相關新聞 | HKCERT

Ticket Heist fraud gang uses 700 domains to sell fake Olympics tickets

A large-scale fraud campaign with over 700 domain names is likely targeting Russian-speaking users looking to purchase tickets for the Summer Olympics in Paris.

Bleeping Computer 2024年07月11日 73 觀看次數

New Blast-RADIUS attack bypasses widely-used RADIUS authentication

Blast-RADIUS, an authentication bypass in the widely used RADIUS/UDP protocol, enables threat actors to breach networks and devices in man-in-the-middle MD5 collision attacks.

Bleeping Computer 2024年07月10日 96 觀看次數

Apple Geolocation API Exposes Wi-Fi Access Points Worldwide

Beyond the devices that use them, Wi-Fi hubs themselves can leak interesting data, thanks to some quirks in Apple's geolocation system.

Dark Reading 2024年07月09日 85 觀看次數

Avast releases free decryptor for DoNex ransomware and past variants

Antivirus company Avast have discovered a weakness in the cryptographic scheme of the DoNex ransomware family and released a decryptor so victims can recover their files for free. [...]

Bleepingcomputer 2024年07月09日 70 觀看次數

Notepad finally gets spellcheck, autocorrect for all Windows 11 users

Microsoft has finally released a spell check and autocorrect feature in Notepad for all Windows 11 users, forty-one years after the program was introduced in 1983. [...]

Bleepingcomputer 2024年07月09日 118 觀看次數

New Eldorado ransomware targets Windows, VMware ESXi VMs

A new ransomware-as-a-service (RaaS) called Eldorado emerged in March and comes with locker variants for VMware ESXi and Windows. [...]

Bleepingcomputer 2024年07月05日 94 觀看次數

Australian charged for ‘Evil Twin’ WiFi attack on plane

An Australian man was charged by Australia's Federal Police (AFP) for allegedly conducting an 'evil twin' WiFi attack on various domestic flights and airports in Perth, Melbourne, and Adelaide to steal other people's email or social media credentials.

Bleeping Computer 2024年07月03日 181 觀看次數

Latest Intel CPUs impacted by new Indirector side-channel attack

Modern Intel processors, including chips from the Raptor Lake and the Alder Lake generations are susceptible to a new type of a high-precision Branch Target Injection (BTI) attack dubbed 'Indirector,' which could be used to steal sensitive information from the CPU. [...

Bleepingcomputer 2024年07月02日 122 觀看次數

A new MOVEit vulnerability is igniting hacking attempts. Companies should patch ASAP

MOVEit, a popular file transfer platform used by thousands of companies and government entities, is once again in the news for all the wrong reasons. [...]

ZDnet 2024年06月28日 190 觀看次數

Critical GitLab bug lets attackers run pipelines as any user

A critical vulnerability is affecting certain versions of GitLab Community and Enterprise Edition products, which could be exploited to run pipelines as any user. [...]

Bleepingcomputer 2024年06月27日 123 觀看次數