated development environment (IDE), has a port forwarding feature that malicious actors can abuse to host and distribute malware to unaware developers. [...]

Bleepingcomputer 2023年01月18日 590 觀看次數