相關新聞 | HKCERT

Android malware infected 300,000 devices to steal Facebook accounts

An Android malware campaign masquerading as reading and education apps has been underway since 2018, attempting to steal Facebook account credentials from infected devices. [...]

Bleepingcomputer 2022年12月02日 295 觀看次數

Google warns about commercial Heliconia spyware hitting Chrome, Firefox and Microsoft Defender

Meanwhile NSO faces new lawsuit over Pegasus flying onto journalists' phones Google's Threat Analysis Group (TAG) said on Wednesday that its researchers discovered commercial spyware called Heliconia that's designed to exploit vulnerabilities in Chrome and Firefox browsers as well as Microsoft Defender...

The Register 2022年12月02日 309 觀看次數

LastPass Discloses Second Breach in Three Months

The threat actor behind an August intrusion used data from that incident to access customer data stored with a third-party cloud service provider, and affiliate GoTo reports breach of development environment.

Dark Reading 2022年12月02日 307 觀看次數

Critical RCE bugs in Android remote keyboard apps with 2M installs

Three Android applications that allow users to use devices as remote keyboards for their computers have critical vulnerabilities that could expose key presses and enable remote code execution.

Bleeping Computer 2022年12月01日 277 觀看次數

New Windows malware scans victims’ mobile phones for data to steal

Security researchers found a previously unknown backdoor they call Dophin that's been used by North Korean hackers in highly targeted operations for more than a year to steal files and send them to Google Drive storage.

Bleeping Computer 2022年12月01日 260 觀看次數

New Flaw in Acer Laptops Could Let Attackers Disable Secure Boot Protection

Acer has released a firmware update to address a security vulnerability that could be potentially weaponized to turn off UEFI Secure Boot on affected machines. Tracked as CVE-2022-4020, the high-severity vulnerability affects five different models that consist of Aspire A315-...

The Hacker News 2022年11月30日 311 觀看次數

Trigona ransomware spotted in increasing attacks worldwide

A previously unnamed ransomware has rebranded under the name 'Trigona,' launching a new Tor negotiation site where they accept Monero as ransom payments. [...]

Bleepingcomputer 2022年11月30日 281 觀看次數

$275M Fine for Meta After Facebook Data Scrape

Meta has been found in violation of Europe's GDPR rules requiring the social media giant to protect user data by "design and default."

Dark Reading 2022年11月29日 315 觀看次數

Malicious Android app found powering account creation service

A fake Android SMS application, with 100,000 downloads on the Google Play store, has been discovered to secretly act as an SMS relay for an account creation service for sites like Microsoft, Google, Instagram, Telegram, and Facebook [......

Bleepingcomputer 2022年11月29日 260 觀看次數

TikTok ‘Invisible Body’ challenge exploited to push malware

Hackers are capitalizing on a trending TikTok challenge named 'Invisible Challenge' to install malware on thousands of devices and steal their passwords, Discord accounts, and, potentially, cryptocurrency wallets. [...]

Bleepingcomputer 2022年11月29日 245 觀看次數