網路安全資訊

Lockbit Leads Summer Ransomware Surge; Conti Offshoots Follow

In the summer of 2024, LockBit solidified its standing as the most prolific ransomware‑as‑a‑service (RaaS) operation, accounting for roughly 35 % of all ransomware incidents tracke...

Chinese Surveillance Camera Flaw Exposes Thousands to Hackers

Cybercriminals are now hawking root access to tens of thousands of unpatched Chinese‑made surveillance cameras, a market that has surged after the disclosure of a critical remote‑c...

Twitter Security Lapses: Whistleblower Alleges National Risk

Peiter “Mudge” Zatko, Twitter’s former head of security, filed a whistleblower complaint in July 2022 with the Federal Trade Commission (FTC) and the Senate Select Committee on Int...

CISA Warns: Palo Alto PAN-OS Zero‑Day Under Active Attack – Patch Now

The Cybersecurity and Infrastructure Security Agency (CISA) issued an emergency advisory on Tuesday urging organizations to immediately patch a critical command‑injection flaw in P...

Fake Travel Reservation Links Target Weary Travelers

A wave of phishing campaigns masquerading as airline and hotel reservation confirmations is compounding the frustration of travelers already grappling with cancellations and overbo...

Apple Issues Urgent iOS, macOS Patches for Two Zero-Day Flaws

Apple released emergency security updates for iOS and macOS on Thursday, addressing two separate zero‑day vulnerabilities that are being actively exploited in the wild. The patches...

Google Patches Chrome Fifth Zero-Day of 2023, Critical Code Execution Flaw

Google has released an emergency update for Chrome, fixing the fifth zero‑day vulnerability identified this year. The flaw stems from insufficient validation of input in Chrome’s V...