相關新聞 | HKCERT

TeamCity Flaw Leads to Surge in Ransomware, Cryptomining, and RAT Attacks

Multiple threat actors are exploiting the recently disclosed security flaws in JetBrains TeamCity software to deploy ransomware, cryptocurrency miners, Cobalt Strike beacons, and a Golang-based remote access trojan called Spark RAT.

The Hacker News 2024年03月21日 156 觀看次數

APIs Drive the Majority of Internet Traffic and Cybercriminals are Taking Advantage

Application programming interfaces (APIs) are the connective tissue behind digital modernization, helping applications and databases exchange data more effectively. The State of API Security in 2024 Report from Imperva, a Thales company, found that the majority of internet traffic (71%) in...

The Hacker News 2024年03月20日 201 觀看次數

Cheating Hack Halts Apex Legends E-Sports Tourney

Electronic Arts is trying to track down the RCE exploit that allowed hackers to inject cheats into games during the recent Apex Legends Global Series. [...]

Dark Reading 2024年03月20日 135 觀看次數

Fujitsu found malware on IT systems, confirms data breach

Japanese tech giant Fujitsu discovered that several of its systems were infected by malware and warns that the hackers stole customer data.

Bleeping Computer 2024年03月19日 172 觀看次數

Hackers Using Sneaky HTML Smuggling to Deliver Malware via Fake Google Sites

Cybersecurity researchers have discovered a new malware campaign that leverages bogus Google Sites pages and HTML smuggling to distribute a commercial malware called AZORult in order to facilitate information theft.

The Hacker News 2024年03月19日 203 觀看次數

New DEEP#GOSU Malware Campaign Targets Windows Users with Advanced Tactics

A new elaborate attack campaign has been observed employing PowerShell and VBScript malware to infect Windows systems and harvest sensitive information.

The Hacker News 2024年03月19日 207 觀看次數

ASCII art elicits harmful responses from 5 major AI chatbots

Researchers have discovered a new way to hack AI assistants that uses a surprisingly old-school method: ASCII art. It turns out that chat-based large language models such as GPT-4 get so distracted trying to process these representations that they forget to enforce...

Ars Technica 2024年03月16日 130 觀看次數

Alabama Under DDoS Cyberattack by Russian-Backed Hacktivists

The hacktivist group Anonymous Sudan claims credit for a cyberattack that disrupted Alabama state government earlier this week.

Dark Reading 2024年03月15日 155 觀看次數

FCC Approves Voluntary Cyber Trust Labels for Consumer IoT Products

Here's what IoT device manufacturers need to know to earn a cybersecurity stamp of approval from the government.

Dark Reading 2024年03月15日 136 觀看次數

French Unemployment Agency Data Breach Impacts 43 Million People

The stolen data includes sensitive personal details such as full name, date of birth, social security number, and contact information, posing a significant risk of identity theft and phishing.

Cyware News 2024年03月15日 127 觀看次數