相關新聞 | HKCERT

10M JD Sports Customers' Info Exposed in Data Breach

UK sportswear retailer asks exposed customers to stay "vigilant" against phishing attempts following cyberattack.

Dark Reading 2023年01月31日 327 觀看次數

Facebook Bug Allows 2FA Bypass Via Instagram

The Instagram rate-limiting bug, found by a rookie hunter, could be exploited to bypass Facebook 2FA in vulnerable apps, researcher reports.

Dark Reading 2023年01月31日 329 觀看次數

Porsche halts NFT launch, phishing sites fill the void

Porsche cut its minting of a new NFT collection short after a dismal turnout and backlash from the crypto community, allowing threat actors to fill the void by creating phishing sites that steal digital assets from cryptocurrency wallets. [...]

Bleepingcomputer 2023年01月31日 430 觀看次數

Shady reward apps on Google Play amass 20 million downloads

Bitwarden and other password managers are being targeted in Google ads phishing campaigns to steal users' password vault credentials. [...]

Bleepingcomputer 2023年01月30日 384 觀看次數

Bitwarden password vaults targeted in Google ads phishing attack

Bitwarden and other password managers are being targeted in Google ads phishing campaigns to steal users' password vault credentials. [...]

Bleepingcomputer 2023年01月27日 397 觀看次數

Lexmark warns of RCE bug affecting 100 printer models, PoC released

Lexmark has released a security firmware update to fix a severe vulnerability that could enable remote code execution (RCE) on more than 100 printer models. [...]

Bleepingcomputer 2023年01月27日 280 觀看次數

Microsoft urges admins to patch on-premises Exchange servers

Microsoft urged customers today to keep their on-premises Exchange servers patched by applying the latest supported Cumulative Update (CU) to have them always ready to deploy an emergency security update. [...]

Bleepingcomputer 2023年01月27日 282 觀看次數

Hackers auction alleged source code for League of Legends

Threat actors are auctioning the alleged source code for Riot Game's League of Legends and the Packman anti-cheat software, confirmed to be stolen in a recent hack of the game company's developer environment.

Bleeping Computer 2023年01月26日 527 觀看次數

Hackers now use Microsoft OneNote attachments to spread malware

Threat actors now use OneNote attachments in phishing emails that infect victims with remote access malware which can be used to install further malware, steal passwords, or even cryptocurrency wallets.

Bleeping Computer 2023年01月26日 272 觀看次數

Ransomware access brokers use Google ads to breach your network

A threat actor tracked as DEV-0569 uses Google Ads in widespread, ongoing advertising campaigns to distribute malware, steal victims' passwords, and ultimately breach networks for ransomware attacks.

Bleeping Computer 2023年01月26日 401 觀看次數