相關新聞 | HKCERT

Cybercriminals Exploit CrowdStrike Outage Chaos

Cybercriminals are leveraging the ongoing mass global IT outage to launch phishing campaigns, according to reports. [...]

CrowdStrike 2024年07月23日 85 觀看次數

Threat Actor Uses Fake CrowdStrike Recovery Manual to Deliver Unidentified Stealer

On July 22, 2024, CrowdStrike Intelligence identified a Word document containing macros that download an unidentified stealer now tracked as Daolpu. The document impersonates a Microsoft recovery manual.1 Initial analysis suggests the activity is likely criminal. [...]

CrowdStrike 2024年07月23日 74 觀看次數

Fake CrowdStrike fixes target companies with malware, data wipers

Threat actors are exploiting the massive business disruption from CrowdStrike's glitchy update on Friday to target companies with data wipers and remote access tools.

Bleeping Computer 2024年07月22日 171 觀看次數

Falcon Sensor Content Issue from July 19, 2024, Likely Used to Target CrowdStrike Customers

On July 19, 2024, an issue present in a single content update for the CrowdStrike Falcon® sensor impacting Windows operating systems was identified, and a fix was deployed.

CrowdStrike 2024年07月22日 83 觀看次數

Cisco SSM On-Prem bug lets hackers change any user's password

Cisco has fixed a maximum severity vulnerability that allows attackers to change any user's password on vulnerable Cisco Smart Software Manager On-Prem (Cisco SSM On-Prem) license servers, including administrators. [...]

Bleepingcomputer 2024年07月18日 100 觀看次數

Kaspersky is shutting down its business in the United States

Russian cybersecurity company and antivirus software provider Kaspersky Lab will start shutting down operations in the United States on July 20. [...]

Bleepingcomputer 2024年07月16日 152 觀看次數

SEXi ransomware rebrands to APT INC, continues VMware ESXi attacks

The SEXi ransomware operation, known for targeting VMware ESXi servers, has rebranded under the name APT INC and has targeted numerous organizations in recent attacks. [...]

Bleepingcomputer 2024年07月15日 77 觀看次數

Signal downplays encryption key flaw, fixes it after X drama

Signal is finally tightening its desktop client's security by changing how it stores plain text encryption keys for the data store after downplaying the issue since 2018. [...]

Bleepingcomputer 2024年07月12日 143 觀看次數

Ticket Heist fraud gang uses 700 domains to sell fake Olympics tickets

A large-scale fraud campaign with over 700 domain names is likely targeting Russian-speaking users looking to purchase tickets for the Summer Olympics in Paris.

Bleeping Computer 2024年07月11日 64 觀看次數

New Blast-RADIUS attack bypasses widely-used RADIUS authentication

Blast-RADIUS, an authentication bypass in the widely used RADIUS/UDP protocol, enables threat actors to breach networks and devices in man-in-the-middle MD5 collision attacks.

Bleeping Computer 2024年07月10日 77 觀看次數