相關新聞 | HKCERT

AlphV/BlackCat hits back as Feds offer decryptor to ransomware victims

Domain seized while gang shrugs at loss of 'stupid old key' The US Justice Department is passing a decryptor to more than 500 victims of AlphV/BlackCat's ransomware following a disruption campaign.…

The Register 2023年12月20日 538 觀看次數

Microsoft confirms Windows 11 Wi-Fi issues, asks for user feedback

Microsoft has confirmed that some Windows 11 devices experience Wi-Fi connectivity issues after installing recent cumulative updates. [...]

Bleepingcomputer 2023年12月20日 793 觀看次數

Microsoft discovers critical RCE flaw in Perforce Helix Core Server

Four vulnerabilities, one of which is rated critical, have been discovered in the Perforce Helix Core Server, a source code management platform widely used by the gaming, government, military, and technology sectors. [...]

Bleepingcomputer 2023年12月19日 565 觀看次數

Millions of Microsoft Accounts Power Lattice of Automated Cyberattacks

Crimeware-as-a-service (CaaS) gang flies past CAPTCHAs, creating fraudulent accounts to sell to the likes of Scattered Spider; Microsoft mounts a counterattack.

Dark Reading 2023年12月19日 513 觀看次數

QNAP VioStor NVR vulnerability actively exploited by malware botnet

A Mirai-based botnet named 'InfectedSlurs' is exploiting a remote code execution (RCE) vulnerability in QNAP VioStor NVR (Network Video Recorder) devices to hijack and make them part of its DDoS (distributed denial of service) swarm.

Bleeping Computer 2023年12月18日 543 觀看次數

WordPress hosting service Kinsta targeted by Google phishing ads

WordPress hosting provider Kinsta is warning customers that Google ads have been observed promoting phishing sites to steal hosting credentials.

Bleeping Computer 2023年12月18日 696 觀看次數

Microsoft seizes websites used to sell phony email accounts to Scattered Spider and other crims

That should solve the global cybercrime problem, right? Microsoft has taken down US-based infrastructure and websites used by a cybercrime group to sell fraudulent online accounts to other crooks including Scattered Spider, the infamous social-engineering and extortion crew that hacked two Las Vegas...

The Register 2023年12月15日 500 觀看次數

New NKAbuse malware abuses NKN blockchain for stealthy comms

A new Go-based multi-platform malware identified as 'NKAbuse' is the first malware abusing NKN (New Kind of Network) technology for data exchange, making it a stealthy threat. [...]

Bleepingcomputer 2023年12月15日 532 觀看次數

UniFi devices broadcasted private video to other users’ accounts

"I was presented with 88 consoles from another account," one user reports.

Ars Technica 2023年12月15日 481 觀看次數

BazarCall attacks abuse Google Forms to legitimize phishing emails

A new wave of BazarCall attacks uses Google Forms to generate and send payment receipts to victims, attempting to make the phishing attempt appear more legitimate. [...]

Bleepingcomputer 2023年12月14日 552 觀看次數