360-CERT每日安全简报
Daily Security Briefing
2022-01-17 星期一
<<Previous
Next>>
漏洞
Vulnerability
CVE-2022-21907:Microsoft Windows HTTP 协议栈远程代码执行漏洞
https://cve.report/CVE-2022-21907
CVE-2021-43297:Apache Dubbo 远程代码执行漏洞通告
https://www.tenable.com/cve/CVE-2021-43297
安全事件
Security Incident
Magniber勒索软件使用签名的APPX文件感染系统
https://www.bleepingcomputer.com/news/security/magniber-ransomware-using-signed-appx-files-to-infect-systems/
SysJoker,一个以前未被发现的跨平台后门成为头条新闻
https://securityaffairs.co/wordpress/126656/malware/sysjoker-backdoor.html
GootLoader黑客攻击律师事务所和会计师事务所的员工
https://thehackernews.com/2022/01/gootloader-hackers-targeting-employees.html
研究人员解密了Qakbot Banking特洛伊木马加密的注册表项
https://thehackernews.com/2022/01/researchers-decrypted-qakbot-banking.html
BlueNoroff组织针对加密货币初创公司的攻击活动
https://securelist.com/the-bluenoroff-cryptocurrency-hunt-is-still-on/105488/
剖析海莲花组织恶意文件定制化策略
https://mp.weixin.qq.com/s/_ON095i-wuNHtQQgB-hSng
<<Previous
Next>>