Adobe½¨¸´Flash PlayerÖеÄÔ¶³ÌÖ´ÐдúÂë·ì϶£»£»£»£» £»Î¢Èí½áºÏ¶à¸ö°²È«³§É̳ɹ¦µ·»Ù½©Ê¬ÍøÂçTrickBot

°ä²¼¹¦·ò 2020-10-14
1.Adobe½¨¸´Flash PlayerÖеÄÔ¶³ÌÖ´ÐдúÂë·ì϶


1.jpg


Adobe½¨¸´ÁËFlash PlayerÖÐÑϳÁµÄÔ¶³ÌÖ´ÐдúÂë·ì϶£¨³ÆÎªCVE-2020-9746£© ¡£¡£¡£¡£¡£¡£¡£¡£AdobeÖ¸³ö£¬£¬£¬£¬£¬£¬ £¬ £¬ÔÚĬÈÏÇé¿öÏ£¬£¬£¬£¬£¬£¬ £¬ £¬ºÚ¿ÍÄܹ»Í¨¹ýÔÚÓû§½Ó¼ûÍøÕ¾Ê±ÔÚTLS / SSL´«µÝµÄHTTPÏìÓ¦ÖвåÈë¶ñÒâ×Ö·û´®À´ÀûÓô˷ì϶ ¡£¡£¡£¡£¡£¡£¡£¡£³É¹¦ÀûÓô˷ì϶ºó£¬£¬£¬£¬£¬£¬ £¬ £¬¿ÉÄܵ¼ÖÂÀûÓñÀÀ££¬£¬£¬£¬£¬£¬ £¬ £¬´Ó¶øÊ¹¹¥»÷ÕßÄܹ»ÔÚ½Ó¼ûÕßµÄÍÆËã»úÉÏÔ¶³ÌÖ´ÐкÅÁî ¡£¡£¡£¡£¡£¡£¡£¡£ÕâЩºÅÁÔÚÓû§µÄ°²È«»·¾³ÖÐÖ´ÐУ¬£¬£¬£¬£¬£¬ £¬ £¬²¢²»±ØÒªÖÎÀíԱȨÏÞ ¡£¡£¡£¡£¡£¡£¡£¡£


Ô­ÎÄÁ´½Ó£º

https://www.bleepingcomputer.com/news/security/adobe-fixes-critical-security-vulnerability-in-flash-player/


2.΢Èí½áºÏ¶à¸ö°²È«³§É̳ɹ¦µ·»Ù½©Ê¬ÍøÂçTrickBot


2.jpg


ÓÉMicrosoft DefenderÍŶӡ¢FS-ISAC¡¢ESET¡¢Lumen Black Lotus Labs¡¢NTTºÍSymantec×é³ÉµÄÁªÃËͨ¹ý¹²Í¬µÄÖÂÁ¦£¬£¬£¬£¬£¬£¬ £¬ £¬³É¹¦µÄµ·»ÙÁ˽©Ê¬ÍøÂçTrickBot ¡£¡£¡£¡£¡£¡£¡£¡£ÊÂǰ£¬£¬£¬£¬£¬£¬ £¬ £¬ÕâЩ¼¼Êõ¹«Ë¾ÆÆ·ÑÊýÔ¹¦·òÍøÂçÁ˳¬¹ý125000¸öTrickBot¶ñÒâÈí¼þÑù±¾²¢·ÖÎöÆäÄÚÈÝ£¬£¬£¬£¬£¬£¬ £¬ £¬ÌáÈ¡ºÍÓ³ÉäÁËÓйضñÒâÈí¼þÄÚ²¿¹¤×÷µÄÐÅÏ¢£¬£¬£¬£¬£¬£¬ £¬ £¬Ô̺¬½©Ê¬ÍøÂç½ÚÔìÊÜÏ°È¾ÍÆËã»úËùÓ÷þÎñÆ÷ ¡£¡£¡£¡£¡£¡£¡£¡£ÔÚ°ÑÎÕÕâЩÐÅÏ¢ºó£¬£¬£¬£¬£¬£¬ £¬ £¬Î¢ÈíÓÚ±¾ÔÂÉÏ·¨Í¥£¬£¬£¬£¬£¬£¬ £¬ £¬ÒªÇ󷨹ÙÊÚÓèÆä¶ÔTrickBot·þÎñÆ÷µÄ½ÚÔìȨ£¬£¬£¬£¬£¬£¬ £¬ £¬ÒÔµ·»Ù¸Ã½©Ê¬ÍøÂç ¡£¡£¡£¡£¡£¡£¡£¡£


Ô­ÎÄÁ´½Ó£º

https://www.zdnet.com/article/microsoft-and-other-tech-companies-orchestrate-takedown-of-trickbot-botnet


3.×êÑÐÈËÔ±·¢ÏÖ¶ùͯÍó±íXploraµÄºóÃÅ¿ÉÒñ±Î¹àÒôºÍÅÄÕÕ


3.jpg


ŲÍþ°²È«¹«Ë¾Mnemonic·¢ÏÖ¶ùͯÖÇÄÜÍó±íXplora´æÔÚºóÃÅ£¬£¬£¬£¬£¬£¬ £¬ £¬¿Éͨ¹ý¼ÓÃܵÄSMSÐÂÎż¤»î£¬£¬£¬£¬£¬£¬ £¬ £¬Òñ±ÎµØ¹àÒôºÍÅÄÕÕ ¡£¡£¡£¡£¡£¡£¡£¡£×êÑÐÈËÔ±°µÊ¾£¬£¬£¬£¬£¬£¬ £¬ £¬Xplora 4µÄPersistent Connection ServiceÈí¼þ°ü£¬£¬£¬£¬£¬£¬ £¬ £¬¿ÉÔÚAndroidÆô¶¯¹ý³ÌÖÐÔËÐУ¬£¬£¬£¬£¬£¬ £¬ £¬²¢Ñ­»·½Ó¼ûÒÑ×°ÖõÄÀûÓ÷¨Ê½²¢´´½¨intentÁбí£¬£¬£¬£¬£¬£¬ £¬ £¬ÒÔŲÓÃÆäËûÀûÓÃÖеÄÖ°ÄÜ ¡£¡£¡£¡£¡£¡£¡£¡£¿£¿£¿£¿£¿£¿Éͨ¹ý¼ÓÃÜSMSÐÂÎÅÀ´´¥·¢Ö°ÄÜ£¬£¬£¬£¬£¬£¬ £¬ £¬ÀýÈçÔ¶³ÌÄÚ´æ¿ìÕÕ ¡£¡£¡£¡£¡£¡£¡£¡£µ«ÊÇÀûÓöûºóÃÅ·¨Ê½±ØÒªÖªÂ·Ö¸±êÉ豸µÄµç»°ºÅÂë¼°Æä³ö³§ÉèÖõļÓÃÜÃÜÔ¿ ¡£¡£¡£¡£¡£¡£¡£¡£


Ô­ÎÄÁ´½Ó£º

https://www.theregister.com/2020/10/12/xplora_4_smartwatches/


4.QbotÒÔ΢Èíɱ¶¾Èí¼þΪµö¶üÓÕʹÓû§ÆôÓÃExcelºê


4.jpg


Qbot½©Ê¬ÍøÂçÒÔWindows Defender AntivirusΪÖ÷ÌâÓÕʹÓû§ÆôÓÃExcelºê£¬£¬£¬£¬£¬£¬ £¬ £¬À´·Ö·¢¶ñÒâÈí¼þ ¡£¡£¡£¡£¡£¡£¡£¡£8ÔÂ25ÈÕ£¬£¬£¬£¬£¬£¬ £¬ £¬QbotÆðͷʹÓüÙ×°³ÉWindows Defender Antivirus¾¯±¨µÄÐÂÄ£°å£¬£¬£¬£¬£¬£¬ £¬ £¬Ðû³Æ¸ÃÎĵµÒѼÓÃÜ ¡£¡£¡£¡£¡£¡£¡£¡£Òª½âÃÜÎĵµ£¬£¬£¬£¬£¬£¬ £¬ £¬Óû§±ØÖصã»÷ÆôÓñà×ë»òÆôÓÃÄÚÈÝÒÔʹÓÃMicrosoft Office Decryption Core¶ÔÆä½øÐнâÃÜ ¡£¡£¡£¡£¡£¡£¡£¡£µ«ÊÇÓû§ÔÚµã»÷ÆôÓÃÄÚÈݺ󣬣¬£¬£¬£¬£¬ £¬ £¬½«Ö´ÐжñÒâºê£¬£¬£¬£¬£¬£¬ £¬ £¬¸Ãºê½«ÔÚÊܺ¦ÕßµÄÍÆËã»ú¸ßµÍÔØ²¢×°ÖöñÒâÈí¼þEmotet ¡£¡£¡£¡£¡£¡£¡£¡£


Ô­ÎÄÁ´½Ó£º

https://www.bleepingcomputer.com/news/security/qbot-uses-windows-defender-antivirus-phishing-bait-to-infect-pcs/


5.CTIÍŶӰ䲼ÁËÓйØÐÂÐËÍøÂ簲ȫÇ÷ÏòµÄ×êÑл㱨


5.jpg


°£É­ÕܵÄÍøÂçÍþвµý±¨£¨CTI£©ÍŶӰ䲼ÁËÓйØÐÂÐËÍøÂ簲ȫÇ÷ÏòµÄ×êÑл㱨£¬£¬£¬£¬£¬£¬ £¬ £¬Ô̺¬¶ÔÀÕË÷Èí¼þÔËÓªÉÌÓë·ì϶ÏúÊÛÕßÖ®¼ä¹ØÏµÐÔÖʵĵ÷²é ¡£¡£¡£¡£¡£¡£¡£¡£Æä·¢ÏÖËæ×ÅÀÕË÷Èí¼þµÄ³ÖÐøÓ¯Àû£¬£¬£¬£¬£¬£¬ £¬ £¬²É°ì±»µÁµÄƾ֤ºÍ·ì϶µÈÉøÈëµ½Ö¸±êϵͳµÄ²½ÖèÒѾ­Ô½À´Ô½Ê¢ÐÐ ¡£¡£¡£¡£¡£¡£¡£¡£Ä¿Ç°£¬£¬£¬£¬£¬£¬ £¬ £¬Ö§¸¶Êê½ðÄܹ»´ïµ½ÁùλÊýÉõÖÁ¸ü¶à£¬£¬£¬£¬£¬£¬ £¬ £¬¾ßÌåÈ¡¾öÓÚÖ¸±ê¼°Æä¹À¼Æ¼ÛÖµ ¡£¡£¡£¡£¡£¡£¡£¡£Òò¶ø£¬£¬£¬£¬£¬£¬ £¬ £¬ÀÕË÷Èí¼þ×éÖ¯ÔÚ×·ÇóÏ÷¼õ¹¥»÷µÄ³õʼ½Ó¼û½×¶ÎµÄ²½Ö裬£¬£¬£¬£¬£¬ £¬ £¬ÒÔ¼Ó¿ìÁ÷³ÌËÙ¶È£¬£¬£¬£¬£¬£¬ £¬ £¬²¢¾¡¿ÉÄܶàµÄ»ñµÃ·¸·¨ÊÕÈë ¡£¡£¡£¡£¡£¡£¡£¡£


Ô­ÎÄÁ´½Ó£º

https://www.zdnet.com/article/ransomware-operators-buy-network-access-from-the-underground-to-speed-up-infection/


6.Kroll°ä²¼2020Äê×î³£¼ûµÄÍøÂçÍþв·ÖÎö»ã±¨


6.jpg


Kroll°ä²¼2020Äê×î³£¼ûµÄÍøÂçÍþв·ÖÎö»ã±¨£¬£¬£¬£¬£¬£¬ £¬ £¬·¢ÏÖ½ØÖÁ2020Äê9ÔÂ1ÈÕ£¬£¬£¬£¬£¬£¬ £¬ £¬ÀÕË÷Èí¼þ¹¥»÷Õ¼ËùÓа¸ÀýµÄÈý·ÖÖ®Ò»ÒÔÉÏ ¡£¡£¡£¡£¡£¡£¡£¡£Ä¿Ç°£¬£¬£¬£¬£¬£¬ £¬ £¬ÀÕË÷Èí¼þ¹¥»÷Õë¶ÔµÄÈý¸öÖØÒªÐÐÒµÊÇרҵ·þÎñ¡¢Ò½ÁƱ£½¡ºÍ¼¼Êõ¹«Ë¾ ¡£¡£¡£¡£¡£¡£¡£¡£ÆäÖÐÓг¬¹ýÈý·ÖÖ®Ò»£¨35£¥£©µÄ¹¥»÷À´×ÔÓÚÈý¸öÖØÒªµÄÀÕË÷Èí¼þ×éÖ¯£¬£¬£¬£¬£¬£¬ £¬ £¬±ðÀëΪRyuk¡¢SodinokibiºÍMaze ¡£¡£¡£¡£¡£¡£¡£¡£´Ë±í£¬£¬£¬£¬£¬£¬ £¬ £¬Ã³Ò×µç×ÓÓʼþй¶ÏÕЩÓëÀÕË÷Èí¼þÒ»ÑùÆÕ±é£¬£¬£¬£¬£¬£¬ £¬ £¬Õ¼ËùÓÐÍøÂç¹¥»÷µÄ32£¥ ¡£¡£¡£¡£¡£¡£¡£¡£


Ô­ÎÄÁ´½Ó£º

https://www.infosecurity-magazine.com/news/ransomware-tops-2020-threat/