相關新聞 | HKCERT

Iran-linked DEV-0343 targeting defense, GIS, and maritime sectors

DEV-0343 is a new activity cluster that the Microsoft Threat Intelligence Center (MSTIC) first observed and began tracking in late July 2021. MSTIC has observed DEV-0343 conducting extensive password spraying against more than 250 Office 365 tenants, with a focus...

ZDnet 2021年10月12日 486 觀看次數

4 Key Questions for Zero-Trust Success

Anurag Kahol, CTO & co-founder at Bitglass, offers tips for avoiding implementation pitfalls for zero trust.

Threatpost 2021年10月08日 369 觀看次數

No honor among thieves: One in five targets of FIN12 hacking group is in healthcare

The group strikes big game targets with annual revenues of over $6 billion.

ZDnet 2021年10月08日 346 觀看次數

Poorly Configured Apache Airflow Instances Leak Credentials for Popular Services

Cybersecurity researchers on Monday discovered misconfigurations across older versions of Apache Airflow instances belonging to a number of high-profile companies across various sectors, resulting in the exposure of sensitive credentials for popular platforms and services such as Amazon Web Services (AWS), Binance, Google Cloud...

The Hacker News 2021年10月08日 322 觀看次數

Ransomware: Cyber criminals are still exploiting these old vulnerabilities, so patch now

Years-old security vulnerabilities remain a common attack method for ransomware attacks because organisations aren't applying the patches to fix them.

ZDnet 2021年10月08日 378 觀看次數

Singapore tweaks cybersecurity strategy with OT emphasis

Five years after the country introduced its cybersecurity strategy, Singapore unveils a revised national plan that aims to assume a more proactive stance in addressing threats and drive its cybersecurity posture, including a new operational technology competency framework.

ZDnet 2021年10月08日 309 觀看次數

VMware ESXi Servers Encrypted by Lightning-Fast Python Script

The little snippet of Python code strikes fast and nasty, taking less than three hours to complete a ransomware attack from initial breach to encryption.

Threatpost 2021年10月07日 359 觀看次數

Google to auto-enroll 150 million user accounts into 2FA

Google announced today that they plan on auto-enrolling 150 million accounts into two-factor authentication by the end of 2021.

BleepingComputer 2021年10月06日 526 觀看次數

Facebook Outage Drags Down Instagram, WhatsApp, Messenger, Oculus VR

They were all flat on their faces for hours on Monday, throwing off DNS error messages or other server-related errors.

Threatpost 2021年10月05日 351 觀看次數

Coinbase sends out breach notification letters after 6,000 accounts had cryptocurrency stolen

The letters come after thousands of people complained this summer about lackluster customer service from the cryptocurrency platform.

ZDnet 2021年10月02日 312 觀看次數