相關新聞 | HKCERT

Researchers Warn of Self-Spreading Malware Targeting Gamers via YouTube

Gamers looking for cheats on YouTube are being targeted with links to malicious password-protected archive files designed to install the RedLine Stealer malware and crypto miners on compromised machines. [...]

Thehackernews 2022年09月16日 665 觀看次數

FBI: Hackers steal millions from healthcare payment processors

The Federal Bureau of Investigation (FBI) has issued an alert about hackers targeting healthcare payment processors to route payments to bank accounts controlled by the attacker. [...]

Bleepingcomputer 2022年09月15日 549 觀看次數

New Lenovo BIOS updates fix security bugs in hundreds of models

Chinese computer manufacturer Lenovo has issued a security advisory to warn its clients about several high-severity vulnerabilities impacting a wide range of products in the Desktop, All in One, Notebook, ThinkPad, ThinkServer, and ThinkStation lines. [...]

Bleepingcomputer 2022年09月15日 504 觀看次數

Hackers breach software vendor for Magento supply-chain attacks

Hackers have injected malware in multiple extensions from FishPig, a vendor of Magento-WordPress integrations that count over 200,000 downloads.

BleepingComputer 2022年09月14日 645 觀看次數

Securing your IoT devices against cyber attacks in 5 steps

How is IoT being used in the enterprise, and how can it be secured? We will demonstrate important security best practices and how a secure password policy is paramount to the security of devices. [...]

Bleepingcomputer 2022年09月14日 646 觀看次數

Zero-day in WPGateway Wordpress plugin actively exploited in attacks

The Wordfence Threat Intelligence team warned today that WordPress sites are actively targeted with exploits targeting a zero-day vulnerability in the WPGateway premium plugin.

BleepingComputer 2022年09月14日 690 觀看次數

Ransomware makes use of intermittent encryption to bypass detection algorithms

Some ransomware groups are now using a new method to try to bypass those detections. The post Ransomware makes use of intermittent encryption to bypass detection algorithms appeared first on TechRepublic.

TechRepublic 2022年09月13日 707 觀看次數

GIFShell attack creates reverse shell using Microsoft Teams GIFs

A new attack technique called ‘GIFShell’ allows threat actors to abuse Microsoft Teams for novel phishing attacks and covertly executing commands to steal data using ... GIFs.

Bleepingcomputer 2022年09月09日 553 觀看次數

Microsoft: Iranian hackers encrypt Windows systems using BitLocker

Microsoft says an Iranian state-sponsored threat group it tracks as DEV-0270 (aka Nemesis Kitten) has been abusing the BitLocker Windows feature in attacks to encrypt victims' systems.

Bleepingcomputer 2022年09月09日 576 觀看次數

Cisco won’t fix authentication bypass zero-day in EoL routers

Cisco says that a new authentication bypass flaw affecting multiple small business VPN routers will not be patched because the devices have reached end-of-life (EoL). [...]

Bleepingcomputer 2022年09月08日 635 觀看次數