д¹µö»î¶¯¼ÙÒâMicrosoft TeamsÕë¶ÔOffice 365Óû§£»£»£» £»£»£»£»£»Åµ»ùÑÇÍþвµý±¨³¢ÊÔÊÒ°ä²¼2020ÄêÍþвµý±¨»ã±¨

°ä²¼¹¦·ò 2020-10-26

1.д¹µö»î¶¯¼ÙÒâMicrosoft TeamsÕë¶ÔOffice 365Óû§


1.png


Abnormal Security·¢ÏÖд¹µö»î¶¯¼ÙÒâMicrosoft TeamsÕë¶ÔOffice 365Óû§¡£¡£¡£¡£¡£¡£ ¡£ÕâЩ´¹µöÓʼþÊÇÒÔTeamsÖÐÓÐлΪÖ÷Ìâ·¢Ë͵Ä£¬£¬£¬£¬£¬ £¬£¬¿´ÆðÀ´ÏñÊÇMicrosoft TeamsµÄ×Ô¶¯Í¨Öª£¬£¬£¬£¬£¬ £¬£¬ÓÃÀ´·î¸æÊܺ¦ÕßÓдí¹ýµÄ̸Ìì¡£¡£¡£¡£¡£¡£ ¡£ÓʼþÓÕʹÊܺ¦Õßµã»÷Team»Ø´ðÁ´½Ó£¬£¬£¬£¬£¬ £¬£¬ÒÔ³Á¶¨Ïòµ½´¹µöÍøÕ¾£¬£¬£¬£¬£¬ £¬£¬À´ÇÔÈ¡Office 365Óû§µÄƾ֤¡£¡£¡£¡£¡£¡£ ¡£×êÑÐÈËÔ±¹Û²ìµ½£¬£¬£¬£¬£¬ £¬£¬¹¥»÷ÕßÒѾ­ÀûÓøû¹¥»÷ÁË15000ÖÁ50000¸öOffice 365Óû§¡£¡£¡£¡£¡£¡£ ¡£


Ô­ÎÄÁ´½Ó£º

https://securityaffairs.co/wordpress/109938/cyber-crime/microsoft-teams-phishing-attacks.html


2.EmotetÆôÓÃÐÂÄ£°å£¬£¬£¬£¬£¬ £¬£¬ÀûÓÃÔ̺¬¶ñÒâºêµÄWordÎĵµ´«²¼


2.png


Emotet±¾ÖÜÆôÓÃÁËÒ»¸öÐÂÄ£°å£¬£¬£¬£¬£¬ £¬£¬¸ÃÄ£°å¼Ù×°³ÉMicrosoft OfficeÐÂÎÅ£¬£¬£¬£¬£¬ £¬£¬ÒªÇóÓû§¸üÐÂMicrosoft WordÒÔÔö³¤ÐÂÖ°ÄÜ¡£¡£¡£¡£¡£¡£ ¡£EmotetÊÇÒ»ÖÖ¶ñÒâÈí¼þ£¬£¬£¬£¬£¬ £¬£¬»áͨ¹ý´øÓжñÒâºêµÄWordÎĵµµÄµç×ÓÓʼþ´«²¼¡£¡£¡£¡£¡£¡£ ¡£ÎªÁËÓÕÆ­Óû§ÆôÓú꣬£¬£¬£¬£¬ £¬£¬Emotet¼Ù×°³ÉMicrosoft OfficeÐÂÎÅ£¬£¬£¬£¬£¬ £¬£¬ÒªÇóÓû§ÆôÓñà×ëºÍÆôÓÃÄÚÈÝ£¬£¬£¬£¬£¬ £¬£¬ÒÔÖ´ÐжñÒâºê¡£¡£¡£¡£¡£¡£ ¡£ÕâЩ¶ñÒâºê½«ÏÂÔØEmotet¶ñÒâÈí¼þ£¬£¬£¬£¬£¬ £¬£¬²¢½«Æä×°Öõ½Êܺ¦Õߵģ¥LocalAppData£¥Îļþ¼ÐÖС£¡£¡£¡£¡£¡£ ¡£


Ô­ÎÄÁ´½Ó£º

https://www.bleepingcomputer.com/news/security/emotet-malware-now-wants-you-to-upgrade-microsoft-word/


3.·ÒÀ¼VastaamoÐÄÒ½ÖÎÖÐÐÄÔâ¹¥»÷£¬£¬£¬£¬£¬ £¬£¬¿Í»§ÐÅÏ¢¿ÉÄܱ»µÁ


3.png


·ÒÀ¼VastaamoÐÄÒ½ÖÎÖÐÐÄÔâ¹¥»÷£¬£¬£¬£¬£¬ £¬£¬¿Í»§ÐÅÏ¢¿ÉÄܱ»µÁ¡£¡£¡£¡£¡£¡£ ¡£VastaamoÊÇ·ÒÀ¼¹«¹²ÎÀÉúϵͳµÄ·Ö°üÉÌ£¬£¬£¬£¬£¬ £¬£¬ÔÚ±±Å·¹ú¶ÈÓÐ550Íò·ÖÖ§»ú¹¹¡£¡£¡£¡£¡£¡£ ¡£·ÒÀ¼ÄÚÕþ²¿³¤Maria Ohisalo³Æ£¬£¬£¬£¬£¬ £¬£¬Õâ´ÎÊÂÎñÊÇÁîÈËÕð¾ªÇÒ¼«¶ÈÑϳÁµÄÊÂÎñ£¬£¬£¬£¬£¬ £¬£¬µ±¾ÖÔÚΪÕâ´ÎÊÂÎñµÄÊܺ¦ÕßÌṩ¼±¾çµÄΣ»£»£» £»£»£»£»£»úÔöÔ®¡£¡£¡£¡£¡£¡£ ¡£Vastaamo°µÊ¾µÚÒ»´Î¹¥»÷²úÉúÔÚ2018Äê11Ô£¬£¬£¬£¬£¬ £¬£¬ÆäÊý¾ÝÔÚ11Ôµ×ÖÁ´ÎÄê3ÔÂÖ®¼ä±»ÇÔÈ¡¡£¡£¡£¡£¡£¡£ ¡£¹ú¶Èµ÷²é¾Ö°µÊ¾£¬£¬£¬£¬£¬ £¬£¬ÉÏÍòÃûVastaamo¿Í»§µÄÓ×ÎÒÊý¾Ý»òÒѱ»µÁ¡£¡£¡£¡£¡£¡£ ¡£


Ô­ÎÄÁ´½Ó£º

https://www.securityweek.com/finland-shocked-therapy-center-hacking-client-blackmail


4.Trustwave°ä²¼¼¼ÊõÇ÷ÏòÓ°ÏìÆóÒµ·À»¤Õ½ÊõµÄ·ÖÎö»ã±¨


4.png


Trustwave°ä²¼ÁËÒ»·Ý»ã±¨£¬£¬£¬£¬£¬ £¬£¬ÃèÊöÁ˼¼ÊõÇ÷Ïò¡¢¹¥»÷·çÏÕºÍÂÉÀýÈôºÎÓ°Ïì×éÖ¯Êý¾ÝµÄ´æ´¢ºÍ±£»£»£» £»£»£»£»£»¤·½Ê½¡£¡£¡£¡£¡£¡£ ¡£µ÷²é·¢ÏÖ£¬£¬£¬£¬£¬ £¬£¬Ëæ×ʤ×÷¸ºÔØÏò±íǨáã¡¢¶ÔÔÆ·þÎñµÄ¹¥»÷Ôö³¤ÒÔ¼°ÀÕË÷Èí¼þµÄ·¢Õ¹£¬£¬£¬£¬£¬ £¬£¬ÆóÒµÔÚ±£»£»£» £»£»£»£»£»¤Êý¾Ý°²È«·½ÃæÃæ¶Ô¾Þ´óѹÁ¦¡£¡£¡£¡£¡£¡£ ¡£96%µÄÊÜ·ÃÕß°µÊ¾£¬£¬£¬£¬£¬ £¬£¬ËûÃÇ´òËãÔÚ½«À´Á½ÄêÄÚ½«Ãô¸ÐÊý¾Ý×ªÒÆµ½ÔÆÉÏ£¬£¬£¬£¬£¬ £¬£¬ÆäÖÐ52%µÄÊÜ·ÃÕß´òË㽫¸ßÃô¸ÐÊý¾ÝÔ̺¬ÔÚÄÚ¡£¡£¡£¡£¡£¡£ ¡£µ±±»Îʼ°ÔÚÊý×ÖתÐÍ´òËãÖÐÈ·±£Êý¾Ý°²È«µÄ³ÁÒªÐÔʱ£¬£¬£¬£¬£¬ £¬£¬¾ùÔȵ÷ÖΪ4.6·Ö(Âú·ÖΪ5·Ö)¡£¡£¡£¡£¡£¡£ ¡£


Ô­ÎÄÁ´½Ó£º

https://www.helpnetsecurity.com/2020/10/22/organizations-data-protection-strategy/


5.ŵ»ùÑÇÍþвµý±¨³¢ÊÔÊÒ°ä²¼2020ÄêÍþвµý±¨»ã±¨


5.png


ŵ»ùÑÇÍþвµý±¨³¢ÊÔÊÒ°ä²¼2020ÄêÍþвµý±¨»ã±¨£¬£¬£¬£¬£¬ £¬£¬³ÆIoTϰȾÊÂÎñ¼±¾çÔö³¤¡£¡£¡£¡£¡£¡£ ¡£»ã±¨ÏÔʾ£¬£¬£¬£¬£¬ £¬£¬ÔÚÒÆ¶¯ºÍWi-FiÍøÂçÉϵÄËùÓÐϰȾÖУ¬£¬£¬£¬£¬ £¬£¬IoTÉ豸ËùÕ¼±ÈÀýΪ32.72%£¬£¬£¬£¬£¬ £¬£¬¸ßÓÚ2019ÄêµÄ16.17%£¬£¬£¬£¬£¬ £¬£¬ÕâÒ»Ç÷ÏòÓëÁªÍøÉ豸³ÖÐøÔÚ¼ÒÍ¥ºÍÆóÒµ»·¾³Öб鼰ÏàÎǺÏ¡£¡£¡£¡£¡£¡£ ¡£´Ë±í£¬£¬£¬£¬£¬ £¬£¬PCsÎªÏ°È¾ÖØÒªÖ¸±ê£¬£¬£¬£¬£¬ £¬£¬Windows/pcÔÚËùÓÐϰȾÖÐÕ¼38.92%£¬£¬£¬£¬£¬ £¬£¬±È2019ÄêµÄ35.82%ÂÔÓÐÉÏÉý¡£¡£¡£¡£¡£¡£ ¡£Ä¾ÂíµÄ±ÈÀý´Ó2019ÄêµÄ34%ÉÏÉýµ½74%£¬£¬£¬£¬£¬ £¬£¬¶øÈ䳿ºÍ²¡¶¾µÄÏà¶Ô±ÈÀý¶¼ÓÐËù½µÂä¡£¡£¡£¡£¡£¡£ ¡£


Ô­ÎÄÁ´½Ó£º

https://onestore.nokia.com/asset/210088


6.ÃÀ¹úBoyne ResortsϰȾWastedLocker£¬£¬£¬£¬£¬ £¬£¬Ô¤Ô¼ÏµÍ³ÊÜÓ°Ïì


6.png


Boyne ResortsÔâµ½WastedLockerÀÕË÷Èí¼þ¹¥»÷£¬£¬£¬£¬£¬ £¬£¬Ó°ÏìÁËÕû¸ö¹«Ë¾µÄԤԼϵͳ¡£¡£¡£¡£¡£¡£ ¡£Boyne ResortsÊÇ×ܲ¿Î»ÓÚÃÀ¹úµÄ»¬Ñ©ºÍ¸ß¶û·ò¶È¼Ù´å£¬£¬£¬£¬£¬ £¬£¬ÔÚÃÀ¹úºÍ¼ÓÄôó¾­Óª11¼Ò¾Æµê£¬£¬£¬£¬£¬ £¬£¬²¢Õ¼ÓÐ11000ÃûÔ±¹¤¡£¡£¡£¡£¡£¡£ ¡£×÷Ϊ´Ë¹¥»÷µÄÒ»²¿ÃÅ£¬£¬£¬£¬£¬ £¬£¬¸Ã¹«Ë¾±»¼ÓÃܵÄÎļþÒѱ»³Á¶¨Ãû£¬£¬£¬£¬£¬ £¬£¬²¢Ôö³¤ÁË.easy2lock À©´óÃû¡£¡£¡£¡£¡£¡£ ¡£Ä¿Ç°£¬£¬£¬£¬£¬ £¬£¬Õû¸ö¹«Ë¾µÄԤԼϵͳ¶¼Êܵ½¹¥»÷µÄÓ°Ï죬£¬£¬£¬£¬ £¬£¬¿Í»§ÎÞ·¨Í¨¹ý¸÷¾ÆµêµÄÔÚÏßϵͳԤԼ¡£¡£¡£¡£¡£¡£ ¡£Boyne ResortsûÓлظ´ÓйØÕâ´Î¹¥»÷µÄ¸ü¶àϸ½Ú£¬£¬£¬£¬£¬ £¬£¬µ«ÆäԤԼϵͳ»òÐí½«Ôٹعؼ¸Ìì¡£¡£¡£¡£¡£¡£ ¡£


Ô­ÎÄÁ´½Ó£º

https://www.bleepingcomputer.com/news/security/wastedlocker-ransomware-hits-boyne-resorts-ski-resort-operator/