相關新聞 | HKCERT

Devious phishing method bypasses MFA using remote access software

A devious, new phishing technique allows adversaries to bypass multi-factor authentication (MFA) by secretly having victims log into their accounts directly on attacker-controlled servers using the VNC screen sharing system.

Bleepingcomputer 2022年02月23日 243 觀看次數

New phishing campaign targets Monzo online-banking customers

Users of Monzo, one of the UK's most popular digital-only banking platforms, are being targeted by phishing messages supported by a growing network of malicious websites. [...]

Bleepingcomputer 2022年02月20日 246 觀看次數

OpenSea users lose $2 million worth of NFTs in phishing attack

The non-fungible token (NFT) marketplace OpenSea is investigating a phishing attack that left 17 of its users without more than 250 NFTs worth around $2 million.

Bleepingcomputer 2022年02月20日 134 觀看次數

U.S. Cybersecurity Agency Publishes List of Free Security Tools and Services

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday published a repository of free tools and services to enable organizations to mitigate, detect, and respond effectively to malicious attacks and further improve their security posture. The "Free Cybersecurity...

The Hacker News 2022年02月20日 189 觀看次數

Your friends could help stop you getting locked out of your Apple ID

Losing access to your Apple ID can be a big deal. Here's something you can do to prevent that from happening.

ZDnet 2022年02月19日 183 觀看次數

Devious hackers are using NFT hype to hijack your PC and webcam

Cybersecurity researchers warn that criminals are using hype around NFTs to trick victims into downloading password-stealing BitRAT malware that allows them to hijack infected machines.

ZDnet 2022年02月17日 185 觀看次數

FBI warns of BEC attackers impersonating CEOs in virtual meetings

The Federal Bureau of Investigation (FBI) warned today that US organizations and individuals are being increasingly targeted in BEC (business email compromise) attacks on virtual meeting platforms. [...]

Bleepingcomputer 2022年02月17日 178 觀看次數

LinkedIn phishing scams increase 232% since Feb 1: report

Hackers are attempting to impersonate LinkedIn through phishing emails.

ZDnet 2022年02月17日 333 觀看次數

QNAP extends security Updates for some EOL devices

Taiwanese vendor QNAP extended the security update window for some devices that have reached end-of-life (EOL).

Security Affairs 2022年02月16日 199 觀看次數

Microsoft fixes Defender flaw letting hackers bypass antivirus scans

Microsoft has recently addressed a weakness in the Microsoft Defender Antivirus on Windows that allowed attackers to plant and execute malicious payloads without triggering Defender's malware detection engine.

ZDnet 2022年02月11日 194 觀看次數