360-CERT每日安全简报
Daily Security Briefing
2022-01-21 星期五
<<Previous
Next>>
漏洞
Vulnerability
CVE-2022-23302:Apache log4j JMSSink反序列化代码执行漏洞
https://nvd.nist.gov/vuln/detail/CVE-2022-23302
CVE-2022-23305:Apache log4j JDBCAppender SQL注入漏洞
https://nvd.nist.gov/vuln/detail/CVE-2022-23305
CVE-2022-23307:Apache log4j Chainsaw反序列化代码执行漏洞
https://nvd.nist.gov/vuln/detail/CVE-2022-23307
安全事件
Security Incident
AlphV/BlackCat勒索软件团伙公布了从时装巨头蒙克莱尔(Moncler)处窃取的数据
https://securityaffairs.co/wordpress/126880/cyber-crime/alphv-blackcat-ransomware-hit-moncler.html
以财务为动机的Earth Lusca威胁行为者以全球组织为目标
https://securityaffairs.co/wordpress/126868/hacking/earth-lusca-campaigns.html
Doxbin泄漏包括犯罪分子的数据,可能会助长黑客攻击
https://www.databreachtoday.com/doxbin-leak-includes-criminals-data-could-boost-hacking-a-18326
新的白兔勒索软件与FIN8黑客集团有关
https://www.bleepingcomputer.com/news/security/new-white-rabbit-ransomware-linked-to-fin8-hacking-group/
Office 365网络钓鱼攻击冒充美国劳工部
https://www.bleepingcomputer.com/news/security/office-365-phishing-attack-impersonates-the-us-department-of-labor/
WhisperGate的恶意引导加载程序的技术分析
https://www.crowdstrike.com/blog/technical-analysis-of-whispergate-malware/
海莲花组织在野恶意文件加密解密深度剖析
https://mp.weixin.qq.com/s/IwDRYmP3RSXskoG9WFSsBw
分析TA428在LagTime IT行动中部署的工具
https://medium.com/@0xthreatintel/internals-of-ta428-operation-lagtime-it-3fd342404360
<<Previous
Next>>