相關新聞 | HKCERT

Bugcrowd reports increase in critical vulnerabilities found in 2021

Bugcrowd saw a 185% increase in the last 12 months for critical vulnerability submissions with financial services companies.

ZDnet 2022年01月20日 183 觀看次數

Destructive Wiper Targeting Ukraine Aimed at Eroding Trust, Experts Say

Disruptive malware attacks on Ukrainian organizations (posing as ransomware attacks) are very likely part of Russia’s wider effort to undermine Ukraine’s sovereignty, according to analysts.

Threatpost 2022年01月20日 173 觀看次數

Sniff those Ukrainian emails a little more carefully, advises Uncle Sam in wake of Belarusian digital vandalism

NotPetya started over there, don't forget US companies should be on the lookout for security nasties from Ukrainian partners following the digital graffiti and malware attack launched against Ukraine by Belarus, the CISA has warned.…

The Register 2022年01月20日 199 觀看次數

Dark Web's Largest Marketplace for Stolen Credit Cards is Shutting Down

UniCC, the biggest dark web marketplace for stolen credit and debit cards, has announced that it's shuttering its operations after earning $358 million in purchases since 2013 using cryptocurrencies such as Bitcoin, Litecoin, Ether, and Dash. "Don't build any...

The Hacker News 2022年01月17日 203 觀看次數

DHL, Microsoft, WhatsApp top phishing list of most imitated brands

Google, LinkedIn and Amazon also ranked highly on Check Point Research's list.

ZDnet 2022年01月17日 256 觀看次數

New Unpatched Apple Safari Browser Bug Allows Cross-Site User Tracking

A software bug introduced in Apple Safari 15's implementation of the IndexedDB API could be abused by a malicious website to track users' online activity in the web browser and worse, even reveal their identity. The vulnerability, dubbed IndexedDB Leaks, was disclosed...

The Hacker News 2022年01月17日 198 觀看次數

Qlocker ransomware returns to target QNAP NAS devices worldwide

Threat actors behind the Qlocker ransomware are once again targeting Internet-exposed QNAP Network Attached Storage (NAS) devices worldwide.

BleepingComputer 2022年01月17日 329 觀看次數

Android users can now disable 2G to block Stingray attacks

Google has finally rolled out an option on Android allowing users to disable 2G connections, which come with a host of privacy and security problems exploited by cell-site simulators.

The Hacker News 2022年01月14日 440 觀看次數

Microsoft Details macOS Bug That Could Let Attackers Gain Access to User Data

Microsoft on Monday disclosed details of a recently patched security vulnerability in Apple's macOS operating system that could be weaponized by a threat actor to expose users' personal information.

The Hacker News 2022年01月12日 223 觀看次數

Cyber-Spike: Orgs Suffer 925 Attacks per Week, an All-Time High

Cyberattacks increased 50 percent YoY in 2021 and peaked in December due to a frenzy of Log4j exploits, researchers found.

Threatpost 2022年01月11日 177 觀看次數