¡¶Î¬ËûÃü¡·ÖðÈÕ°²È«¼òѶ20180725

°ä²¼¹¦·ò 2018-07-25

¡¾·ÖÎö»ã±¨¡¿×êÑлú¹¹°ä²¼2018ÄêQ2 DDoS¹¥»÷Ç÷ÏòµÄ·ÖÎö»ã±¨


¿¨°Í˹»ù³¢ÊÔÊÒ°ä²¼2018ÄêµÚ¶þ¼¾¶ÈµÄDDoS¹¥»÷Ç÷ÏòµÄ·ÖÎö»ã±¨¡£±¾¼¾¶ÈDDoS¹¥»÷µÄ¶¥·åÆÚÊÇ4ÔÂÖÐÑ® £¬¶ø5ÔÂÏÂÑ®ºÍ6Ô³õ½ÏΪ³Á¾²¡£Ôâµ½¹¥»÷×î¶àµÄ¹ú¶ÈÊÇÖйú£¨59.03%£©¡£SYN¹¥»÷µÄ±ÈÀý¼±¾çÉÏÉý £¬´ï80.2% £¬Æä´ÎÊÇUDP¹¥»÷ £¬Îª10.6%¡£Linux½©Ê¬ÍøÂçµÄ¹¥»÷ËùÕ¼·Ý¶îÏÔÖøÔö³¤ £¬Õ¼94.47%¡£

Ô­ÎÄÁ´½Ó£ºhttps://securelist.com/ddos-report-in-q2-2018/86537/


¡¾·ì϶²¹¶¡¡¿×êÑÐÈËÔ±·¢ÏÖÐÂÀ¶ÑÀ·ì϶£¨CVE-2018-5383£© £¬Apple¡¢IntelµÈ¾ùÊÜÓ°Ïì


ÒÔÉ«ÁÐÀí¹¤Ñ§ÔºµÄ×êÑÐÈËÔ±Lior NeumannºÍEli Biham·¢ÏÖеÄÀ¶ÑÀ·ì϶£¨CVE-2018-5383£© £¬¸Ã·ì϶ӰÏìÁËApple¡¢Broadcom¡¢Intel¡¢QualcommµÈÖØÒªÓ²¼þ¹©¸øÉÌ¡£Æ¾¾ÝCERT/CC°ä²¼µÄ»ã±¨ £¬²¿ÃÅÀ¶ÑÀʵÏÖµÄÍÖÔ²ÇúÏß¼ÓÃÜËã·¨µÄ²ÎÊýûÓо­¹ýÑéÖ¤ £¬Ê¹µÃδ¾­Éí·ÝÑéÖ¤µÄÔ¶³Ì¹¥»÷ÕßÄܹ»À¹½ØºÍ½âÃÜÓû§µÄÐÅÏ¢¡£¸Ã·ì϶¶ÔGoogle¡¢AndroidºÍLinuxµÄÓ°ÏìÒÀȻδ֪¡£

Ô­ÎÄÁ´½Ó£ºhttps://thehackernews.com/2018/07/bluetooth-hack-vulnerability.html


¡¾·ì϶²¹¶¡¡¿Apache Tomcat°ä²¼°²È«¸üР£¬½¨¸´¶à¸ö°²È«·ì϶


ASF°ä²¼Apache TomcatµÄ°²È«¸üР£¬½¨¸´¶à¸ö°²È«·ì϶ £¬Ô̺¬¿Éµ¼ÖÂÐÅϢй¶µÄ·ì϶£¨CVE-2018-8037£©¡¢¿Éµ¼Ö»ؾø·þÎñµÄ·ì϶£¨CVE-2018-1336£©ÒÔ¼°°²È«Èƹý·ì϶£¨CVE-2018-8034£©¡£ASF°µÊ¾Ä¿Ç°Ã»Óз¢ÏÖÈκÎÀûÓÃÕâЩ·ì϶µÄÊÂÎñ¡£½¨ÒéÓû§¾¡¿ì¸üÐÂÖÁ×îа汾¡£

Ô­ÎÄÁ´½Ó£ºhttps://thehackernews.com/2018/07/apache-tomcat-server.html


¡¾·ì϶²¹¶¡¡¿AVEVA½¨¸´ÆäInTouchºÍInduSoft¹¤¾ßÖеÄ2¸öRCE·ì϶


Ó¢¹ú¹¤ÒµÈí¼þ¹«Ë¾AVEVA½¨¸´ÁËÆäInTouchºÍInduSoft¿ª·¢¹¤¾ßÖеÄ2¸ö¿Éµ¼ÖÂÔ¶³Ì´úÂëÖ´Ðеݲȫ·ì϶¡£½ñÄêÔçЩʱ³½AVEVAÓëÊ©ÄÍµÂµçÆø¹é²¢ £¬²¢ÊÕÊÜÁËAvantisºÍWonderwareÆ·ÅÆ¡£CyberX×êÑÐÈËÔ±George Lashenko·¢ÏÖijЩ°æ±¾µÄInTouch´æÔÚ»º³åÇøÒç¶Âí½Å£¨CVE-2018-10628£© £¬TenableµÄ×êÑÐÈËÔ±·¢ÏÖÁËÁíÒ»¸ö·ì϶£¨CVE-2018-10620£©¡£ÕâЩ·ì϶¿ÉÔÊÐíδ¾­Éí·ÝÑéÖ¤µÄÔ¶³Ì¹¥»÷ÕßÖ´ÐÐËÁÒâ´úÂë¡£7ÔÂ13ÈÕAVEVAÔÚHotfix 81.1.00.08Öн¨¸´ÁËÕâЩ·ì϶¡£

Ô­ÎÄÁ´½Ó£ºhttps://www.securityweek.com/aveva-patches-critical-flaws-hmiscada-tools-following-schneider-merger


¡¾Íþвµý±¨¡¿×êÑÐÈËÔ±·¢ÏÖÕë¶ÔOracle WebLogic·þÎñÆ÷µÄй¥»÷»î¶¯


×êÑÐÈËÔ±·¢ÏÖÖØÒªÕë¶ÔOracle WebLogic·þÎñÆ÷µÄ¹¥»÷»î¶¯ £¬ÕâЩ¹¥»÷»î¶¯ÖØÒªÀûÓ÷ì϶£¨CVE-2018-2893£©½øÐй¥»÷¡£OracleÔÚ7ÔÂ18ÈÕ°ä²¼Á˸÷ì϶µÄÓйز¹¶¡ £¬7ÔÂ21ÈÕÆäÓйØPoC±»Åû¶¡£×êÑÐÈËÔ±·¢ÏÖÖÁÉÙ2¸ö×éÖ¯ÔÚÀûÓø÷ì϶½øÐй¥»÷ £¬½¨Ò黹δ¸üеÄÓû§¾¡¿ì½øÐÐÉý¼¶¡£Ò×Êܹ¥»÷µÄ°æ±¾Ô̺¬10.3.6.0¡¢12.1.3.0¡¢12.2.1.2ºÍ12.2.1.3¡£

Ô­ÎÄÁ´½Ó£ºhttps://www.bleepingcomputer.com/news/security/attacks-on-oracle-weblogic-servers-detected-after-publication-of-poc-code/


¡¾°²È«·ì϶¡¿×êÑÐÈËÔ±·¢ÏÖCPU·ì϶¹í»êµÄбäÖÖSpectreRSB


À´×ÔUCRµÄ×êÑÐÈËÔ±·¢ÏÖCPU·ì϶¹í»êµÄбäÖÖSpectreRSB¡£SpectreRSBͬÑùÀûÓÃÁËCPU´§Ä¦Ö´ÐеĹý³Ì £¬ÓëÆäËû±äÖÖ·ÖÆçµÄÊÇ £¬¸Ã¹¥»÷ÖØÒªÕë¶ÔCPU×é¼þRSB¡£×êÑÐÈËÔ±Ö»²âÊÔÁËIntel CPUÉϵÄSpectreRSB·ì϶ £¬µ«ÓÉÓÚAMDºÍARM´¦ÖÃÆ÷ҲʹÓÃRSBÀ´Ô¤²â·µ»ØµØÖ· £¬Òò¶øËüÃǺÜÓпÉÄÜÒ²ÊÜÓ°Ïì¡£SpectreRSB¹¥»÷Äܹ»ÈƹýĿǰËùÓеĽ¨¸´²¹¶¡¡£

Ô­ÎÄÁ´½Ó£ºhttps://www.bleepingcomputer.com/news/security/researchers-detail-new-cpu-side-channel-attack-named-spectrersb/