Õë¶Ô·¨ÓïÇøµÄÍþвÍÅ»ïCryptosLabsÒÑ׬ǮԼ4.8ÒÚÅ·Ôª
Ðû²¼Ê±¼ä 2023-06-301¡¢Õë¶Ô·¨ÓïÇøµÄÍþвÍÅ»ïCryptosLabsÒÑ׬ǮԼ4.8ÒÚÅ·Ôª
¾Ý6ÔÂ28ÈÕ±¨µÀ£¬£¬Group-IBÅû¶Á˹ØÓÚÍþвÍÅ»ïCryptosLabsÔË×÷·½·¨µÄÏêϸÐÅÏ¢¡£¡£¡£¡£¡£Ëü×Ô2018Äê4ÔÂÒÔÀ´£¬£¬Ö÷ÒªÕë¶Ô·¨¹ú¡¢±ÈÀûʱºÍ¬ɱ¤µÄ·¨ÓïÇøÓû§£¬£¬Ô¤¼ÆÒÑ»ñµÃ4.8ÒÚÅ·ÔªµÄ²»·¨ÀûÈ󡣡£¡£¡£¡£¸ÃÍÅ»ïµÄ´ó¹æÄ£Ú²Æ»î¶¯É漰ð³ä40¼Ò×ÅÃûÒøÐС¢½ðÈڿƼ¼¹«Ë¾¡¢×ʲúÖÎÀí¹«Ë¾ºÍ¼ÓÃÜÇ®±Òƽ̨£¬£¬½¨ÉèÁ˺á¿ç350¶à¸öÓòÃûµÄ»ù´¡ÉèÊ©£¬£¬ÍйÜÔÚ80¶ą̀ЧÀÍÆ÷ÉÏ¡£¡£¡£¡£¡£Æä»î¶¯µÄÒ»¸öÁÁµãÊÇʹÓÃ×Ô½ç˵թƹ¤¾ß°ü£¬£¬¿ÉÔËÐС¢ÖÎÀíºÍ¹æÄ£»£»¯Í¶×Êթƻ¡£¡£¡£¡£¡£
https://thehackernews.com/2023/06/cryptoslabs-scam-ring-targets-french.html
2¡¢Ñо¿Ö°Ô±ÑÝʾÔõÑùͨ¹ýµç´Å¹ÊÕÏ×¢Èë¹¥»÷À´½ÓÊÜÎÞÈË»ú
ýÌå6ÔÂ28Èճƣ¬£¬IOActive·¢Ã÷ÁËͨ¹ýµç´Å¹ÊÕÏ×¢Èë(EMFI)¹¥»÷À´½ÓÊÜÎÞÈË»úµÄÒªÁì¡£¡£¡£¡£¡£Ëæ×ÅÎÞÈË»úµÄʹÓÃÒ»Ö±ÔöÌí£¬£¬Ñо¿Ö°Ô±×¨×¢ÓÚʹÓ÷ÇÇÖÈëÐÔÊÖÒÕÔÚÎÞÈË»úÉÏʵÏÖ´úÂëÖ´ÐС£¡£¡£¡£¡£¸Ã¹«Ë¾·¢Ã÷£¬£¬Í¨¹ýÔڹ̼þ¸üÐÂʱ´úµÄÊÊÆäʱ¼ä×¢ÈëÌØ¶¨µÄµç´Å¹ÊÕÏÀ´ÈëÇÖÄ¿µÄ×°±¸ÊÇ¿ÉÐеġ£¡£¡£¡£¡£¹¥»÷Õß¿ÉÒÔͨ¹ý´ËÀ๥»÷ÔÚÖ÷´¦Öóͷ£Æ÷ÉÏÖ´ÐдúÂ룬£¬²¢»ñµÃ¶ÔʵÏÖÎÞÈË»ú½¹µã¹¦Ð§µÄAndroid²Ù×÷ϵͳµÄ»á¼û¡£¡£¡£¡£¡£ÖÁÓÚ»º½â²½·¥£¬£¬Ñо¿Ö°Ô±½¨ÒéÎÞÈË»ú¿ª·¢Ö°Ô±Á¬Ïµ»ùÓÚÓ²¼þºÍÈí¼þµÄEMFI¶Ô²ß¡£¡£¡£¡£¡£
https://thehackernews.com/2023/06/alert-new-electromagnetic-attacks-on.html
3¡¢Ó¢¹úNHSÁè¼Ý100ÍòÃû»¼ÕßµÄÏêϸÐÅÏ¢ÒòÍøÂç¹¥»÷й¶
¾Ý6ÔÂ29ÈÕ±¨µÀ£¬£¬Ó¢¹úNHSÁè¼Ý100Íò»¼ÕßµÄÏêϸÐÅÏ¢ÒÑÔÚÍøÂç¹¥»÷ÖÐй¶¡£¡£¡£¡£¡£¾ÝϤ£¬£¬Âü³¹Ë¹ÌØ´óѧ½üÆÚÔâµ½ÀÕË÷¹¥»÷£¬£¬Ó°ÏìÁËNHS»¼ÕßÊý¾Ý¿â£¬£¬Éæ¼°200¼ÒÒ½Ôº110ÍòÃû»¼ÕßµÄÐÅÏ¢£¬£¬ÕâЩÐÅÏ¢ÊÇÓɸôóѧ³öÓÚÑо¿Ä¿µÄ¶øÍøÂçµÄ¡£¡£¡£¡£¡£Æ¾Ö¤¸Ã´óѧ¾ÙÐеÄÒ»ÏîÊӲ죬£¬ÆÊÎöÅúעԼĪ250 GBµÄÊý¾Ý±»»á¼û¡£¡£¡£¡£¡£Âü³¹Ë¹ÌØ´óѧ½²»°È˾ܾø¾ÍNHSÊý¾Ý½ÒÏþ̸ÂÛ£¬£¬µ«Ã»Óзñ¶¨ÕâÒ»Êý¾Ýй¶ÊÂÎñ¡£¡£¡£¡£¡£
https://www.independent.co.uk/news/health/nhs-patient-data-attack-b2364202.html
4¡¢ÃÀ¹ú¹ú¼ÒѧÉúÐÅÏ¢½»Á÷ËùÔâµ½ClopµÄ¹¥»÷»òÒѽ»Êê½ð
¾ÝýÌå6ÔÂ28ÈÕ±¨µÀ£¬£¬ÃÀ¹ú¹ú¼ÒѧÉúÐÅÏ¢½»Á÷ËùÔâµ½ÁËClopʹÓÃMOVEitÎó²îµÄ¹¥»÷¡£¡£¡£¡£¡£¸Ã»ú¹¹Æù½ñΪֹµÄÉùÃ÷²¢Î´Åú×¢ËûÃÇÊÇ·ñÖª×ãÁËÊê½ðÒªÇ󣬣¬µ«¾ÝÏàʶ£¬£¬ËûÃǵÄÃû×ÖÒÑ´ÓClopµÄÍøÕ¾ÉÑþ³Øý£¬£¬Õâͨ³£Åú×¢×éÖ¯ÒѾ½»ÁËÊê½ð¡£¡£¡£¡£¡£½»Á÷ËùÌåÏÖ£¬£¬ÊÓ²ìÈÔÔÚ¾ÙÐÐÖУ¬£¬¹¥»÷Õß¿ÉÄÜ»ñÈ¡ÁËͨ¹ýMOVEit Transfer¹¤¾ß´«ÊäµÄ²¿·ÖÎļþ£¬£¬ÆäÖаüÀ¨Ð¡ÎÒ˽¼ÒÊý¾ÝµÄÎļþ£¬£¬¿ÉÊDz¢Î´Ó°Ïì¸Ã×é֯ϵͳµÄÊý¾Ý¡£¡£¡£¡£¡£
https://www.databreaches.net/national-student-clearinghouse-notifies-schools-of-moveit-breach/
5¡¢CybleÐû²¼¹ØÓÚLinux°æ±¾AkiraÀÕË÷Èí¼þµÄÆÊÎö±¨¸æ
6ÔÂ28ÈÕ£¬£¬CybleÐû²¼Á˹ØÓÚLinux°æ±¾AkiraÀÕË÷Èí¼þµÄÆÊÎö±¨¸æ¡£¡£¡£¡£¡£AkiraÊ״ηºÆðÓÚ2023Äê3Ô£¬£¬Õë¶Ô¸÷¸öÁìÓòµÄWindowsϵͳ¡£¡£¡£¡£¡£½üÆÚ£¬£¬Ñо¿Ö°Ô±·¢Ã÷ÁËAkiraµÄLinux±äÌ壬£¬Ö÷ÒªÕë¶ÔVMware ESXiÐéÄâ»ú¡£¡£¡£¡£¡£Linux¼ÓÃܳÌÐò°üÀ¨¹«¹²RSA¼ÓÃÜÃÜÔ¿£¬£¬²¢Ê¹ÓöàÖÖ¶Ô³ÆÃÜÔ¿Ëã·¨¾ÙÐÐÎļþ¼ÓÃÜ£¬£¬ÀýÈçAES¡¢CAMELLIA¡¢IDEA-CBºÍDES¡£¡£¡£¡£¡£ÓëÆäËüVMware ESXi¼ÓÃܳÌÐò²î±ð£¬£¬AkiraµÄ¼ÓÃܳÌÐò²»°üÀ¨Ðí¶à¸ß¼¶¹¦Ð§£¬£¬ÀýÈçÔÚʹÓÃesxcliÏÂÁî¼ÓÃÜÎļþ֮ǰ×Ô¶¯¹Ø±ÕÐéÄâ»ú¡£¡£¡£¡£¡£
https://blog.cyble.com/2023/06/28/akira-ransomware-extends-reach-to-linux-platform/
6¡¢KasperskyÐû²¼AndarielÍŻPÆäÐÂEarlyRatµÄ±¨¸æ
KasperskyÔÚ6ÔÂ28ÈÕÐû²¼Á˹ØÓÚAndarielÍŻPÆäжñÒâÈí¼þEarlyRatµÄ±¨¸æ¡£¡£¡£¡£¡£AndarielÊdz¯ÏÊLazarusµÄ×Ó×éÖ¯£¬£¬Ö÷ҪʹÓÃDTrackÄ£¿£¿£¿é»¯ºóÃÅ´Ó±»Ñ¬È¾µÄÏµÍ³ÍøÂçÐÅÏ¢¡£¡£¡£¡£¡£EarlyRATÆô¶¯ºó»áÍøÂçϵͳÐÅÏ¢²¢Í¨¹ýPOSTÇëÇ󽫯䷢Ë͵½C2£¬£¬ÆäµÚ¶þ¸öÖ÷Òª¹¦Ð§ÊÇÔÚÄ¿µÄϵͳÉÏÖ´ÐÐÏÂÁî¡£¡£¡£¡£¡£Ñо¿Ö°Ô±ÌåÏÖ£¬£¬¼øÓÚ¹ýʧºÍ´í±ð×ÖµÄÊýÄ¿£¬£¬Ëù¼ì²âµ½µÄEarlyRAT»î¶¯ËƺõÊÇÓÉȱ·¦ÂÄÀúµÄÔËÓªÖ°Ô±ÊÖ¶¯Ö´Ðеġ£¡£¡£¡£¡£
https://securelist.com/lazarus-andariel-mistakes-and-easyrat/110119/


¾©¹«Íø°²±¸11010802024551ºÅ