相關新聞 | HKCERT

PoS malware can block contactless payments to steal credit cards

New versions of the Prilex point-of-sale malware can block secure, NFC-enabled contactless credit card transactions, forcing consumers to insert credit cards that are then stolen by the malware. [...]

Bleepingcomputer 2023年02月01日 336 觀看次數

10M JD Sports Customers' Info Exposed in Data Breach

UK sportswear retailer asks exposed customers to stay "vigilant" against phishing attempts following cyberattack.

Dark Reading 2023年01月31日 288 觀看次數

Facebook Bug Allows 2FA Bypass Via Instagram

The Instagram rate-limiting bug, found by a rookie hunter, could be exploited to bypass Facebook 2FA in vulnerable apps, researcher reports.

Dark Reading 2023年01月31日 294 觀看次數

Porsche halts NFT launch, phishing sites fill the void

Porsche cut its minting of a new NFT collection short after a dismal turnout and backlash from the crypto community, allowing threat actors to fill the void by creating phishing sites that steal digital assets from cryptocurrency wallets. [...]

Bleepingcomputer 2023年01月31日 368 觀看次數

Shady reward apps on Google Play amass 20 million downloads

Bitwarden and other password managers are being targeted in Google ads phishing campaigns to steal users' password vault credentials. [...]

Bleepingcomputer 2023年01月30日 304 觀看次數

Bitwarden password vaults targeted in Google ads phishing attack

Bitwarden and other password managers are being targeted in Google ads phishing campaigns to steal users' password vault credentials. [...]

Bleepingcomputer 2023年01月27日 309 觀看次數

Lexmark warns of RCE bug affecting 100 printer models, PoC released

Lexmark has released a security firmware update to fix a severe vulnerability that could enable remote code execution (RCE) on more than 100 printer models. [...]

Bleepingcomputer 2023年01月27日 237 觀看次數

Microsoft urges admins to patch on-premises Exchange servers

Microsoft urged customers today to keep their on-premises Exchange servers patched by applying the latest supported Cumulative Update (CU) to have them always ready to deploy an emergency security update. [...]

Bleepingcomputer 2023年01月27日 255 觀看次數

Hackers auction alleged source code for League of Legends

Threat actors are auctioning the alleged source code for Riot Game's League of Legends and the Packman anti-cheat software, confirmed to be stolen in a recent hack of the game company's developer environment.

Bleeping Computer 2023年01月26日 486 觀看次數

Hackers now use Microsoft OneNote attachments to spread malware

Threat actors now use OneNote attachments in phishing emails that infect victims with remote access malware which can be used to install further malware, steal passwords, or even cryptocurrency wallets.

Bleeping Computer 2023年01月26日 248 觀看次數