相關新聞 | HKCERT

Gen AI could speed up coding, but businesses should still consider risks

Organizations keen to fund gen AI-powered software development for the anticipated benefits should also understand that this may come with adverse effects.

ZDnet 2024年11月28日 33 觀看次數

Hackers abuse popular Godot game engine to infect thousands of PCs

Hackers have used new GodLoader malware exploiting the capabilities of the widely used Godot game engine to evade detection and infect over 17,000 systems in just three months. [...]

Bleepingcomputer 2024年11月28日 27 觀看次數

Hackers exploit ProjectSend flaw to backdoor exposed servers

Threat actors are using public exploits for a critical authentication bypass flaw in ProjectSend to upload webshells and gain remote access to servers. [...]

Bleepingcomputer 2024年11月28日 23 觀看次數

Microsoft re-releases Exchange updates after fixing mail delivery

Microsoft has re-released the November 2024 security updates for Exchange Server after pulling them earlier this month due to email delivery issues on servers using custom mail flow rules. [...]

Bleepingcomputer 2024年11月28日 29 觀看次數

New NachoVPN attack uses rogue VPN servers to install malicious updates

A set of vulnerabilities dubbed "NachoVPN" allows rogue VPN servers to install malicious updates when unpatched Palo Alto and SonicWall SSL-VPN clients connect to them. [...]

Bleepingcomputer 2024年11月27日 41 觀看次數

BlackBasta Ransomware Brand Picks Up Where Conti Left Off

New analysis says law enforcement efforts against Russian-language ransomware-as-a-service (RaaS) infrastructure helped consolidate influence behind BlackBasta, but some experts aren't so sure the brand means that much.

Dark Reading 2024年11月26日 32 觀看次數

North Korean Hackers Steal $10M with AI-Driven Scams and Malware on LinkedIn

The North Korea-linked threat actor known as Sapphire Sleet is estimated to have stolen more than $10 million worth of cryptocurrency as part of social engineering campaigns orchestrated over a six-month period. These findings come from Microsoft, which said that multiple threat activity...

The Hacker News 2024年11月23日 23 觀看次數

QNAP pulls buggy QTS firmware causing widespread NAS issues

QNAP has pulled a recently released firmware update after widespread customer reports that it's breaking connectivity and, in some cases, locking users out of their devices. [...]

Bleepingcomputer 2024年11月23日 26 觀看次數

Over 2,000 Palo Alto firewalls hacked using recently patched bugs

Hackers have already compromised thousands of Palo Alto Networks firewalls in attacks exploiting two recently patched zero-day vulnerabilities.

Bleeping Computer 2024年11月22日 38 觀看次數

It's Near-Unanimous: AI, ML Make the SOC Better

Efficiency is the name of the game for the security operations center — and 91% of cybersecurity pros say AI and ML are winning that game.

Dark Reading 2024年11月21日 45 觀看次數