相關新聞 | HKCERT

Fake Antivirus and Cleaner Apps Caught Installing SharkBot Android Banking Trojan

The notorious Android banking trojan known as SharkBot has once again made an appearance on the Google Play Store by masquerading as antivirus and cleaner apps.

The Hacker News 2022年09月06日 278 觀看次數

New EvilProxy service lets all hackers use advanced phishing tactics

A reverse-proxy Phishing-as-a-Service (PaaS) platform called EvilProxy has emerged, promising to steal authentication tokens to bypass multi-factor authentication (MFA) on Apple, Google, Facebook, Microsoft, Twitter, GitHub, GoDaddy, and...

BleepingComputer 2022年09月06日 274 觀看次數

QNAP patches zero-day used in new Deadbolt ransomware attacks

QNAP is warning customers of ongoing DeadBolt ransomware attacks that started on Saturday by exploiting a zero-day vulnerability in Photo Station.

BleepingComputer 2022年09月06日 279 觀看次數

Google Releases Urgent Chrome Update to Patch New Zero-Day Vulnerability

Google on Friday shipped emergency fixes to address a security vulnerability in the Chrome web browser that it said is being actively exploited in the wild. The issue, assigned the identifier CVE-2022-3075, concerns a case of insufficient data validating in Mojo...

The Hacker News 2022年09月03日 298 觀看次數

Malware dev open-sources CodeRAT after being exposed

The source code of a remote access trojan (RAT) dubbed 'CodeRAT' has been leaked on GitHub after malware analysts confronted the developer about attacks that used the tool. [...]

Bleepingcomputer 2022年09月03日 237 觀看次數

Samsung Admits Data Breach that Exposed Details of Some U.S. Customers

South Korean chaebol Samsung on Friday said it experienced a cybersecurity incident that resulted in the unauthorized access of some customer information, the second time this year it has reported such a breach. "In late July 2022, an unauthorized third-party acquired information from some of...

The Hacker News 2022年09月03日 262 觀看次數

Neopets says hackers had access to its systems for 18 months

Neopets has released details about the recently disclosed data breach incident that exposed personal information of more than 69 million members.

Bleepingcomputer 2022年09月02日 276 觀看次數

Thousands lured with blue badges in Instagram phishing attack

A new Instagram phishing campaign is underway, attempting to scam users of the popular social media platform by luring them with a blue-badge offer.

Bleepingcomputer 2022年09月02日 484 觀看次數

Microsoft found TikTok Android flaw that let hackers hijack accounts

Microsoft found and reported a high severity flaw in the TikTok Android app in February that allowed attackers to "quickly and quietly" take over accounts with one click by tricking targets into clicking a specially crafted malicious link.

Bleepingcomputer 2022年09月01日 331 觀看次數

Chrome extensions with 1.4 million installs steal browsing data

Threat analysts at McAfee found five Google Chrome extensions that steal track users’ browsing activity. Collectively, the extensions have been downloaded more then 1.4 million times.

Bleepingcomputer 2022年08月31日 255 觀看次數