360-CERT每日安全简报
Daily Security Briefing
2021-06-18 星期五
漏洞 Vulnerability
CVE-2021-1567: 思科 AnyConnect 客户端DLL劫持漏洞
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-anyconnect-pos-dll-ff8j6dFv
CVE-2021-34551、CVE-2021-3603: PHPMailer 任意代码执行漏洞
https://github.com/PHPMailer/PHPMailer/releases/tag/v6.5.0
安全事件 Security Incident
三国联合行动,抓捕Cl0p勒索软件团伙成员
https://www.bleepingcomputer.com/news/security/ukraine-arrests-cl0p-ransomware-gang-members-seizes-servers/
APT34组织最新攻击活动深度分析报告
https://mp.weixin.qq.com/s/o_EVjBVN2sQ1q7cl4rUXoQ
Ferocious Kitten: 在伊朗进行了 6 年的秘密监视
https://securelist.com/ferocious-kitten-6-years-of-covert-surveillance-in-iran/102806/
Gootloader:“初始访问即服务”平台扩大了对高价值目标的搜索
https://labs.sentinelone.com/gootloader-initial-access-as-a-service-platform-expands-its-search-for-high-value-targets/
属于CVS Health的数十亿条记录遭遇泄露
https://www.zdnet.com/article/billions-of-records-belonging-to-cvs-health-exposed-online/
俄克拉荷马州医疗系统被迫关闭
https://www.scmagazine.com/home/health-care/health-care-ransomware-attacks-oklahoma-health-system-driven-to-ehr-downtime/
银行木马变种通过Android应用传播
https://cybleinc.com/2021/06/17/banking-trojan-variant-spreading-through-android-app/
FakeCop银行木马伪装成OmaPosti邮政程序
https://twitter.com/ReBensk/status/1405193747575578626
We are greeting further cooperation with all parts of security services. If you are interested or have other technical questions relating to cybersecurity, please contact the following:

RSS:daily feed

Email:cert@360.cn

Twitter:@360CERT

or visit cert.360.cn