BitrueÔâºÚ¿Í¹¥»÷;Kubernetes CLI¹¤¾ßËÁÒâÎļþ¸²¸Ç·ì϶;Õë¶ÔÖж«µØÓòµÄViceLeaker¹¥»÷»î¶¯
°ä²¼¹¦·ò 2019-06-28
ÐÂ¼ÓÆÂ¼ÓÃÜÇ®±ÒÂòÂôËùBitrueÔâºÚ¿Í¹¥»÷£¬£¬£¬£¬£¬£¬£¬£¬930Íò¸öRipple£¨XRP£©±Ò£¨¼ÛÖµ425ÍòÃÀÔª£©ºÍ250Íò¸öCardano£¨ADA£©±Ò£¨¼ÛÖµ22.5ÍòÃÀÔª£©±»ÇÔ¡£¡£¡£¡£¡£¡£Bitrue°µÊ¾£¬£¬£¬£¬£¬£¬£¬£¬ÔÚ·¢Ïֺڿ͹¥»÷ºóÒÑÔÝÍ£ÁË·þÎñ£¬£¬£¬£¬£¬£¬£¬£¬²¢Ïò»ð±Ò¡¢Bittrex¡¢ChangeNOWµÈ×ʽð½Ó¹Ü·½´«µÝÁËÇé¿ö¡£¡£¡£¡£¡£¡£Çé¿öÒѵõ½½ÚÔ죬£¬£¬£¬£¬£¬£¬£¬×ʽðËðʧ½«100%·µ»¹Óû§£¬£¬£¬£¬£¬£¬£¬£¬BitrueÔÚ³ÁÐÂÉóºËÆä°²È«´ëÊ©ºÍÕþ²ß£¬£¬£¬£¬£¬£¬£¬£¬ÒÔÈ·±£´ËÀàÊÂÎñ²»ÔÙ²úÉú¡£¡£¡£¡£¡£¡£
ÔÎÄÁ´½Ó£º
https://www.zdnet.com/article/hacker-steals-4-5-million-from-bitrue-cryptocurrency-exchange/2.µÂ¹ú¾¯·½Í»Ï®OmniRAT¿ª·¢ÕßסËù£¬£¬£¬£¬£¬£¬£¬£¬²é»ñ´óÁ¿Ö¤¾Ý
6ÔÂ26Èյ¹ú¾¯·½Í»Ï®OmniRAT¿ª·¢ÕßµÄסËù£¬£¬£¬£¬£¬£¬£¬£¬²é»ñÁËËûµÄ±Ê¼Ç±¾µçÄÔ¡¢µçÄÔºÍÊÖ»úµÈÊý×Ö×ʲú¡£¡£¡£¡£¡£¡£Õâ¿ÉÄÜÓë×î½üµÄÍøÂç¹¥»÷»î¶¯µÄµ÷²éÓйء£¡£¡£¡£¡£¡£ÔÚ½ñÄêÔçЩʱ³½µÄÒ»´Î¹¥»÷ÊÂÎñÖУ¬£¬£¬£¬£¬£¬£¬£¬ºÚ¿ÍÊÔIJÀûÓÃMicrosoft ExcelÔ¶³Ì´úÂëÖ´Ðзì϶£¨CVE-2016-7262£©ÔÚÖ¸±êÍÆËã»úÉÏ×°ÖÃOmniRAT¡£¡£¡£¡£¡£¡£¹¥»÷Õß½«ExcelÎļþ¼Ù×°³É¿ÆÍþÌØÊ¯Ó͹«Ë¾µÄÉÌÎñÎļþ£¬£¬£¬£¬£¬£¬£¬£¬ÓÕÆÊܺ¦Õß´ò¿ªÎļþ¡£¡£¡£¡£¡£¡£Ä¿Ç°Éв»Ã÷ÏԵ¹ú¾¯·½µÄÐж¯ÊÇ·ñÓë´ËÓйأ¬£¬£¬£¬£¬£¬£¬£¬¾¯·½µÄÖ÷ÕÅÒ²¿ÉÄÜÊÇ»ñÈ¡´Óǰ4ÄêÖвɰìOmniRATµÄËùÓпͻ§µÄÃûµ¥£¬£¬£¬£¬£¬£¬£¬£¬ÒÔ½ø¹¥ÀÄÓøù¤¾ßµÄÍøÂç·¸×ï·Ö×Ó¡£¡£¡£¡£¡£¡£
ÔÎÄÁ´½Ó£º
https://thehackernews.com/2019/06/police-raid-omnirat-developer.html3.˼¿Æ°ä²¼DCNMµÄ°²È«¸üУ¬£¬£¬£¬£¬£¬£¬£¬½¨¸´¶à¸öÑϳÁ·ì϶
˼¿Æ°ä²¼ÆäÊý¾ÝÖÐÐÄÍøÂçÖÎÀíÆ÷£¨DCNM£©Èí¼þµÄ°²È«¸üУ¬£¬£¬£¬£¬£¬£¬£¬½¨¸´4¸ö·ì϶¡£¡£¡£¡£¡£¡£ÕâЩ·ì϶¶¼ÓëWebÖÎÀí½çÃæÖеĽӼû½ÚÔìÃýÎóÓйأ¬£¬£¬£¬£¬£¬£¬£¬Ô̺¬¿Éµ¼ÖÂËÁÒâÎļþÉÏ´«¼°rootȨÏÞÖ´ÐдúÂëµÄ·ì϶£¨CVE-2019-1620£¬£¬£¬£¬£¬£¬£¬£¬CVSSÆÀ·ÖΪ9.8·Ö£©¡¢¿Éµ¼ÖÂÉí·ÝÑéÖ¤ÈÆ¹ýµÄ·ì϶£¨CVE-2019-1619£¬£¬£¬£¬£¬£¬£¬£¬CVSSÆÀ·ÖΪ9.8·Ö£©ÒÔ¼°¿Éµ¼ÖÂÃô¸ÐÐÅϢй¶µÄ·ì϶£¨CVE-2019-1621£¬£¬£¬£¬£¬£¬£¬£¬CVSSÆÀ·ÖΪ7.5·Ö£»£»£»£»£»£»CVE-2019-1622£¬£¬£¬£¬£¬£¬£¬£¬CVSSÆÀ·ÖΪ5.3·Ö£©¡£¡£¡£¡£¡£¡£ÊÜÓ°ÏìµÄ²úƷΪDCNM 11.2(1)֮ǰµÄ°æ±¾¡£¡£¡£¡£¡£¡£
ÔÎÄÁ´½Ó£º
https://www.bleepingcomputer.com/news/security/cisco-patches-critical-flaws-in-data-center-network-manager/4.Kubernetes CLI¹¤¾ßËÁÒâÎļþ¸²¸Ç·ì϶£¬£¬£¬£¬£¬£¬£¬£¬½¨ÒéÉý¼¶µ½×îа汾
Kubernetes CLI¹¤¾ß½¨¸´¿Éµ¼ÖÂËÁÒâÎļþ¸²¸ÇµÄ·ì϶£¨CVE-2019-11246£©£¬£¬£¬£¬£¬£¬£¬£¬¸Ã·ì϶ÊÇ3Ô·ݵķì϶£¨CVE-2019-1002101£©½¨¸´²»ÆëÈ«µ¼ÖµÄÐÂÎÊÌâ¡£¡£¡£¡£¡£¡£ÀûÓø÷ì϶¿ÉÄܻᵼÖÂĿ¼±éÀú-ÔÊÐí¹¥»÷ÕßʹÓöñÒâÈÝÆ÷´´½¨»ò´úÌæÓû§¹¤×÷Õ¾ÖеÄÎļþ¡£¡£¡£¡£¡£¡£¸Ã·ìÏ¶Éæ¼°kubectl cpºÅÁ£¬£¬£¬£¬£¬£¬£¬´ËºÅÁîÓÃÓÚÔÚÈÝÆ÷ºÍÓû§»úе֮¼ä¸´ÔìÎļþ¡£¡£¡£¡£¡£¡£¹¥»÷ÕßÄܹ»Í¨¹ýʹÓöñÒâtar¶þ½øÔìÎļþÀ´ÀûÓôËÖ°ÄÜ£¬£¬£¬£¬£¬£¬£¬£¬Ö»ÓÐŲÓÃkubectl cp£¬£¬£¬£¬£¬£¬£¬£¬¾ÍÄܹ»½«ÎļþдÈëÖ¸±êÍÆËã»úÉϵÄÈκÎõè¾¶¡£¡£¡£¡£¡£¡£ÓÉÓÚCVE-2019-11246Êǿͻ§¶ËÉϵķì϶£¬£¬£¬£¬£¬£¬£¬£¬Òò¶øÆäÀûÓñØÒªÓû§½»»¥¡£¡£¡£¡£¡£¡£ÔçÓÚ1.12.9£¬£¬£¬£¬£¬£¬£¬£¬1.13.6ºÍ1.14.2µÄ¿Í»§¶Ë°æ±¾ÈÝÒ×Êܵ½¹¥»÷£¬£¬£¬£¬£¬£¬£¬£¬½¨ÒéÓû§¾¡¿ìÉý¼¶¡£¡£¡£¡£¡£¡£
ÔÎÄÁ´½Ó£º
https://www.zdnet.com/article/kubernetes-cli-tool-security-flaw-lets-attackers-run-code-on-host-machine/5.GreenFlash Sundown EK´ó¹æÄ£·Ö·¢»î¶¯£¬£¬£¬£¬£¬£¬£¬£¬ÖØÒªÕë¶Ô±±ÃÀºÍÅ·ÖÞ
Malwarebytes Labs×êÑÐÍŶӷ¢ÏÖGreenFlash Sundown EKµÄ´ó¹æÄ£·Ö·¢»î¶¯¡£¡£¡£¡£¡£¡£¸Ã¹¥»÷»î¶¯ÔÚ±±ÃÀºÍÅ·ÖÞ¼«¶È»îÔ¾¡£¡£¡£¡£¡£¡£¹¥»÷Õßͨ¹ýÈëÇÖÍøÕ¾ËùÓÐÕßÔËÓªµÄ¸æ°×·þÎñÆ÷£¬£¬£¬£¬£¬£¬£¬£¬Ï°È¾ÆäͶ·ÅµÄ¸æ°×½øÐзַ¢¡£¡£¡£¡£¡£¡£ÆäÖÐÒ»¸öÊÜÓ°ÏìµÄ°ä²¼ÉÌÊÇonlinevideoconverter[.]com£¬£¬£¬£¬£¬£¬£¬£¬¸ÃÍøÕ¾ÊÇÒ»¸ö½«YouTubeºÍÆäËûƽ̨ÉϵÄÊÓÆµ×ª»»ÎªÎļþµÄÈȵãÍøÕ¾¡£¡£¡£¡£¡£¡£Æ¾¾ÝSimilarWeb£¬£¬£¬£¬£¬£¬£¬£¬ÆäÔ½Ӽû´ÎÊýΪ2ÒڴΡ£¡£¡£¡£¡£¡£¸ÃEK·Ö·¢µÄpayloadÔ̺¬ÀÕË÷Èí¼þSEON¡¢PonyÒÔ¼°Ò»¸öÍÚ¿óÈí¼þ¡£¡£¡£¡£¡£¡£
ÔÎÄÁ´½Ó£º
https://blog.malwarebytes.com/threat-analysis/2019/06/greenflash-sundown-exploit-kit-expands-via-large-malvertising-campaign/6.ÐÂViceLeaker¶ñÒâ»î¶¯£¬£¬£¬£¬£¬£¬£¬£¬ÖØÒªÕë¶ÔÖж«µØÓòµÄAndroidÓû§
¿¨°Í˹»ù×êÑÐÈËÔ±·¢ÏÖеĶñÒâÈí¼þ»î¶¯ViceLeaker£¬£¬£¬£¬£¬£¬£¬£¬¸Ã»î¶¯ÖØÒªÕë¶ÔÖж«µØÓòµÄAndroidÓû§¡£¡£¡£¡£¡£¡£Æ¾¾Ý×êÑÐÈËÔ±µÄ˵·¨£¬£¬£¬£¬£¬£¬£¬£¬ÆäpayloadÊÇÒ»ÖÖ¼äµýÈí¼þ·¨Ê½£¬£¬£¬£¬£¬£¬£¬£¬ÓÃÓÚ´ÓÊÜϰȾµÄÉ豸ÖÐÌáÈ¡¿É½Ó¼ûµÄÐÅÏ¢£¬£¬£¬£¬£¬£¬£¬£¬Ô̺¬µç»°¼Í¼¡¢¶ÌÐÅ¡¢ä¯ÀÀÆ÷º¹Çà¼Í¼µÈ¡£¡£¡£¡£¡£¡£³ýÁËÓµÓмäµýÈí¼þµÄÖ°ÄÜÖ®±í£¬£¬£¬£¬£¬£¬£¬£¬¶ñÒâAPKÑù±¾»¹Ô̺¬ºóÃÅÖ°ÄÜ¡£¡£¡£¡£¡£¡£Ô̺¬¶ñÒâpayloadµÄAPKÖØÒªÍ¨¹ýTelegramºÍWhatsAppµÈ̸ÌìÀûÓô«²¼¸øÊܺ¦Õß¡£¡£¡£¡£¡£¡£×êÑÐÈËÔ±ÒÔΪViceLeaker¿ÉÄÜÊÇÃæÏòÈ«ÇòµÄÍøÂç¹¥»÷»î¶¯µÄÒ»²¿ÃÅ¡£¡£¡£¡£¡£¡£
ÔÎÄÁ´½Ó£º
https://cyware.com/news/new-viceleaker-campaign-targets-android-users-in-the-middle-east-5f90068e


¾©¹«Íø°²±¸11010802024551ºÅ