½©Ê¬ÍøÂçGafgyt DDoS¹¥»÷ValveÓÎÏ··þÎñÆ÷£»´óÁ¿QNAP NASÉ豸ϰȾ¶ñÒâÈí¼þQSnatch

°ä²¼¹¦·ò 2019-11-01
1¡¢²Æ¸»500Ç¿¹«Ë¾µÄ2100Íò±»µÁÍ´´¦ÔÚ°µÍøÏúÊÛ

28Ȧ-28Ȧ¹Ù·½ÍøÕ¾-ÏàÐÅÆ·ÅƵÄÁ¦Á¿

ImmuniWebÔÚÒ»·Ý»ã±¨ÖаµÊ¾°µÍøÖдæÔÚ³¬¹ý2100Íò¸ö´Ó²Æ¸»500Ç¿¹«Ë¾ÍµÇÔµÄÍ´´¦ £¬ÆäÖдóÎÞÊýÀ´×ÔÓڿƼ¼¹«Ë¾ £¬µ«¸ÃÃûµ¥Ò²Ô̺¬½ðÈÚ¡¢Ò½ÁÆ¡¢ÄÜÔ´¡¢µçÐÅ¡¢ÁãÊÛ¡¢¹¤Òµ¡¢ÔËÊä¡¢º½¿Õº½Ìì¼°¹ú·ÀÁìÓòµÄÆóÒµ ¡£²¢²»ÊÇËùÓеı»µÁÍ´´¦¶¼ÊÇеÄ £¬×êÑÐÈËÔ±³ÆÔ¼1600Íò¸öÍ´´¦ÊÇÔÚ´Óǰ12¸öÔÂÄÚ±»µÁµÄ ¡£95%µÄÍ´´¦Ô̺¬Î´¼ÓÃܵĻòÊÇÓɹ¥»÷ÕßÆÆ½âµÄÃ÷ÎÄÃÜÂë ¡£Ö»¹Ü±»µÁÍ´´¦µÄ×ÜÊý´ï2100Íò £¬µ«Ö»ÓÐ490ÍòÊDz»³Á¸´µÄ £¬ÕâÅú×¢´óÁ¿Óû§ÔÚʹÓÃÒ»Ñù»òÀàËÆµÄÃÜÂë ¡£


Ô­ÎÄÁ´½Ó£º

https://www.bleepingcomputer.com/news/security/21-million-logins-for-top-500-firms-offered-on-the-dark-web/

2¡¢ÁãÊÛÉÌBed Bath£¦BeyondÔ¼1%¿Í»§ÐÅÏ¢±»µÁ


28Ȧ-28Ȧ¹Ù·½ÍøÕ¾-ÏàÐÅÆ·ÅƵÄÁ¦Á¿


ÃÀ¹úÁãÊÛÉÌBed Bath£¦BeyondÔÚÖܶþÌá½»¸øÖ¤È¯ÂòÂôίԱ»á£¨SEC£©µÄ»ã±¨ÖÐй© £¬Î´¾­ÊÚȨµÄ¹¥»÷Õß´ÓÆäϵͳÖÐÇÔÈ¡Á˲¿Ãſͻ§µÄµÇ¼ÐÅÏ¢ £¬Ô̺¬µç×ÓÓʼþºÍÃÜÂë ¡£ÊܸÃÊÂÎñÓ°ÏìµÄÓû§ÊýÁ¿½ÏÉÙ £¬²»µ½Bed Bath£¦BeyondÔÚÏ߿ͻ§ÕÊ»§µÄ1£¥ ¡£¸Ã¹«Ë¾Ã»ÓÐй©¸ü¶àϸ½Ú £¬µ«Ö¸³ö¿Í»§µÄÐÅÓþ¿¨Êý¾Ý²»ÊÜÓ°Ïì ¡£


Ô­ÎÄÁ´½Ó£º

https://www.bleepingcomputer.com/news/security/bed-bath-and-beyond-discloses-customer-login-credentials-breach/

3¡¢Emsisoft°ä²¼ÀÕË÷Èí¼þParadiseµÄ½âÃܹ¤¾ß

28Ȧ-28Ȧ¹Ù·½ÍøÕ¾-ÏàÐÅÆ·ÅƵÄÁ¦Á¿

Emsisoft°ä²¼ÀÕË÷Èí¼þParadiseµÄ½âÃܹ¤¾ß £¬Äܹ»Ô®ÊÖÊܺ¦ÕßÃâ·Ñ½âÃÜÎļþ ¡£¸Ã½âÃÜÆ÷×îÔç¿ÉÖ§³Ö2017ÄêµÄParadise°æ±¾ £¬µ«²¢·ÇËùÓеÄParadise±äÌå¶¼¿É½âÃÜ ¡£¸Ã½âÃÜÆ÷Ö§³ÖµÄÀ©´óÃûÔ̺¬.2ksys19¡¢.p3rf0rm4¡¢.prt¡¢.exploit¡¢.immortal¡¢.Recognizer¡¢.sambo¡¢.paradise¡¢.FC¼°.sev ¡£Óû§¿É´ÓEmsisoft¹ÙÍø¸ßµÍÔØ¸Ã½âÃÜÆ÷ ¡£


Ô­ÎÄÁ´½Ó£º

https://www.bleepingcomputer.com/news/security/paradise-ransomware-decryptor-gets-your-files-back-for-free/

4¡¢½©Ê¬ÍøÂçGafgyt DDoS¹¥»÷ValveÓÎÏ··þÎñÆ÷


28Ȧ-28Ȧ¹Ù·½ÍøÕ¾-ÏàÐÅÆ·ÅƵÄÁ¦Á¿


½©Ê¬ÍøÂçGafgytµÄбäÌåÔÚ»ý¼«Ï°È¾Zyxel¡¢»ªÎªÂ·ÓÉÆ÷¼°ÓµÓÐRealtek RTL81xxоƬ×éµÄÉ豸 £¬Õë¶ÔValveµÄÓÎÏ··þÎñÆ÷ÌáÒéDDoS¹¥»÷ ¡£¸Ã±äÌå²ÎÓëÁËÈý¸öÒÑÖªµÄRCE·ì϶ÀûÓà £¬Ô̺¬ZYXEL P660HN-T1A·ì϶£¨CVE-2017-18368£©¡¢»ªÎªHG532·ì϶£¨CVE-2017-17215£©ºÍRealtek RTL81XXоƬ×é·ì϶£¨CVE-2014-8361£© ¡£×êÑÐÈËÔ±°µÊ¾ÔÚShodanÉÏ¿ÉËÑË÷µ½3.2Íǫ̀Ò×Êܹ¥»÷µÄÉ豸 ¡£¸Ã±äÌå¿Éͨ¹ýVSEºÅÁî¹¥»÷ÔËÐÐValve SourceÒýÇæµÄÓÎÏ··þÎñÆ÷ £¬¿ÉÄÜÊÜÓ°ÏìµÄÓÎÏ·Ô̺¬°ëÌõÃüºÍÍŶÓÒªÈû2 ¡£

Ô­ÎÄÁ´½Ó£º
https://www.bleepingcomputer.com/news/security/new-gafgyt-variant-recruits-routers-to-ddos-servers-for-valve-games/

5¡¢´óÁ¿QNAP NASÉ豸ϰȾ¶ñÒâÈí¼þQSnatch

28Ȧ-28Ȧ¹Ù·½ÍøÕ¾-ÏàÐÅÆ·ÅƵÄÁ¦Á¿


ºÚ¿ÍÔÚÀûÓÃжñÒâÈí¼þQSnatchϰȾ̨Í幩¸øÉÌQNAPµÄNASÉ豸 £¬½öÔڵ¹ú¾Í»ã±¨ÁË7000¶àÆðϰȾ £¬¶ø¸Ã¶ñÒâÈí¼þÈÔÔÚ´«²¼ ¡£·ÒÀ¼¹ú¶ÈÍøÂ簲ȫÖÐÐÄ£¨NCSC-FI£©ÔÚÉÏÖÜÒ²ÖÒ¸æÁ˸öñÒâÈí¼þ £¬Ä¿Ç°ÉÐδ·¢ÏÖÕâÖÖÐÂÍþвÈôºÎ´«²¼ºÍϰȾQNAP NASϵͳ £¬µ«Ò»µ©»ñµÃ¶ÔÉ豸µÄ½Ó¼ûȨÏÞ £¬QSnatch¾Í»á½øÈë¹Ì¼þ²¢»ñµÃÓÆ¾ÃÐÔ ¡£Ä¿Ç°Î¨Ò»È·ÈÏÄÜɾ³ýQSnatchµÄ²½ÖèÊǶÔNASÉ豸½øÐÐÆëÈ«³ö³§³ÁÖà ¡£

Ô­ÎÄÁ´½Ó£º
https://www.zdnet.com/article/thousands-of-qnap-nas-devices-have-been-infected-with-the-qsnatch-malware/

6¡¢RittalÀäȴϵͳÉí·ÝÑéÖ¤ÈÆ¹ý¼°Ó²±àÂëÍ´´¦·ì϶


28Ȧ-28Ȧ¹Ù·½ÍøÕ¾-ÏàÐÅÆ·ÅƵÄÁ¦Á¿


¹¤ÒµÍøÂ簲ȫ¹«Ë¾Applied RiskÔڵ¹úRittalÔì×÷µÄSK 3232ϵÁÐÀäÈ´Æ÷Öз¢ÏÖÁ½¸öÓëÉí·ÝÑéÖ¤ÓйصÄÑϳÁ·ì϶ ¡£RittalÊÇFriedhelm Loh GroupµÄ×Ó¹«Ë¾ £¬×¨ÃÅ·ÖÃäÓÃÓÚ¹¤Òµ»·¾³ºÍÊý¾ÝÖÐÐĵĻú¹ñϵͳ ¡£¸Ã¿îÀäÈ´Æ÷רΪҺÌåÀäÈ´Ì×¼þ£¨LCP£©ºÍ»ú·¿¿Õµ÷£¨CRAC£©µÈÉè¼Æ ¡£µÚÒ»¸ö·ì϶£¨CVE-2019-13549£©Ê¹¹¥»÷ÕßÄܹ»Í¨¹ýµ¼º½µ½Ìض¨URIÀ´ÈƹýÉí·ÝÑéÖ¤²¢½Ó¼û¹Ø¼üÖ°ÄÜ ¡£µÚ¶þ¸ö·ì϶£¨CVE-2019-13553£©ÔòÓëÓ²±àÂëÍ´´¦ÓйØ ¡£Æ¾¾ÝCISAµÄ²¼¸æ £¬ÕâЩ·ì϶¶¼Äܹ»Ô¶³ÌÀûÓà £¬¶øÊÜÓ°ÏìµÄϵͳ±»¿í·ºÓÃÓÚÈ«ÇòµÄIT¡¢ÄÜÔ´¡¢¹Ø¼üÔì×÷¡¢Í¨Ñ¶ºÍóÒ×ÉèÊ©ÁìÓò ¡£Applied Risk°µÊ¾ÒÑÓÚ2019Äê1ÔÂÏò¸Ã¹©¸øÉ̻㱨ÁË·ì϶ £¬µ«Î´ÊÕµ½ÈκλØÓ¦ £¬·ì϶ÈÔ佨¸´ ¡£


Ô­ÎÄÁ´½Ó£º

https://www.securityweek.com/critical-vulnerabilities-found-rittal-cooling-system