相關新聞 | HKCERT

Critical RCE Flaw Reported in Spotify's Backstage Software Catalog and Developer Platform

Spotify's Backstage has been discovered as vulnerable to a severe security flaw that could be exploited to gain remote code execution by leveraging a recently disclosed bug in a third-party module.

The Hacker News 2022年11月16日 292 觀看次數

Researchers Reported Critical SQLi and Access Flaws in Zendesk Analytics Service

Cybersecurity researchers have disclosed details of now-patched flaws in Zendesk Explore that could have been exploited by an attacker to gain unauthorized access to information from customer accounts that have the feature turned on.

The Hacker News 2022年11月16日 289 觀看次數

Australia Declares War on Cybercrime Syndicates

An international counter-ransomware task force has been announced by Australian authorities following the recent Optus and Medibank data breaches.

Dark Reading 2022年11月15日 300 觀看次數

Google will pay $391M to settle Android location tracking lawsuit

Google has agreed to pay $391.5 million to settle a lawsuit filed by a coalition of attorneys general from 40 U.S. states alleging that the search giant tracked Android users' locations since at least 2014 even when they thought location tracking was disabled...

Bleepingcomputer 2022年11月15日 268 觀看次數

Researchers Sound Alarm on Dangerous BatLoader Malware Dropper

BatLoader has spread rapidly to roost in systems globally, tailoring payloads to its victims.

Dark Reading 2022年11月15日 273 觀看次數

Android phone owner accidentally finds a way to bypass lock screen

Cybersecurity researcher David Schütz accidentally found a way to bypass the lock screen on his fully patched Google Pixel 6 and Pixel 5 smartphones, enabling anyone with physical access to the device to unlock it. [...]

Bleepingcomputer 2022年11月14日 667 觀看次數

New extortion scam threatens to damage sites’ reputation, leak data

An active extortion scam is targeting website owners and admins worldwide, claiming to have hacked their servers and demanding $2,500 not to leak data. [...]

Bleepingcomputer 2022年11月14日 268 觀看次數

Ukraine says Russian hacktivists use new Somnia ransomware

Russian hacktivists have infected multiple organizations in Ukraine with a new ransomware strain called 'Somnia,' encrypting their systems and causing operational problems. [...]

Bleepingcomputer 2022年11月14日 253 觀看次數

Phishing drops IceXLoader malware on thousands of home, corporate devices

A ongoing phishing campaign has infected thousands of home and corporate users with a new version of the 'IceXLoader' malware. [...]

Bleepingcomputer 2022年11月11日 264 觀看次數

US Health Dept warns of Venus ransomware targeting healthcare orgs

The U.S. Department of Health and Human Services (HHS) warned today that Venus ransomware attacks are also targeting the country's healthcare organizations. [...]

Bleepingcomputer 2022年11月11日 271 觀看次數