相關新聞 | HKCERT

Exchange Cyberattacks Escalate as Microsoft Rolls One-Click Fix

Public proof-of-concept (PoC) exploits for ProxyLogon could be fanning a feeding frenzy of attacks even as patching makes progress.

Threatpost 2021年03月17日 591 觀看次數

Latest Mirai Variant Targets SonicWall, D-Link and IoT Devices

A new Mirai variant is targeting known flaws in D-Link, Netgear and SonicWall devices, as well as newly-discovered flaws in unknown IoT devices.

Threatpost 2021年03月17日 485 觀看次數

Is Your Browser Extension a Botnet Backdoor?

A company that rents out access to more than 10 million Web browsers so that clients can hide their true Internet addresses has built its network by paying browser extension makers to quietly include its code in their creations. This story examines the lopsided economics of extension development, ...

Krebs on Security 2021年03月02日 623 觀看次數

Malware Loader Abuses Google SEO to Expand Payload Delivery

Gootloader has expanded its payloads beyond the Gootkit malware family, using Google SEO poisoning to gain traction.

Threatpost 2021年03月02日 439 觀看次數

Accellion FTA Zero-Day Attacks Show Ties to Clop Ransomware, FIN11

The threat actors stole data and used Clop's leaks site to demand money in an extortion scheme, though no ransomware was deployed.

Threatpost 2021年02月23日 613 觀看次數

Brave browser leaks onion addresses in DNS traffic

The Tor mode included with the Brave web browser allows users to access .onion dark web domains inside Brave private browsing windows without having to install Tor as a separate software package.

ZDNet 2021年02月22日 376 觀看次數

New Malware Found On 30,000 Macs Has Security Pros Stumped

Packet Storm 2021年02月22日 373 觀看次數

Pan-Asian retail giant Dairy Farm suffers REvil ransomware attack

Massive pan-Asian retail chain operator Dairy Farm Group was attacked this month by the REvil ransomware operation. The attackers claim to have demanded a $30 million ransom.

Bleeping Computer 2021年01月28日 781 觀看次數

World’s Most Dangerous Malware Emotet Disrupted Through Global Action

Law enforcement and judicial authorities worldwide have this week disrupted one of most significant botnets of the past decade: EMOTET. Investigators have now taken control of its infrastructure in an international coordinated action.

Europol 2021年01月28日 436 觀看次數

SonicWall firewall maker hacked using zero-day in its VPN device

Security hardware manufacturer SonicWall has issued an urgent security notice about threat actors exploiting a zero-day vulnerability in their VPN products to perform attacks on their internal systems.

Bleeping Computer 2021年01月25日 722 觀看次數