360-CERT每日安全简报
Daily Security Briefing
2022-01-18 星期二
漏洞 Vulnerability
CVE-2022-20660:信息存储中的漏洞
https://nvd.nist.gov/vuln/detail/CVE-2022-20660
CVE-2021-24044:Facebook Hermes安全漏洞
http://vulhub.org.cn/vuln/VHN-382762
安全事件 Security Incident
与朝鲜有关的APT BlueNoroff关注加密盗窃
https://securityaffairs.co/wordpress/126713/apt/bluenoroff-apt-cryptocurrency.html
国防承包商Hensoldt确认Lorenz勒索软件攻击
https://www.bleepingcomputer.com/news/security/defense-contractor-hensoldt-confirms-lorenz-ransomware-attack/
多个乌克兰政府网站被黑客攻击
https://www.bleepingcomputer.com/news/security/multiple-ukrainian-government-websites-hacked-and-defaced/
Qlocker勒索软件目标是全球QNAP NAS设备
https://www.bleepingcomputer.com/news/security/qlocker-ransomware-returns-to-target-qnap-nas-devices-worldwide/
网络攻击导致阿尔伯克基学校关闭
https://www.zdnet.com/article/albuquerque-public-schools-shut-down-by-ransomware-incident/
Goodwill披露其ShopGoodwill平台上的数据泄露事件
https://www.bleepingcomputer.com/news/security/goodwill-discloses-data-breach-on-its-shopgoodwill-platform/
针对乌克兰组织的破坏性恶意软件
https://www.microsoft.com/security/blog/2022/01/15/destructive-malware-targeting-ukrainian-organizations/
APT-C-23组织对阿拉伯语国家的APT攻击活动
http://it.rising.com.cn/anquan/19853.html
We are greeting further cooperation with all parts of security services. If you are interested or have other technical questions relating to cybersecurity, please contact the following:

RSS:daily feed

Email:cert@360.cn

Twitter:@360CERT

or visit cert.360.cn