绿盟科技互联网安全威胁周报NSFOCUS-19-02 – 绿盟科技技术博客
Tags
| country: | Germany Iran |
| attack-pattern: | Data Dns - T1071.004 Dns - T1590.002 Javascript - T1059.007 Server - T1583.004 Server - T1584.004 Sharepoint - T1213.002 |
Common Information
| Type | Value |
|---|---|
| UUID | f7e3e585-7be5-4c06-a605-1cd0a76d6ec8 |
| Fingerprint | 35502a107e86c8d7 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Jan. 15, 2019, 11:46 a.m. |
| Added to db | Jan. 18, 2023, 7:37 p.m. |
| Last updated | Nov. 17, 2024, 9:42 p.m. |
| Headline | 绿盟科技互联网安全威胁周报NSFOCUS-19-02 |
| Title | 绿盟科技互联网安全威胁周报NSFOCUS-19-02 – 绿盟科技技术博客 |
| Detected Hints/Tags/Attributes | 33/2/100 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | http://blog.nsfocus.net/nsfocus-19-02/ |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 4 | cve-2019-0585 |
|
| Details | CVE | 4 | cve-2019-0579 |
|
| Details | CVE | 1 | cve-2018-1859 |
|
| Details | CVE | 1 | cve-2018-1888 |
|
| Details | CVE | 2 | cve-2018-3956 |
|
| Details | CVE | 1 | cve-2018-18688 |
|
| Details | CVE | 1 | cve-2019-5005 |
|
| Details | CVE | 1 | cve-2019-5006 |
|
| Details | CVE | 1 | cve-2019-5007 |
|
| Details | CVE | 1 | cve-2018-18689 |
|
| Details | CVE | 2 | cve-2018-4035 |
|
| Details | CVE | 2 | cve-2018-4032 |
|
| Details | CVE | 2 | cve-2018-4034 |
|
| Details | CVE | 2 | cve-2018-4044 |
|
| Details | CVE | 2 | cve-2018-4041 |
|
| Details | CVE | 2 | cve-2018-4046 |
|
| Details | CVE | 2 | cve-2018-4042 |
|
| Details | CVE | 2 | cve-2018-4047 |
|
| Details | CVE | 2 | cve-2018-4043 |
|
| Details | CVE | 2 | cve-2018-4045 |
|
| Details | CVE | 2 | cve-2018-4037 |
|
| Details | CVE | 2 | cve-2018-4033 |
|
| Details | CVE | 2 | cve-2018-4036 |
|
| Details | CVE | 1 | cve-2019-3701 |
|
| Details | CVE | 5 | cve-2019-0550 |
|
| Details | CVE | 4 | cve-2019-0551 |
|
| Details | CVE | 3 | cve-2019-0556 |
|
| Details | CVE | 3 | cve-2019-0557 |
|
| Details | CVE | 3 | cve-2019-0558 |
|
| Details | CVE | 4 | cve-2019-0537 |
|
| Details | CVE | 3 | cve-2019-0546 |
|
| Details | CVE | 4 | cve-2019-0559 |
|
| Details | CVE | 3 | cve-2019-0555 |
|
| Details | CVE | 9 | cve-2019-0547 |
|
| Details | CVE | 3 | cve-2019-0562 |
|
| Details | CVE | 4 | cve-2019-0560 |
|
| Details | CVE | 3 | cve-2019-0561 |
|
| Details | CVE | 3 | cve-2019-0575 |
|
| Details | CVE | 7 | cve-2019-0541 |
|
| Details | CVE | 7 | cve-2019-0539 |
|
| Details | CVE | 1 | cve-2018-12817 |
|
| Details | CVE | 1 | cve-2018-19718 |
|
| Details | CVE | 8 | cve-2019-0567 |
|
| Details | CVE | 4 | cve-2019-0566 |
|
| Details | CVE | 5 | cve-2019-0565 |
|
| Details | CVE | 3 | cve-2019-0569 |
|
| Details | CVE | 3 | cve-2019-0570 |
|
| Details | CVE | 3 | cve-2019-0553 |
|
| Details | CVE | 3 | cve-2019-0564 |
|
| Details | CVE | 3 | cve-2019-0548 |
|
| Details | CVE | 3 | cve-2019-0554 |
|
| Details | CVE | 3 | cve-2019-0549 |
|
| Details | CVE | 3 | cve-2019-0536 |
|
| Details | CVE | 3 | cve-2019-0552 |
|
| Details | CVE | 4 | cve-2019-0543 |
|
| Details | CVE | 3 | cve-2019-0545 |
|
| Details | CVE | 3 | cve-2019-0538 |
|
| Details | CVE | 6 | cve-2019-0568 |
|
| Details | CVE | 4 | cve-2019-0586 |
|
| Details | CVE | 5 | cve-2019-0576 |
|
| Details | CVE | 3 | cve-2019-0577 |
|
| Details | CVE | 3 | cve-2019-0578 |
|
| Details | CVE | 3 | cve-2019-0571 |
|
| Details | CVE | 3 | cve-2019-0572 |
|
| Details | CVE | 3 | cve-2019-0580 |
|
| Details | CVE | 3 | cve-2019-0573 |
|
| Details | CVE | 3 | cve-2019-0574 |
|
| Details | CVE | 3 | cve-2019-0581 |
|
| Details | CVE | 3 | cve-2019-0582 |
|
| Details | CVE | 3 | cve-2019-0583 |
|
| Details | CVE | 3 | cve-2019-0584 |
|
| Details | CVE | 3 | cve-2019-0588 |
|
| Details | CVE | 2 | cve-2019-0622 |
|
| Details | CVE | 1 | cve-2018-15457 |
|
| Details | CVE | 1 | cve-2018-15464 |
|
| Details | CVE | 1 | cve-2018-15466 |
|
| Details | CVE | 1 | cve-2018-15453 |
|
| Details | CVE | 1 | cve-2018-0461 |
|
| Details | CVE | 1 | cve-2018-15460 |
|
| Details | CVE | 1 | cve-2018-0474 |
|
| Details | CVE | 1 | cve-2018-15458 |
|
| Details | CVE | 1 | cve-2018-15463 |
|
| Details | CVE | 2 | cve-2018-15440 |
|
| Details | CVE | 1 | cve-2018-15456 |
|
| Details | Domain | 25 | blog.nsfocus.net |
|
| Details | Domain | 78 | securityaffairs.co |
|
| Details | Domain | 397 | asp.net |
|
| Details | File | 1 | iran-apts-dns-hijacking.html |
|
| Details | File | 1 | german-politicians-leak-culprit.html |
|
| Details | File | 1 | the-dark-overlord-9-11.html |
|
| Details | File | 1205 | index.php |
|
| Details | Url | 1 | http://blog.nsfocus.net/microsoft-released-a-january-patch-to-fix-51-security-issues |
|
| Details | Url | 1 | https://securityaffairs.co/wordpress/79722/apt/iran-apts-dns-hijacking.html |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/ta505-group-adopts-new-servhelper-backdoor-and-flawedgrace-rat |
|
| Details | Url | 1 | https://securityaffairs.co/wordpress/79653/data-breach/german-politicians-leak-culprit.html |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/ryuk-ransomware-partners-with-trickbot-to-gain-access-to-infected-networks |
|
| Details | Url | 1 | https://securityaffairs.co/wordpress/79549/hacking/the-dark-overlord-9-11.html?tdsourcetag=s_pctim_aiomsg |
|
| Details | Url | 1 | https://www.igorkromin.net/index.php/2019/01/13/godaddy-is-sneakily-injecting-javascript-into-your-website-and-how-to-stop-it |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/new-side-channel-attack-steals-data-from-windows-linux-page-cache |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/unprotected-mongodb-exposes-over-200-millions-resumes |