相關新聞 | HKCERT

New Microsoft Exchange zero-day actively exploited in attacks

Threat actors are exploiting yet-to-be-disclosed Microsoft Exchange zero-day bugs allowing for remote code execution, according to claims made by security researchers at Vietnamese cybersecurity outfit GTSC, who first spotted and reported the attacks. [...]

Bleepingcomputer 2022年09月30日 344 觀看次數

Ransomware Attacks Continue Increasing: 20% of All Reported Attacks Occurred in the Last 12 Months - New Survey

Survey of over 2,000 IT pros revealed that a quarter either don't know or don't think Microsoft 365 data can be affected by ransomware.

Dark Reading 2022年09月30日 287 觀看次數

New Chaos malware infects Windows, Linux devices for DDoS attacks

A quickly expanding botnet called Chaos is targeting and infecting Windows and Linux devices to use them for cryptomining and launching DDoS attacks.

BleepingComputer 2022年09月29日 277 觀看次數

New NullMixer dropper infects your PC with a dozen malware families

A new malware dropper named 'NullMixer' is infecting Windows devices with a dozen different malware families simultaneously through fake software cracks promoted on malicious sites in Google Search results.

BleepingComputer 2022年09月29日 240 觀看次數

Microsoft to retire Exchange Online client access rules in a year

Microsoft announced today that it will retire Client Access Rules (CARs) in Exchange Online within a year, by September 2023.

BleepingComputer 2022年09月28日 262 觀看次數

North Korea's Lazarus Hackers Targeting macOS Users Interested in Crypto Jobs

The infamous Lazarus Group has continued its pattern of leveraging unsolicited job opportunities to deploy malware targeting Apple's macOS operating system.

The Hacker News 2022年09月28日 272 觀看次數

Hackers use PowerPoint files for 'mouseover' malware delivery

Hackers believed to work for Russia have started using a new code execution technique that relies on mouse movement in Microsoft PowerPoint presentations to trigger a malicious PowerShell script.

BleepingComputer 2022年09月27日 291 觀看次數

New Erbium password-stealing malware spreads as game cracks, cheats

The new 'Erbium' information-stealing malware is being distributed as fake cracks and cheats for popular video games to steal victims' credentials and cryptocurrency wallets.

BleepingComputer 2022年09月27日 317 觀看次數

Hackers Using Fake CircleCI Notifications to Hack GitHub Accounts

GitHub has put out an advisory detailing what may be an ongoing phishing campaign targeting its users to steal credentials and two-factor authentication (2FA) codes by impersonating the CircleCI DevOps platform.

The Hacker News 2022年09月26日 318 觀看次數

Microsoft SQL servers hacked in TargetCompany ransomware attacks

Vulnerable Microsoft SQL servers are being targeted in a new wave of attacks with FARGO ransomware, security researchers are warning.

BleepingComputer 2022年09月26日 378 觀看次數