安全事件周报 2024-03-25 第13周 - 360CERT
Tags
Common Information
| Type | Value |
|---|---|
| UUID | 3bb6cd12-bfd2-4b90-a878-56953c297f22 |
| Fingerprint | 181ba81779aefcd7 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | April 1, 2024, 6:42 p.m. |
| Added to db | Aug. 31, 2024, 1:26 a.m. |
| Last updated | Nov. 17, 2024, 6:54 p.m. |
| Headline | UNKNOWN |
| Title | 安全事件周报 2024-03-25 第13周 - 360CERT |
| Detected Hints/Tags/Attributes | 95/3/114 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://cert.360.cn/warning/detail?id=660a8fa1c09f255b91b17f77 |
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 78 | ✔ | 360 CERT | https://cert.360.cn/feed | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CERT 360 CN | 1 | CERT-R-2024-775 |
|
| Details | CVE | 5 | cve-2024-29944 |
|
| Details | CVE | 4 | cve-2024-29943 |
|
| Details | CVE | 28 | cve-2023-48788 |
|
| Details | CVE | 2 | cve-2021-44529 |
|
| Details | CVE | 12 | cve-2019-7256 |
|
| Details | CVE | 27 | cve-2023-24955 |
|
| Details | CVE | 48 | cve-2023-29357 |
|
| Details | CVE | 7 | cve-2024-2887 |
|
| Details | CVE | 6 | cve-2024-2886 |
|
| Details | CVE | 1 | cve-2024-21388 |
|
| Details | CVE | 1 | cve-2024-28085 |
|
| Details | CVE | 133 | cve-2023-38831 |
|
| Details | Domain | 1 | top.gg |
|
| Details | Domain | 137 | securityaffairs.com |
|
| Details | Domain | 133 | www.infosecurity-magazine.com |
|
| Details | Domain | 280 | thehackernews.com |
|
| Details | Domain | 124 | www.sentinelone.com |
|
| Details | Domain | 224 | unit42.paloaltonetworks.com |
|
| Details | Domain | 208 | mp.weixin.qq.com |
|
| Details | Domain | 251 | www.bleepingcomputer.com |
|
| Details | Domain | 182 | www.mandiant.com |
|
| Details | Domain | 261 | blog.talosintelligence.com |
|
| Details | Domain | 4 | www.facct.ru |
|
| Details | Domain | 22 | www.genians.co.kr |
|
| Details | Domain | 91 | 360.net |
|
| Details | File | 1 | russia-apt29-german-political-parties-wineloader.html |
|
| Details | File | 384 | www.inf |
|
| Details | File | 1 | n-korea-linked-kimsuky-shifts-to.html |
|
| Details | File | 1 | malicious-nuget-package-linked-to.html |
|
| Details | File | 1 | wpłaty_pdf.tar |
|
| Details | File | 1 | alert-new-phishing-attack-delivers.html |
|
| Details | File | 1 | linux-version-of-dinodasrat-spotted-in.html |
|
| Details | File | 1 | new-zenhammer-attack-bypasses-rowhammer.html |
|
| Details | File | 1 | inc-ransom-hacked-national-health-service-of-scotland.html |
|
| Details | File | 1 | hackers-target-indian-defense-and.html |
|
| Details | File | 1 | finland-blames-chinese-hacking-group.html |
|
| Details | File | 1 | mozilla-fixed-firefox-zero-day-pwn2own-vancouver-2024.html |
|
| Details | File | 1 | new-gofetch-vulnerability-in-apple-m.html |
|
| Details | File | 1 | cisa-alerts-on-active-exploitation-of.html |
|
| Details | File | 1 | cisa-warns-hackers-actively-attacking.html |
|
| Details | File | 1 | microsoft-edge-bug-could-have-allowed.html |
|
| Details | File | 1 | critical-unpatched-ray-ai-platform.html |
|
| Details | File | 1 | cybercriminals-accelerate-scams-ramadan.html |
|
| Details | File | 1 | darcula-phishing-network-leveraging-rcs.html |
|
| Details | File | 1 | german-police-seize-nemesis-market-in.html |
|
| Details | Microsoft Patch Numbers | 1 | KB5035942 |
|
| Details | Threat Actor Identifier - APT-C | 16 | APT-C-09 |
|
| Details | Threat Actor Identifier - APT-C | 2 | APT-C-43 |
|
| Details | Threat Actor Identifier - APT | 166 | APT31 |
|
| Details | Threat Actor Identifier - APT | 665 | APT29 |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/over-100-us-and-eu-orgs-targeted-in-strelastealer-malware-attacks |
|
| Details | Url | 1 | https://www.darkreading.com/cyberattacks-data-breaches/russian-apt-releases-more-deadly-variant-of-acidrain-wiper-malware |
|
| Details | Url | 1 | https://securityaffairs.com/160975/apt/russia-apt29-german-political-parties-wineloader.html |
|
| Details | Url | 1 | https://www.infosecurity-magazine.com/news/acidpour-wiper-linux-ukraine |
|
| Details | Url | 1 | https://thehackernews.com/2024/03/n-korea-linked-kimsuky-shifts-to.html |
|
| Details | Url | 1 | https://www.sentinelone.com/labs/acidpour-new-embedded-wiper-variant-of-acidrain-appears-in-ukraine |
|
| Details | Url | 1 | https://unit42.paloaltonetworks.com/curious-serpens-falsefont-backdoor |
|
| Details | Url | 2 | https://mp.weixin.qq.com/s/jbx6agppgepzo4sqcn9n9a |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/new-zenhammer-memory-attack-impacts-amd-zen-cpus |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/themoon-malware-infects-6-000-asus-routers-in-72-hours-for-proxy-service |
|
| Details | Url | 1 | https://thehackernews.com/2024/03/malicious-nuget-package-linked-to.html |
|
| Details | Url | 1 | https://thehackernews.com/2024/03/alert-new-phishing-attack-delivers.html |
|
| Details | Url | 1 | https://thehackernews.com/2024/03/linux-version-of-dinodasrat-spotted-in.html |
|
| Details | Url | 1 | https://thehackernews.com/2024/03/new-zenhammer-attack-bypasses-rowhammer.html |
|
| Details | Url | 1 | https://securityaffairs.com/161143/data-breach/inc-ransom-hacked-national-health-service-of-scotland.html |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/panera-bread-experiencing-nationwide-it-outage-since-saturday/#google_vignette |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/hackers-poison-source-code-from-largest-discord-bot-platform |
|
| Details | Url | 2 | https://www.mandiant.com/resources/blog/apt29-wineloader-german-political-parties |
|
| Details | Url | 1 | https://mp.weixin.qq.com/s/qau7h-oolehz0um6ib2_5w |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/inc-ransom-threatens-to-leak-3tb-of-nhs-scotland-stolen-data |
|
| Details | Url | 1 | https://thehackernews.com/2024/03/hackers-target-indian-defense-and.html |
|
| Details | Url | 1 | https://thehackernews.com/2024/03/finland-blames-chinese-hacking-group.html |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/retail-chain-hot-topic-hit-by-new-credential-stuffing-attacks |
|
| Details | Url | 1 | https://securityaffairs.com/160966/hacking/mozilla-fixed-firefox-zero-day-pwn2own-vancouver-2024.html |
|
| Details | Url | 1 | https://www.darkreading.com/cyberattacks-data-breaches/cisa-seeks-to-stem-unforgivable-sql-injection-defects |
|
| Details | Url | 1 | https://thehackernews.com/2024/03/new-gofetch-vulnerability-in-apple-m.html |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/germany-warns-of-17k-vulnerable-microsoft-exchange-servers-exposed-online |
|
| Details | Url | 1 | https://thehackernews.com/2024/03/cisa-alerts-on-active-exploitation-of.html |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/google-spyware-vendors-behind-50-percent-of-zero-days-exploited-in-2023 |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/cisa-tags-microsoft-sharepoint-rce-bug-as-actively-exploited |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/google-fixes-chrome-zero-days-exploited-at-pwn2own-2024 |
|
| Details | Url | 1 | https://thehackernews.com/2024/03/cisa-warns-hackers-actively-attacking.html |
|
| Details | Url | 1 | https://thehackernews.com/2024/03/microsoft-edge-bug-could-have-allowed.html |
|
| Details | Url | 1 | https://thehackernews.com/2024/03/critical-unpatched-ray-ai-platform.html |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/decade-old-linux-wall-bug-helps-make-fake-sudo-prompts-steal-passwords |
|
| Details | Url | 4 | https://blog.talosintelligence.com/tinyturla-full-kill-chain |
|
| Details | Url | 2 | https://mp.weixin.qq.com/s/sat5nu-hcbs0d6ji8gkkfq |
|
| Details | Url | 1 | https://securityaffairs.com/161009/cyber-crime/cybercriminals-accelerate-scams-ramadan.html |
|
| Details | Url | 3 | https://www.proofpoint.com/us/blog/threat-insight/security-brief-ta450-uses-embedded-links-pdf-attachments-latest-campaign |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/new-mfa-bypassing-phishing-kit-targets-microsoft-365-gmail-accounts |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/google/googles-new-ai-search-results-promotes-sites-pushing-malware-scams |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/free-vpn-apps-on-google-play-turned-android-phones-into-proxies |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/700-cybercrime-software-turns-raspberry-pi-into-an-evasive-fraud-tool |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/hackers-exploit-ray-framework-flaw-to-breach-servers-hijack-resources |
|
| Details | Url | 1 | https://www.facct.ru/blog/phantomcore |
|
| Details | Url | 2 | https://mp.weixin.qq.com/s/tpvw-fbu3pqvktymzxb4bw |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/new-darcula-phishing-service-targets-iphone-users-via-imessage |
|
| Details | Url | 1 | https://www.genians.co.kr/blog/threat_intelligence/rokrat |
|
| Details | Url | 1 | https://mp.weixin.qq.com/s/cr-t3nk2qkuba9sxa2s-ba |
|
| Details | Url | 1 | https://thehackernews.com/2024/03/darcula-phishing-network-leveraging-rcs.html |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/cisco-warns-of-password-spraying-attacks-targeting-vpn-services |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/microsoft/microsoft-to-shut-down-50-cloud-services-for-russian-businesses |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/technology/opera-sees-big-jump-in-eu-users-on-ios-android-after-dma-update |
|
| Details | Url | 1 | https://www.infosecurity-magazine.com/news/portugal-worldcoin-stop-biometric |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/microsoft/windows-11-kb5035942-update-enables-moment-5-features-for-everyone |
|
| Details | Url | 1 | https://www.darkreading.com/cyber-risk/australian-government-doubles-down-on-cybersecurity-in-wake-of-major-attacks |
|
| Details | Url | 1 | https://www.infosecurity-magazine.com/news/nist-unveils-new-nvd-consortium |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/pypi-suspends-new-user-registration-to-block-malware-campaign |
|
| Details | Url | 1 | https://thehackernews.com/2024/03/german-police-seize-nemesis-market-in.html |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/us-sanctions-crypto-exchanges-used-by-russian-darknet-market-banks |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/legal/us-fines-man-99-million-for-thousands-of-disturbing-robocalls |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/cisa-urges-software-devs-to-weed-out-sql-injection-vulnerabilities/#google_vignette |
|
| Details | Url | 87 | http://360.net |