360-CERT每日安全简报
Daily Security Briefing
2021-10-11 星期一
漏洞 Vulnerability
CVE-2021-41133: flatpak 安全限制绕过漏洞安全更新
https://github.com/flatpak/flatpak/security/advisories/GHSA-67h7-w3jq-vh4q
2021.10 Jenkins安全更新
https://www.jenkins.io/security/advisory/2021-10-06/
安全事件 Security Incident
Donot组织利用间谍软件攻击多哥的人权活动家
https://www.amnesty.org/en/latest/news/2021/10/togo-activist-targeted-with-spyware-by-notorious-hacker-group/
Lazarus组织的多个攻击活动及关联
https://vblocalhost.com/conference/presentations/multi-universe-of-adversary-multiple-campaigns-of-the-lazarus-group-and-their-connections/
揭露攻击伊朗铁路的幕后黑手Indra
https://vblocalhost.com/conference/presentations/meet-indra-uncovering-the-hackers-behind-attacks-on-iran-railways/
BlackTech最新攻击活动分析
https://vblocalhost.com/conference/presentations/back-to-blacktech-an-analysis-of-recent-blacktech-operations-and-an-open-directory-full-of-exploits/
APT41被起诉后的演变
https://vblocalhost.com/conference/presentations/evolution-after-prosecution-psychedelic-apt41/
LockBit 2.0勒索软件袭击以色列国防公司E.M.I.T.航空咨询公司
https://securityaffairs.co/wordpress/122892/cyber-crime/e-m-i-t-aviation-consulting-ransomware.html
新APT ChamelGang瞄准俄罗斯的能源和航空公司
https://securityaffairs.co/wordpress/122902/apt/chamelgang-apt-targets-russia.html
针对燃料、能源和航空行业的新APT黑客组织
https://thehackernews.com/2021/10/a-new-apt-hacking-group-targeting-fuel.html
电信服务提供商巨头Syniverse自2016年以来未经授权访问
https://securityaffairs.co/wordpress/122986/data-breach/syniverse-security-breach.html
一项新的研究将看似完全不同的恶意软件攻击与中国黑客联系起来
https://thehackernews.com/2021/10/new-study-links-seemingly-disparate.html
Apache修补程序—在野外利用的零日漏洞
https://securityaffairs.co/wordpress/122999/hacking/apache-zero-day-flaw.html
香港Fimmik公司遭REvil勒索软件攻击
https://www.zdnet.com/article/hong-kong-firm-becomes-latest-marketing-company-hit-with-revil-ransomware/
英国报纸《电讯报》披露了一个10TB的数据库,其中包含用户数据
https://securityaffairs.co/wordpress/123020/data-breach/the-telegraph-data-leak.html
伊朗黑客滥用Dropbox攻击航空和电信公司
https://thehackernews.com/2021/10/iranian-hackers-abuse-dropbox-in.html
Twitch源代码和支付报告泄露
https://www.bleepingcomputer.com/news/security/massive-twitch-hack-source-code-and-payment-reports-leaked/
We are greeting further cooperation with all parts of security services. If you are interested or have other technical questions relating to cybersecurity, please contact the following:

RSS:daily feed

Email:cert@360.cn

Twitter:@360CERT

or visit cert.360.cn