Log4j威胁阴影未散,超13%运行实例仍存安全隐患; APT34最新攻击手法揭秘:瞄准微软Exchange服务器 | 牛览 - 安全牛
Tags
| attack-pattern: | Data Javascript - T1059.007 Python - T1059.006 Web Services - T1583.006 Web Services - T1584.006 |
Common Information
| Type | Value |
|---|---|
| UUID | 84117517-d7e6-4188-9cb5-deb48fe6931a |
| Fingerprint | c2cdb3b953ee35d2 |
| Analysis status | DONE |
| Considered CTI value | 1 |
| Text language | |
| Published | Oct. 16, 2024, midnight |
| Added to db | Oct. 16, 2024, 8:23 a.m. |
| Last updated | Nov. 15, 2024, 12:35 p.m. |
| Headline | UNKNOWN |
| Title | Log4j威胁阴影未散,超13%运行实例仍存安全隐患; APT34最新攻击手法揭秘:瞄准微软Exchange服务器 | 牛览 - 安全牛 |
| Detected Hints/Tags/Attributes | 13/1/13 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://www.aqniu.com/vendor/106675.html |
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 272 | ✔ | 安全牛 | https://www.aqniu.com/feed | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 208 | mp.weixin.qq.com |
|
| Details | Domain | 9 | www.scworld.com |
|
| Details | Domain | 54 | www.scmagazine.com |
|
| Details | Domain | 33 | cybersecuritynews.com |
|
| Details | File | 12 | psgfilter.dll |
|
| Details | Threat Actor Identifier - APT | 258 | APT34 |
|
| Details | Url | 1 | https://mp.weixin.qq.com/s/nsadwkswacq2gvgpdmipnq |
|
| Details | Url | 1 | https://mp.weixin.qq.com/s/0w6dnb-b6vc46fwjeguttq |
|
| Details | Url | 1 | https://www.scworld.com/brief/cyberattack-prompts-national-public-data-bankruptcy-filing |
|
| Details | Url | 1 | https://www.scmagazine.com/brief/nearly-1-tb-of-game-freak-data-leaked-after-breach |
|
| Details | Url | 1 | https://www.scworld.com/news/vulnerable-instances-of-log4j-still-being-used-nearly-3-years-later |
|
| Details | Url | 1 | https://cybersecuritynews.com/oilrig-hackers-microsoft-exchange-breach |
|
| Details | Url | 1 | https://cybersecuritynews.com/supply-chain-attack-leveraging-entry |