安全事件周报 2023-10-09 第41周
Tags
Common Information
| Type | Value |
|---|---|
| UUID | 03e095ad-5745-44f8-9021-7a868b9e2446 |
| Fingerprint | 8d1ebb1253ef6c5e |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Oct. 9, 2023, midnight |
| Added to db | Nov. 6, 2023, 8:07 p.m. |
| Last updated | Nov. 17, 2024, 6:54 p.m. |
| Headline | 安全事件周报 2023-10-09 第41周 |
| Title | 安全事件周报 2023-10-09 第41周 |
| Detected Hints/Tags/Attributes | 115/2/90 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 263 | ✔ | 三六零CERT | https://wechat2rss.xlab.app/feed/2dbce2e5f7b49dc8415db7a0ab325929e0f5d8c3.xml | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CERT 360 CN | 1 | CERT-R-2023-462 |
|
| Details | CVE | 1 | cve-2023-40284 |
|
| Details | CVE | 1 | cve-2023-40290 |
|
| Details | CVE | 102 | cve-2023-22515 |
|
| Details | CVE | 36 | cve-2023-45208 |
|
| Details | CVE | 10 | cve-2023-43641 |
|
| Details | CVE | 35 | cve-2023-4911 |
|
| Details | CVE | 8 | cve-2023-5346 |
|
| Details | CVE | 116 | cve-2023-4966 |
|
| Details | CVE | 12 | cve-2023-4967 |
|
| Details | CVE | 9 | cve-2023-21608 |
|
| Details | CVE | 38 | cve-2023-38545 |
|
| Details | CVE | 19 | cve-2023-38546 |
|
| Details | CVE | 11 | cve-2023-42824 |
|
| Details | CVE | 27 | cve-2023-5217 |
|
| Details | CVE | 152 | cve-2023-3519 |
|
| Details | CVE | 15 | cve-2019-0803 |
|
| Details | Domain | 280 | thehackernews.com |
|
| Details | Domain | 133 | www.infosecurity-magazine.com |
|
| Details | Domain | 57 | www.theregister.com |
|
| Details | Domain | 138 | www.darkreading.com |
|
| Details | Domain | 208 | mp.weixin.qq.com |
|
| Details | Domain | 272 | outlook.com |
|
| Details | Domain | 16 | stake.com |
|
| Details | Domain | 91 | 360.net |
|
| Details | Domain | 100 | cert.360.cn |
|
| Details | File | 1 | researchers-uncover-malware-posing-as.html |
|
| Details | File | 384 | www.inf |
|
| Details | File | 1 | supermicros-bmc-firmware-found.html |
|
| Details | File | 1 | shellbot-uses-hex-ips-to-evade.html |
|
| Details | File | 1 | githubs-secret-scanning-feature-now.html |
|
| Details | File | 1 | qakbot-threat-actors-still-in-action.html |
|
| Details | File | 1 | north-koreas-lazarus-group-launders-900.html |
|
| Details | IPv4 | 6 | 39.99.218.78 |
|
| Details | Microsoft Threat Actor Naming Taxonomy (Groups in development) | 23 | Storm-0062 |
|
| Details | Threat Actor Identifier - APT | 783 | APT28 |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/mirai-ddos-malware-variant-expands-targets-with-13-router-exploits |
|
| Details | Url | 1 | https://www.darkreading.com/vulnerabilities-threats/badbox-operation-targets-android-devices-in-fraud-schemes |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/new-wordpress-backdoor-creates-rogue-admin-to-hijack-websites |
|
| Details | Url | 1 | https://www.darkreading.com/attacks-breaches/darkgate-operator-skype-teams-messages-distribute-malware |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/malicious-solana-kucoin-packages-infect-nuget-devs-with-seroxen-rat |
|
| Details | Url | 1 | https://thehackernews.com/2023/10/researchers-uncover-malware-posing-as.html |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/toddycat-hackers-use-disposable-malware-to-target-asian-telecoms |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/dc-board-of-elections-confirms-voter-data-stolen-in-site-hack |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/third-flagstar-bank-data-breach-since-2021-affects-800-000-customers |
|
| Details | Url | 1 | https://www.infosecurity-magazine.com/news/flagstar-bank-moveit-breach |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/air-europa-data-breach-customers-warned-to-cancel-credit-cards |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/shadow-pc-warns-of-data-breach-as-hacker-tries-to-sell-gamers-info |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/alphv-ransomware-gang-claims-attack-on-florida-circuit-court |
|
| Details | Url | 2 | https://www.bleepingcomputer.com/news/security/new-http-2-rapid-reset-zero-day-attack-breaks-ddos-records |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/bianlian-extortion-group-claims-recent-air-canada-breach |
|
| Details | Url | 2 | https://www.bleepingcomputer.com/news/security/simpson-manufacturing-shuts-down-it-systems-after-cyberattack |
|
| Details | Url | 1 | https://thehackernews.com/2023/10/supermicros-bmc-firmware-found.html |
|
| Details | Url | 1 | https://www.theregister.com/2023/10/04/critical_confluence_privilege_escalation_bug/?td=rt |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/d-link-wifi-range-extender-vulnerable-to-command-injection-attacks |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/gnome-linux-systems-exposed-to-rce-attacks-via-file-downloads |
|
| Details | Url | 1 | https://www.darkreading.com/vulnerabilities-threats/looney-tunables-linux-flaw-sees-snowballing-proof-of-concept-exploits |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/microsoft/microsoft-october-2023-patch-tuesday-fixes-3-zero-days-104-flaws |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/new-critical-citrix-netscaler-flaw-exposes-sensitive-data |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/microsoft-state-hackers-exploiting-confluence-zero-day-since-september |
|
| Details | Url | 1 | https://www.darkreading.com/vulnerabilities-threats/adobe-acrobat-reader-vuln-under-attack |
|
| Details | Url | 1 | https://www.infosecurity-magazine.com/news/curl-releases-fixes-high-severity |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/apple-fixes-ios-kernel-zero-day-vulnerability-on-older-iphones |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/over-17-000-wordpress-sites-hacked-in-balada-injector-attacks-last-month |
|
| Details | Url | 1 | https://www.darkreading.com/cloud/patch-now-massive-rce-campaign-d-link-zyxel-botnet |
|
| Details | Url | 1 | https://www.darkreading.com/endpoint/operation-behind-predator-mobile-spyware-industrial-scale |
|
| Details | Url | 4 | https://mp.weixin.qq.com/s/xy9pfucgtytzae_xlwsn6w |
|
| Details | Url | 1 | https://www.infosecurity-magazine.com/news/exploitation-29-education-sector |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/fbi-shares-avoslocker-ransomware-technical-details-defense-tips |
|
| Details | Url | 1 | https://thehackernews.com/2023/10/shellbot-uses-hex-ips-to-evade.html |
|
| Details | Url | 1 | https://www.theregister.com/2023/10/06/japans_h3_launch_rocket_to |
|
| Details | Url | 1 | https://thehackernews.com/2023/10/githubs-secret-scanning-feature-now.html |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/google-makes-passkeys-the-default-sign-in-for-personal-accounts |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/microsoft-to-kill-off-vbscript-in-windows-to-block-malware-delivery |
|
| Details | Url | 1 | https://www.infosecurity-magazine.com/news/us-govt-open-source-security |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/microsoft-defender-now-auto-isolates-compromised-accounts |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/blackbaud-agrees-to-495-million-settlement-for-ransomware-data-breach |
|
| Details | Url | 2 | https://www.bleepingcomputer.com/news/security/ransomware-attacks-now-target-unpatched-ws-ftp-servers |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/microsoft-365-admins-warned-of-new-google-anti-spam-rules |
|
| Details | Url | 1 | https://thehackernews.com/2023/10/qakbot-threat-actors-still-in-action.html |
|
| Details | Url | 1 | https://thehackernews.com/2023/10/north-koreas-lazarus-group-launders-900.html |
|
| Details | Url | 3 | https://mp.weixin.qq.com/s/qflq_i08mdwyl8wl5_vshq |
|
| Details | Url | 2 | https://www.bleepingcomputer.com/news/security/hellokitty-ransomware-source-code-leaked-on-hacking-forum |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/hackers-hijack-citrix-netscaler-login-pages-to-steal-credentials |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/hackers-modify-online-stores-404-pages-to-steal-credit-cards |
|
| Details | Url | 1 | https://www.infosecurity-magazine.com/news/threat-actor-grayling-espionage |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/linkedin-smart-links-attacks-return-to-target-microsoft-accounts |
|
| Details | Url | 1 | https://www.infosecurity-magazine.com/news/california-enacts-delete-act |
|
| Details | Url | 87 | http://360.net |
|
| Details | Url | 93 | https://cert.360.cn |