相關新聞 | HKCERT

‘Glowworm’ Attack Turns Power Light Flickers into Audio

Researchers have found an entirely new attack vector for eavesdropping on Zoom and other virtual meetings.

Threatpost 2021年08月10日 217 觀看次數

Beware! New Android Malware Hacks Thousands of Facebook Accounts

A new Android trojan has been found to compromise Facebook accounts of over 10,000 users in at least 144 countries since March 2021 via fraudulent apps distributed through Google Play Store and other third-party app marketplaces. Dubbed "FlyTrap," the previously undocumented malware is...

The Hacker News 2021年08月09日 200 觀看次數

StarHub suffers data breach, but says no system was compromised

StarHub says personal data of its customers, including email addresses and mobile numbers, have been found on a dump site. The Singapore telco, however, insists none of its customer database or data systems has been breached.

ZDnet 2021年08月09日 220 觀看次數

Want a strong password? You're probably still doing it the wrong way

Security agencies say that three random words can be a better approach than enforcing complexity to achieve account protection.

ZDnet 2021年08月09日 207 觀看次數

Black Hat: Enterprise players face 'one-two-punch' extortion in ransomware attacks

Intrusions have become even more costly to the enterprise due to double-extortion tactics.

ZDnet 2021年08月06日 259 觀看次數

Black Hat: Security Bugs Allow Takeover of Capsule Hotel Rooms

A researcher was able to remotely control the lights, bed and ventilation in "smart" hotel rooms via Nasnos vulnerabilities.

Threatpost 2021年08月05日 269 觀看次數

Several Malware Families Targeting IIS Web Servers With Malicious Modules

A systematic analysis of attacks against Microsoft's Internet Information Services (IIS) servers has revealed as many as 14 malware families, 10 of them newly documented, indicating that the Windows-based web server software continues to be a hotbed for natively developed malware...

The Hacker News 2021年08月05日 230 觀看次數

Unpatched Security Flaws Expose Mitsubishi Safety PLCs to Remote Attacks

Multiple unpatched security vulnerabilities have been disclosed in Mitsubishi safety programmable logic controllers (PLCs) that could be exploited by an adversary to acquire legitimate user names registered in the module via a brute-force attack, unauthorizedly login to the CPU module, and even cause a...

The Hacker News 2021年08月05日 191 觀看次數

Worried your data protection strategy is dated? Don’t let a ransomware infection prove you right

Trust us – you need to tune into this Webcast Some say the best form of defense is offense. But when it comes to modern ransomware from cyber-crime orgs that are well-funded, possibly have state actor backing, and have your data under...

The Register 2021年08月05日 240 觀看次數

COVID-19 vaccine portal for Italy's Lazio region hit with cyberattack

Government officials took to Facebook to say no data was stolen and to notify residents of the daily COVID-19 figures.

ZDnet 2021年08月03日 222 觀看次數