安全事件周报 2023-11-06 第45周 - 360CERT
Tags
Common Information
| Type | Value |
|---|---|
| UUID | cb285ea0-71ac-45ea-87ad-f7dd30fc10d6 |
| Fingerprint | a792ae03f3847150 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Nov. 13, 2023, 5:06 p.m. |
| Added to db | Nov. 20, 2023, 1:04 a.m. |
| Last updated | Nov. 17, 2024, 5:57 p.m. |
| Headline | UNKNOWN |
| Title | 安全事件周报 2023-11-06 第45周 - 360CERT |
| Detected Hints/Tags/Attributes | 118/3/101 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://cert.360.cn/warning/detail?id=6551e721ea0822e915605f3c |
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 78 | ✔ | 360 CERT | https://cert.360.cn/feed | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CERT 360 CN | 2 | CERT-R-2023-520 |
|
| Details | CVE | 35 | cve-2023-4911 |
|
| Details | CVE | 133 | cve-2023-38831 |
|
| Details | CVE | 70 | cve-2023-22518 |
|
| Details | CVE | 84 | cve-2023-46604 |
|
| Details | CVE | 15 | cve-2023-23368 |
|
| Details | CVE | 15 | cve-2023-23369 |
|
| Details | CVE | 14 | cve-2023-38547 |
|
| Details | CVE | 13 | cve-2023-38549 |
|
| Details | CVE | 14 | cve-2023-38548 |
|
| Details | CVE | 13 | cve-2023-41723 |
|
| Details | CVE | 31 | cve-2023-47246 |
|
| Details | CVE | 32 | cve-2023-29552 |
|
| Details | CVE | 102 | cve-2023-22515 |
|
| Details | Domain | 133 | www.infosecurity-magazine.com |
|
| Details | Domain | 117 | ld.so |
|
| Details | Domain | 280 | thehackernews.com |
|
| Details | Domain | 10 | workspace-app.online |
|
| Details | Domain | 138 | www.darkreading.com |
|
| Details | Domain | 137 | securityaffairs.com |
|
| Details | Domain | 26 | www.jamf.com |
|
| Details | Domain | 13 | threatmon.io |
|
| Details | Domain | 27 | atlassian.net |
|
| Details | Domain | 208 | mp.weixin.qq.com |
|
| Details | Domain | 91 | 360.net |
|
| Details | File | 384 | www.inf |
|
| Details | File | 2 | new-gootloader-malware-variant-evades.html |
|
| Details | File | 2 | beware-developers-blazestealer-malware.html |
|
| Details | File | 2 | new-malvertising-campaign-uses-fake.html |
|
| Details | File | 2 | google-calendar-rat-attacks.html |
|
| Details | File | 4 | soldiers-of-solomon-hacked-israel-flour-plant.html |
|
| Details | File | 2 | russian-bank-sberbank-massive-ddos-attack.html |
|
| Details | File | 2 | muddyc2go-new-c2-framework-iranian.html |
|
| Details | File | 2 | kinsing-hackers-probe-looney-tunables.html |
|
| Details | File | 2 | sidecopy-exploiting-winrar-flaw-in.html |
|
| Details | File | 2 | critical-flaws-discovered-in-veeam-one.html |
|
| Details | File | 2 | zero-day-alert-lace-tempest-exploits.html |
|
| Details | File | 2 | cisa-alerts-high-severity-slp.html |
|
| Details | File | 2 | researchers-uncover-undetectable-crypto.html |
|
| Details | File | 2 | experts-warn-of-ransomware-hackers.html |
|
| Details | IBM X-Force - Unattributed Threat Actor | 11 | Hive0127 |
|
| Details | Mandiant Uncategorized Groups | 15 | UNC2565 |
|
| Details | Deprecated Microsoft Threat Actor Naming Taxonomy (Groups in development) | 9 | DEV-0022 |
|
| Details | Threat Actor Identifier - APT-C | 79 | APT-C-23 |
|
| Details | Threat Actor Identifier - APT-C | 7 | APT-C-24 |
|
| Details | Threat Actor Identifier - APT | 121 | APT36 |
|
| Details | Url | 2 | https://www.infosecurity-magazine.com/news/bluenoroff-malware-targets |
|
| Details | Url | 2 | https://www.bleepingcomputer.com/news/security/socks5systemz-proxy-service-infects-10-000-systems-worldwide |
|
| Details | Url | 2 | https://www.bleepingcomputer.com/news/security/cybercrime-service-bypasses-android-security-to-install-malware |
|
| Details | Url | 2 | https://www.bleepingcomputer.com/news/security/hackers-exploit-looney-tunables-linux-bug-steal-cloud-creds |
|
| Details | Url | 2 | https://www.infosecurity-magazine.com/news/spynote-unveiled-in-attacks-on |
|
| Details | Url | 3 | https://www.sentinelone.com/labs/arid-viper-apts-nest-of-spyc23-malware-continues-to-target-android-devices |
|
| Details | Url | 2 | https://thehackernews.com/2023/11/new-gootloader-malware-variant-evades.html |
|
| Details | Url | 2 | https://www.bleepingcomputer.com/news/security/fake-ledger-live-app-in-microsoft-store-steals-768-000-in-crypto |
|
| Details | Url | 2 | https://thehackernews.com/2023/11/beware-developers-blazestealer-malware.html |
|
| Details | Url | 2 | https://thehackernews.com/2023/11/new-malvertising-campaign-uses-fake.html |
|
| Details | Url | 2 | https://www.infosecurity-magazine.com/news/kamran-spyware-targets-urdu |
|
| Details | Url | 2 | https://www.darkreading.com/application-security/-blazestealer-python-malware-complete-takeover-developer |
|
| Details | Url | 2 | https://www.bleepingcomputer.com/news/security/dutch-hacker-jailed-for-extortion-selling-stolen-data-on-raidforums |
|
| Details | Url | 2 | https://www.infosecurity-magazine.com/news/healthcare-data-breaches-88-million |
|
| Details | Url | 2 | https://www.infosecurity-magazine.com/news/data-breach-singapores-marina-bay |
|
| Details | Url | 2 | https://www.bleepingcomputer.com/news/security/transform-says-ransomware-data-breach-affects-267-000-patients |
|
| Details | Url | 2 | https://www.darkreading.com/dr-global/iran-linked-agrius-apt-group-israeli-education-tech-sectors |
|
| Details | Url | 2 | https://securityaffairs.com/153700/hacking/google-calendar-rat-attacks.html |
|
| Details | Url | 6 | https://www.jamf.com/blog/bluenoroff-strikes-again-with-new-macos-malware |
|
| Details | Url | 3 | https://securityaffairs.com/153778/security/soldiers-of-solomon-hacked-israel-flour-plant.html |
|
| Details | Url | 2 | https://www.bleepingcomputer.com/news/security/russian-state-owned-sberbank-hit-by-1-million-rps-ddos-attack |
|
| Details | Url | 2 | https://threatmon.io/the-anatomy-of-a-sidecopy-attack-from-rar-exploits-to-allakore-rat |
|
| Details | Url | 2 | https://securityaffairs.com/153888/hacking/russian-bank-sberbank-massive-ddos-attack.html |
|
| Details | Url | 2 | https://thehackernews.com/2023/11/muddyc2go-new-c2-framework-iranian.html |
|
| Details | Url | 2 | https://www.bleepingcomputer.com/news/microsoft/new-microsoft-exchange-zero-days-allow-rce-data-theft-attacks |
|
| Details | Url | 2 | https://securityaffairs.com/153610/hacking/kinsing-hackers-probe-looney-tunables.html |
|
| Details | Url | 2 | https://www.infosecurity-magazine.com/news/atlassian-public-exploit-critical |
|
| Details | Url | 2 | https://www.bleepingcomputer.com/news/security/tellyouthepass-ransomware-joins-apache-activemq-rce-attacks |
|
| Details | Url | 2 | https://www.bleepingcomputer.com/news/security/qnap-warns-of-critical-command-injection-flaws-in-qts-os-apps |
|
| Details | Url | 2 | https://www.bleepingcomputer.com/news/security/critical-atlassian-confluence-bug-exploited-in-cerber-ransomware-attacks |
|
| Details | Url | 3 | https://www.bleepingcomputer.com/news/security/veeam-warns-of-critical-bugs-in-veeam-one-monitoring-platform |
|
| Details | Url | 2 | https://thehackernews.com/2023/11/sidecopy-exploiting-winrar-flaw-in.html |
|
| Details | Url | 2 | https://thehackernews.com/2023/11/critical-flaws-discovered-in-veeam-one.html |
|
| Details | Url | 2 | https://www.bleepingcomputer.com/news/security/sumo-logic-discloses-security-breach-advises-api-key-resets |
|
| Details | Url | 2 | https://thehackernews.com/2023/11/zero-day-alert-lace-tempest-exploits.html |
|
| Details | Url | 2 | https://thehackernews.com/2023/11/cisa-alerts-high-severity-slp.html |
|
| Details | Url | 2 | https://www.bleepingcomputer.com/news/security/russian-speaking-threat-actor-farnetwork-linked-to-5-ransomware-gangs |
|
| Details | Url | 2 | https://thehackernews.com/2023/11/researchers-uncover-undetectable-crypto.html |
|
| Details | Url | 3 | https://www.bleepingcomputer.com/news/security/openai-confirms-ddos-attacks-behind-ongoing-chatgpt-outages |
|
| Details | Url | 2 | https://www.infosecurity-magazine.com/news/russia-sandworm-disrupted-power |
|
| Details | Url | 2 | https://www.bleepingcomputer.com/news/security/google-play-adds-security-audit-badges-for-android-vpn-apps |
|
| Details | Url | 2 | https://www.bleepingcomputer.com/news/security/discord-will-switch-to-temporary-file-links-to-block-malware-delivery |
|
| Details | Url | 2 | https://www.bleepingcomputer.com/news/microsoft/microsoft-will-roll-out-mfa-enforcing-policies-for-admin-portal-access |
|
| Details | Url | 2 | https://www.bleepingcomputer.com/news/security/whatsapp-now-lets-users-hide-their-location-during-calls |
|
| Details | Url | 2 | https://www.bleepingcomputer.com/news/microsoft/microsoft-drops-smb1-firewall-rules-in-new-windows-11-build |
|
| Details | Url | 2 | https://www.bleepingcomputer.com/news/security/american-airlines-pilot-union-hit-by-ransomware-attack |
|
| Details | Url | 2 | https://thehackernews.com/2023/11/experts-warn-of-ransomware-hackers.html |
|
| Details | Url | 2 | https://www.bleepingcomputer.com/news/security/fbi-ransomware-gangs-hack-casinos-via-3rd-party-gaming-vendors |
|
| Details | Url | 2 | https://www.bleepingcomputer.com/news/security/kyocera-avx-says-ransomware-attack-impacted-39-000-individuals |
|
| Details | Url | 2 | https://www.bleepingcomputer.com/news/apple/apple-find-my-network-can-be-abused-to-steal-keylogged-passwords |
|
| Details | Url | 2 | https://www.infosecurity-magazine.com/news/us-japan-south-korea-north-korea |
|
| Details | Url | 2 | https://www.bleepingcomputer.com/news/security/us-sanctions-russian-who-laundered-money-for-ryuk-ransomware-affiliate |
|
| Details | Url | 4 | https://mp.weixin.qq.com/s/iwx2tgclor0jtdbnc3fowq |
|
| Details | Url | 2 | https://www.bleepingcomputer.com/news/technology/chatgpt-down-after-major-outage-impacting-openai-systems |
|
| Details | Url | 87 | http://360.net |