相關新聞 | HKCERT

Windows 11 24H2: The hardware and software blocking the new update

Windows 11 24H2 is unavailable for thousands of users due to safeguard or compatibility holds Microsoft has placed on specific device and software configurations. [...]

Bleepingcomputer 2024年10月28日 615 觀看次數

AWS's Predictable Bucket Names Make Accounts Easier to Crack

Amazon's open source Cloud Development Kit generates dangerously predictable naming patterns that could lead to an account takeover.

Dark Reading 2024年10月25日 273 觀看次數

Google offers its AI watermarking tech as free open source toolkit

SynthID provides a hidden way to mark LLM output as artificial.

Ars Technica 2024年10月24日 196 觀看次數

CISA proposes new security requirements to protect govt, personal data

The U.S. Cybersecurity & Infrastructure Security Agency (CISA) is proposing security requirements to prevent adversary states from accessing American's personal data as well as government-related information. [...]

Bleepingcomputer 2024年10月23日 292 觀看次數

Fortinet warns of new critical FortiManager flaw used in zero-day attacks

Fortinet publicly disclosed today a critical FortiManager API vulnerability, tracked as CVE-2024-47575, that was exploited in zero-day attacks to steal sensitive files containing configurations, IP addresses, and credentials for managed devices. [...]

Bleepingcomputer 2024年10月23日 313 觀看次數

Cheap AI “video scraping” can now extract data from any screen recording

Researcher feeds screen recordings into Gemini to extract accurate information with ease.

Ars Technica 2024年10月18日 266 觀看次數

Fake Google Meet conference errors push infostealing malware

A new ClickFix campaign is luring users to fraudulent Google Meet conference pages showing fake connectivity errors that deliver info-stealing malware for Windows and macOS operating systems. [...]

Bleepingcomputer 2024年10月18日 489 觀看次數

Microsoft warns it lost some customer's security logs for a month

Microsoft is warning enterprise customers that, for almost a month, a bug caused critical logs to be partially lost, putting at risk companies that rely on this data to detect unauthorized activity. [...]

Bleepingcomputer 2024年10月18日 561 觀看次數

Cisco confirms 'ongoing investigation' after crims brag about selling tons of data

Networking giant says 'no evidence' of impact on its systems but will tell customers if their info has been stolen UPDATED Cisco has confirmed it is investigating claims of stealing — and now selling — data belonging to the networking giant.…

The Register 2024年10月17日 553 觀看次數

Critical default credential bug in Kubernetes Image Builder allows SSH root access

It's called leaving the door wide open – especially in Proxmox A critical bug in Kubernetes Image Builder could allow unauthorized SSH access to virtual machines (VMs) thanks to default credentials being enabled during the image build process.…

The Register 2024年10月17日 277 觀看次數