相關新聞 | HKCERT

National Student Clearinghouse data breach impacts 890 schools

U.S. educational nonprofit National Student Clearinghouse has disclosed a data breach affecting 890 schools using its services across the United States. [...]

Bleepingcomputer 2023年09月23日 73 觀看次數

Apple emergency updates fix 3 new zero-days exploited in attacks

Apple released emergency security updates to patch three new zero-day vulnerabilities exploited in attacks targeting iPhone and Mac users, for a total of 16 zero-days patched this year. [...]

Bleepingcomputer 2023年09月22日 131 觀看次數

Fake WinRAR PoC Exploit Conceals VenomRAT Malware

A supposed exploit for a notable RCE vulnerability in the popular Windows file-archiving utility delivers a big sting for unwitting researchers and cybercriminals.

Dark Reading 2023年09月21日 130 觀看次數

Claimants in Celsius crypto bankruptcy targeted in phishing attack

Scammers are impersonating the bankruptcy claim agent for crypto lender Celsius in phishing attacks that attempt to steal funds from cryptocurrency wallets.

Bleeping Computer 2023年09月20日 139 觀看次數

Lazarus APT Stole Almost $240 Million in Crypto Assets Since June

The North Korea-linked APT group Lazarus has stolen more than $240 million worth of cryptocurrency since June 2023, researchers warn.

Security Affairs 2023年09月20日 14 觀看次數

Microsoft AI Researchers Accidentally Expose 38 Terabytes of Confidential Data

Microsoft on Monday said it took steps to correct a glaring security gaffe that led to the exposure of 38 terabytes of private data.

The Hacker News 2023年09月20日 134 觀看次數

Trend Micro fixes endpoint protection zero-day used in attacks

Trend Micro fixed a remote code execution zero-day vulnerability in the Trend Micro's Apex One endpoint protection solution that was actively exploited in attacks.

Bleeping Computer 2023年09月20日 131 觀看次數

UK police officers’ data stolen in cyberattack on ID supplier

The personal details of thousands of U.K. police officers have been stolen after a suspected ransomware attack on a third-party supplier.

Tech Crunch 2023年09月20日 12 觀看次數

APT36 state hackers infect Android devices using YouTube app clones

The APT36 hacking group, aka 'Transparent Tribe,' has been observed using at least three Android apps that mimic YouTube to infect devices with their signature remote access trojan (RAT), 'CapraRAT.' [...]

Bleepingcomputer 2023年09月19日 131 觀看次數

Microsoft Azure Data Leak Exposes Dangers of File-Sharing Links

Shared Access Signature (SAS) link exposed a storage bucket with 38TB of private data, including passwords, Teams messages, and the backups of two Microsoft AI research employees' workstations.

Dark Reading 2023年09月19日 130 觀看次數