December 9, 2023

Chinese web giant Tencent has admitted to a significant account hijack attack on its messaging and social media platform “QQ.com”

It’s been started with many unnamed number of QQ users complain their credentials no longer allowed them access to their accounts. Tencent has characterized that issue as representing “stolen” accounts.

Tencent acknowledged this incident stared with criminals posting QR codes that claimed to offer game logins. Users who scanned the codes were asked to authenticate using their QQ creds.

Advertisements

A machine translation of Tencent’s explanation produces the phrase the login behavior was hijacked and recorded by the black industry gang, and then used by criminals to send bad picture ads. Users were also locked out of their accounts.

Tencent’s restored to the normal situation and web giant is now gathering evidence to share with local authorities and has pledged co-operation.

Tags:

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

You may have missed

WordPress POP CMS Vulnerability

December 9, 2023

Apache Struts fixes Critical Vulnerability – CVE-2023-50164

December 8, 2023

Meta enables Messenger with E2EE by Default

December 8, 2023 2

CISA KEV Update Part II – December 2023

December 7, 2023

Atlassian fixes critical RCE vulnerabilities in its products

December 6, 2023

Microsoft Echo’s on APT 28 exploiting CVE-2023-23397

December 5, 2023
%d