相關新聞 | HKCERT

Sophisticated Phishing Campaign Deploying Agent Tesla, OriginBotnet, and RedLine Clipper

A sophisticated phishing campaign is using a Microsoft Word document lure to distribute a trifecta of threats, namely Agent Tesla, OriginBotnet, and RedLine Clipper, to gather a wide range of information from compromised Windows machines.

Cyware News 2023年09月13日 311 觀看次數

Google fixes another Chrome zero-day bug exploited in attacks

Google released emergency security updates to fix the fourth Chrome zero-day vulnerability exploited in attacks since the start of the year. [...]

Bleepingcomputer 2023年09月12日 375 觀看次數

Microsoft will block 3rd-party printer drivers in Windows Update

Microsoft will block third-party printer driver delivery in Windows Update as part of a substantial and gradual shift in its printer driver strategy over the next 4 years. [...]

Bleepingcomputer 2023年09月12日 228 觀看次數

Unearthed touchscreen iMac G3 prototype evokes a very different era of Apple

25 years ago, Apple was cool with firms hacking up kiosk-friendly touch iMacs.

Ars Technica 2023年09月12日 210 觀看次數

Apple zero-click iMessage exploit used to infect iPhones with spyware

Citizen Lab says two zero-days fixed by Apple today in emergency security updates were actively abused as part of a zero-click exploit chain to deploy NSO Group's Pegasus commercial spyware onto fully patched iPhones. [...]

Bleepingcomputer 2023年09月08日 282 觀看次數

Google is enabling Chrome real-time phishing protection for everyone

Google announced today that it is deprecating the standard Google Chrome Safe Browsing feature and moving everyone to its Enhanced Safe Browsing feature in the coming weeks, bringing real-time phishing protection to all users while browsing the web. [...]

Bleepingcomputer 2023年09月08日 383 觀看次數

Atlas VPN zero-day vulnerability leaks users' real IP address

An Atlas VPN zero-day vulnerability affecting the Linux client leaks a user's real IP address simply by visiting a website. [...]

Bleepingcomputer 2023年09月06日 217 觀看次數

Crypto casino Stake.com loses $41 million to hot wallet hackers

Online cryptocurrency casino Stake.com announced that its ETH/BSC hot wallets had been compromised to perform unauthorized transactions, with over $40 million in crypto reportedly stolen. [...]

Bleepingcomputer 2023年09月06日 206 觀看次數

Hackers exploit MinIO storage system to breach corporate networks

Hackers are exploiting two recent MinIO vulnerabilities to breach object storage systems and access private information, execute arbitrary code, and potentially take over servers.

Bleeping Computer 2023年09月05日 213 觀看次數

New Chaes Malware Variant Targeting Financial and Logistics Customers

This new variant, primarily targeting logistics and financial sectors, has undergone significant changes, including being rewritten in Python, enhanced communication protocols, and new modules.

Cyware News 2023年09月05日 183 觀看次數