相關新聞 | HKCERT

Cash App notifies 8.2 million US customers about data breach

Cash App is notifying 8.2 million current and former US customers of a data breach after a former employee accessed their account information. [...]

Bleepingcomputer 2022年04月06日 158 觀看次數

Microsoft detects Spring4Shell attacks across its cloud services

Microsoft said that it's currently tracking a "low volume of exploit attempts" targeting the critical Spring4Shell (aka SpringShell) remote code execution (RCE) vulnerability across its cloud services. [...]

Bleepingcomputer 2022年04月06日 193 觀看次數

Remote Access Trojan adds ransomware and DDoS attacks to usual bag of tricks

Known as Borat, a new Trojan spotted by Cyble allows attackers to compile malicious code to launch ransomware campaigns and DDoS attacks on the victim’s machine. The post Remote Access Trojan adds ransomware and DDoS attacks to usual bag of tricks appeared first on TechRepublic.

TechRepublic 2022年04月06日 186 觀看次數

SpringShell attacks target about one in six vulnerable orgs

Roughly one out of six organizations worldwide that are impacted by the Spring4Shell zero-day vulnerability have already been targeted by threat actors, according to statistics from one cybersecurity company. [...]

Bleepingcomputer 2022年04月06日 193 觀看次數

Fake Trezor data breach emails used to steal cryptocurrency wallets

A compromised Trezor hardware wallet mailing list was used to send fake data breach notifications to steal cryptocurrency wallets and the assets stored within them.

Bleepingcomputer 2022年04月04日 171 觀看次數

$620 million in crypto stolen from Axie Infinity's Ronin bridge

A hacker has stolen almost $620 million in Ethereum and USDC tokens from Axie Infinity's Ronin network bridge, making it possibly the largest crypto hack in history. [...]

Bleepingcomputer 2022年03月30日 233 觀看次數

Log4JShell Used to Swarm VMware Servers with Miners, Backdoors

Researchers have found three backdoors and four miners in attacks exploiting the Log4Shell vulnerability, some of which are still ongoing.

Threatpost 2022年03月30日 213 觀看次數

Mars Stealer malware pushed via OpenOffice ads on Google

A newly launched information-stealing malware variant called Mars Stealer is rising in popularity, and threat analysts are now spotting the first notable large-scale campaigns employing it. [...]

Bleepingcomputer 2022年03月30日 219 觀看次數

Honda bug lets a hacker unlock and start your car via replay attack

Researchers have disclosed a 'replay attack' vulnerability affecting select Honda and Acura car models, that allows a nearby hacker to unlock your car and even start its engine from a short distance.

BleepingComputer 2022年03月29日 261 觀看次數

Muhstik Botnet Targeting Redis Servers Using Recently Disclosed Vulnerability

Muhstik, a botnet infamous for propagating via web application exploits, has been observed targeting Redis servers using a recently disclosed vulnerability in the database system.

The Hacker News 2022年03月29日 225 觀看次數