CrowdStrike°ä²¼¡¶2020ÄêÈ«ÇòÍþв»ã±¨¡·£»£»£»£»£»Ó¢¹úÊý¾Ý¼à¹Ü»ú¹¹¶Ô¹úÌ©º½¿Õ´¦ÒÔ50ÍòÓ¢°÷·£¿£¿£¿£¿£¿£¿£¿î
°ä²¼¹¦·ò 2020-03-051.CrowdStrike°ä²¼¡¶2020ÄêÈ«ÇòÍþв»ã±¨¡·
CrowdStrikeµÄ¡¶2020ÄêÈ«ÇòÍþв»ã±¨¡·¶Ô´ÓǰһÄêÖж¥¼¶ÍøÂçÍþвÇ÷Ïò½øÐÐÁËÉî¿Ì·ÖÎö£¬£¬£¬£¬£¬£¬£¬£¬¸Ã»ã±¨µÄÖØµãÔ̺¬£º´óÐ͹¥»÷»î¶¯£¨BGH£©²»ÐÝÉý¼¶£¬£¬£¬£¬£¬£¬£¬£¬Êê½ðÒªÇóìÉýÖÁÊý°ÙÍò£¬£¬£¬£¬£¬£¬£¬£¬²¢ÇÒÔì³É¼«´óµÄ·ÛË飻£»£»£»£»ÍøÂç·¸×ï·Ö×ÓÔÚʹÃô¸ÐÊý¾Ý±øÆ÷»¯£¬£¬£¬£¬£¬£¬£¬£¬ÒÔÔö³¤¶ÔÀÕË÷Èí¼þÊܺ¦ÕßµÄѹÁ¦£»£»£»£»£»eCrimeÉú̬ϵͳ²»ÐÝ·¢Õ¹£¬£¬£¬£¬£¬£¬£¬£¬±äµÃ³ÉÊìºÍרҵ»¯Ë®Æ½²»ÐÝÌá¸ß£»£»£»£»£»ÔÚBGHÖ®±í£¬£¬£¬£¬£¬£¬£¬£¬Õë¶ÔÈ«Çò½ðÈÚ»ú¹¹µÄeCrime»î¶¯ÓÐËùÔö³¤£»£»£»£»£»³¯ÏòÎÞ¶ñÒâÈí¼þÕ½ÊõµÄÇ÷ÏòÔڼӿ죻£»£»£»£»¹ú¶ÈÔÞÖúµÄÓÐÕë¶ÔÐÔµÄÈëÇֻ³ÖÐøÕë¶Ô֪ʶ²úȨ/¾ºÕùµý±¨£¬£¬£¬£¬£¬£¬£¬£¬ÍƽøÉçÇøÄÚ²¿µÄ¸îÁÑ£¬£¬£¬£¬£¬£¬£¬£¬²¢¹Û²ìµ½ÁËÓëÏȽøeCrime¹¥»÷ÕߵĺÏ×÷¡£¡£¡£¡£¡£¡£¡£¡£
ÔÎÄÁ´½Ó£º
https://www.crowdstrike.com/resources/reports/2020-crowdstrike-global-threat-report/
2.Ó¢¹úNCSC°ä²¼ÓйØÖÇÄÜ¼à¿ØÉãÏñÍ·µÄ°²È«Ö¸ÄÏ
Ó¢¹ú¹ú¶ÈÍøÂ簲ȫÖÐÐÄ£¨NCSC£©°ä²¼ÓйØÈôºÎÕýÈ·ÉèÖÃÖÇÄܰ²È«ÉãÏñÍ·ºÍÓ¤¶ù¼à¶½Æ÷µÄÖ¸ÄÏ£¬£¬£¬£¬£¬£¬£¬£¬ÒÔÔ¤·ÀÓû§Êܵ½¹¥»÷ÕߵĹ¥»÷¡£¡£¡£¡£¡£¡£¡£¡£NCSC°µÊ¾¡°ÖÇÄÜÉãÏñ»ú£¨ÓÃÓڼල·¿ÎÝÄÚºÍÖÜΧ»î¶¯µÄ°²È«ÉãÏñ»úºÍÓ¤¶ù¼à¶½Æ÷£©Í¨³£Ê¹ÓüÒÍ¥Wi-FiÏνӵ½»¥ÁªÍø£¬£¬£¬£¬£¬£¬£¬£¬ÔÚ¼«ÉÙÊýÇé¿öÏ£¬£¬£¬£¬£¬£¬£¬£¬Î´¾ÊÚȨµÄ¹¥»÷ÕßÄܹ»½Ó¼ûÖÇÄÜÉãÏñ»úµÄʵʱÁ÷»òͼÏñ£¬£¬£¬£¬£¬£¬£¬£¬Õâ»áʹÄúµÄÒþÖÔÊܵ½Íþв¡£¡£¡£¡£¡£¡£¡£¡£¡±ÎªÁËÕмܴËÀ๥»÷£¬£¬£¬£¬£¬£¬£¬£¬NCSC½¨ÒéʹÓÃÇ¿Á¦µÄ¡¢»ùÓÚÃÜÂë¶ÌÓïµÄÃÜÂë¸ü¸ÄÉ豸µÄĬÈÏÃÜÂ룬£¬£¬£¬£¬£¬£¬£¬¸ÃÃÜÂëÄܹ»Ê¹ÓÃÓû§¿ÉÄܼÇסµÄÈý¸öËæ»úµ¥´Ê¹¹½¨£¬£¬£¬£¬£¬£¬£¬£¬²¢ÇÒά³Ö°²È«ÉãÏñÍ·µÄ¹Ì¼þΪ×îкͽûÓò»ÓÃÒªµÄÔ¶³Ì²é¿´¡£¡£¡£¡£¡£¡£¡£¡£
ÔÎÄÁ´½Ó£º
https://www.bleepingcomputer.com/news/security/uk-ncsc-releases-tips-on-securing-smart-security-cameras/
3.·¸×ïÍÅ»ïMoleratsй¥»÷»î¶¯£¬£¬£¬£¬£¬£¬£¬£¬Õë¶Ôµ±¾ÖºÍµçÐÅÐÐÒµ
Palo Alto NetworksµÄUnit42ÍŶÓÔÚ2019Äê10Ôµ½2019Äê12Ô¹۲쵽¶à¸öÓë·¸×ïÍÅ»ïMoleratsÓйصĴ¹µö¹¥»÷»î¶¯¡£¡£¡£¡£¡£¡£¡£¡£¹¥»÷ÕßµÄÖ¸±êº¸Çµ±¾Ö¡¢µçÐÅ¡¢±£ÏÕºÍÁãÊÛÐÐÒµ£¬£¬£¬£¬£¬£¬£¬£¬Éæ¼°6¸ö¹ú¶ÈµÄ8¸ö×éÖ¯¡£¡£¡£¡£¡£¡£¡£¡£ËùÓÐÕâЩ¹¥»÷¶¼Éæ¼°µ½ÀûÓô¹µöÓʼþ´«µÝ¶ñÒâÎĵµ£¬£¬£¬£¬£¬£¬£¬£¬²¢ÀûÓÃÉç½»¹¤³Ì¼¼ÊõÒªÇóÊÕ¼þÈËÖ´ÐÐijЩ²Ù×÷£¬£¬£¬£¬£¬£¬£¬£¬ÀýÈçÆôÓúê»òµã»÷Á´½ÓµÈ¡£¡£¡£¡£¡£¡£¡£¡£´óÎÞÊý´ËÀ๥»÷ÖеÄÓÐЧ¸ºÔØÊÇSparkºóÃÅ£¬£¬£¬£¬£¬£¬£¬£¬¸ÃºóÃÅÔÊÐí¹¥»÷ÕßÔÚÊÜϰȾµÄϵͳÉÏ´ò¿ªÀûÓ÷¨Ê½²¢ÔËÐкÅÁî¡£¡£¡£¡£¡£¡£¡£¡£
ÔÎÄÁ´½Ó£º
https://unit42.paloaltonetworks.com/molerats-delivers-spark-backdoor/
4.Ó¢¹úÊý¾Ý¼à¹Ü»ú¹¹¶Ô¹úÌ©º½¿Õ´¦ÒÔ50ÍòÓ¢°÷·£¿£¿£¿£¿£¿£¿£¿î
Ó¢¹úÐÅϢרԱ°ì¹«ÊÒÒò2018Äê940Íò³Ë¿ÍÊý¾Ýй¶ÊÂÎñ¶Ô¹úÌ©º½¿Õ¹«Ë¾´¦ÒÔ50ÍòÓ¢°÷µÄ·£¿£¿£¿£¿£¿£¿£¿î¡£¡£¡£¡£¡£¡£¡£¡£¸Ã¹¥»÷ÒÉËÆ²úÉúÔÚ2018Äê3Ô·ݣ¬£¬£¬£¬£¬£¬£¬£¬²¢ÓÚ5Ô·ݵõ½È·ÈÏ£¬£¬£¬£¬£¬£¬£¬£¬Æäʱ¹úÌ©º½¿ÕµÄÊý¾Ý¿âÔâµ½Á˱©Á¦ÆÆ½â¹¥»÷¡£¡£¡£¡£¡£¡£¡£¡£ICOµ÷²é³Æ¹úÌ©µÄϵͳÊܵ½ÁËÊý¾ÝÍøÂçÀà¶ñÒâÈí¼þµÄÓ°Ï죬£¬£¬£¬£¬£¬£¬£¬²¢·¢ÏÖ¹úÌ©ÔÚ°²È«ÐÔ·½ÃæµÄһЩ²»¼°£¬£¬£¬£¬£¬£¬£¬£¬Ô̺¬²»ÊÜÃÜÂë±£»£»£»£»£»¤µÄ±¸·ÝÎļþ¡¢Î´´ò²¹¶¡µÄWeb·þÎñÆ÷¡¢ÒѹýÆÚµÄ²Ù×÷ϵͳºÍ²»×ã·À²¡¶¾±£»£»£»£»£»¤µÈ¡£¡£¡£¡£¡£¡£¡£¡£
ÔÎÄÁ´½Ó£º
https://www.theregister.co.uk/2020/03/04/ico_fines_cathay_pacific_500000/
5.¹È¸è°ä²¼3ÔÂAndroid°²È«¸üУ¬£¬£¬£¬£¬£¬£¬£¬½¨¸´70¶à¸ö·ì϶
¹È¸è°ä²¼2020Äê3ÔÂAndroid°²È«¸üУ¬£¬£¬£¬£¬£¬£¬£¬¹²½¨¸´70¶à¸ö·ì϶£¬£¬£¬£¬£¬£¬£¬£¬ÆäÖÐ×îÑϳÁµÄ·ì϶ÊÇýÌå¿ò¼Ü×é¼þÖеĴúÂëÖ´Ðзì϶£¨CVE-2020-0032£©£¬£¬£¬£¬£¬£¬£¬£¬¸Ã·ì϶¿ÉÄÜʹԶ³Ì¹¥»÷ÕßÀûÓöñÒâÎļþÔÚÌØÈ¨¹ý³ÌµÄ¸ßµÍÎÄÖÐÖ´ÐÐËÁÒâ´úÂ룬£¬£¬£¬£¬£¬£¬£¬¸Ã·ì϶ӰÏìÁËÔËÐÐAndroid 8.0¡¢8.1¡¢9ºÍ10°æ±¾µÄÉ豸¡£¡£¡£¡£¡£¡£¡£¡£´Ë±í£¬£¬£¬£¬£¬£¬£¬£¬¹È¸è»¹½¨¸´ÁËýÌå¿ò¼ÜÖеÄÁí±íÁ½¸öÑϳÁ·ì϶£¬£¬£¬£¬£¬£¬£¬£¬Ô̺¬ÌØÈ¨ÌáÉý·ì϶£¨CVE-2020-0033£©ºÍÐÅϢй¶·ì϶£¨CVE-2020-0034£©¡£¡£¡£¡£¡£¡£¡£¡£Õâ´Î¸üн¨¸´Á˸ßͨ¹ØÔ´×é¼þÖеÄ40¸ö·ì϶£¬£¬£¬£¬£¬£¬£¬£¬ÆäÖÐ16¸ö±»ÆÀΪÑϳÁ¼¶±ð¡£¡£¡£¡£¡£¡£¡£¡£
ÔÎÄÁ´½Ó£º
https://securityaffairs.co/wordpress/98901/mobile-2/googles-march-2020-security-updates-android.html
6.¼ÎÄ껪ÓÎÂÖ¼¯ÍÅÔâºÚ¿ÍÈëÇÖ£¬£¬£¬£¬£¬£¬£¬£¬¿Í»§Êý¾Ý¿ÉÄÜй¶
È«Çò×î´óµÄÓÎÂÖÔËÓªÉ̼ÎÄ껪ÓÎÂÖ¼¯ÍÅ£¨Carnival Corporation£¦plc£©ÔâºÚ¿ÍÈëÇÖ£¬£¬£¬£¬£¬£¬£¬£¬¿Í»§Êý¾Ý¿ÉÄÜй¶¡£¡£¡£¡£¡£¡£¡£¡£Æ¾¾Ý¸Ã¹«Ë¾µÄ´«µÝ£¬£¬£¬£¬£¬£¬£¬£¬ÔÚ2019Äê4ÔÂ11ÈÕÖÁ7ÔÂ23ÈÕÖ®¼äδ¾ÊÚȨµÄ¹¥»÷Õß½Ó¼ûÁËijЩÔ̺¬¿Í»§ÐÅÏ¢µÄÔ±¹¤ÓÊÏäÕË»§£¬£¬£¬£¬£¬£¬£¬£¬¿ÉÄÜй¶µÄÐÅÏ¢Ô̺¬¿Í»§µÄÐÕÃû¡¢µØÖ·¡¢Éç»á°²È«ºÅÂë¡¢µÐÔÖ¼ø±ðºÅÂ루ÀýÈ绤ÕÕID»ò¼ÝÕÕID£©¡¢ÐÅÓþ¿¨ºÍÒøÐÐÕË»§ÐÅÏ¢ÒÔ¼°Ó뽡ȫÇé¿öÓйصÄÐÅÏ¢¡£¡£¡£¡£¡£¡£¡£¡£¼ÎÄ껪»¹³Æµ±Ç°Ã»ÓÐÖ¤¾ÝÅú×¢ÊÂÎñ²úÉúºóÊÜÓ°Ïì¿Í»§µÄÓ×ÎÒÐÅÏ¢±»ÀÄÓᣡ£¡£¡£¡£¡£¡£¡£
ÔÎÄÁ´½Ó£º
https://www.bleepingcomputer.com/news/security/carnival-cruise-line-operator-discloses-potential-data-breach/


¾©¹«Íø°²±¸11010802024551ºÅ