Fortinet°²È«²úÆ·Ó²±àÂë¼ÓÃÜÃÜÔ¿·ì϶£¨CVE-2018-9195£©£»£»£»£»£»£»£»£»ÃÀ¹úIT·þÎñÔËÓªÉÌVCPIÔâµ½ÀÕË÷Èí¼þryuk¹¥»÷
°ä²¼¹¦·ò 2019-11-26
ÃÀ¹ú·Ò×˹°²ÄÇÖݵÄ5000̨µ±¾ÖÍÆËã»úÖÐÓÐ10%Ôâµ½ÍøÂç¹¥»÷µÄ·ÛËé¡£¡£¡£¡£¡£¡£¸ÃÖÝÐÅÏ¢¹ÙÔ±Neal Underwood°µÊ¾£¬£¬£¬£¬£¬ÀÕË÷Èí¼þ¹¥»÷¶ÔÖݵ±¾ÖûÓÐÔì³É¿àÄÑÐÔµÄÓ°Ï죬£¬£¬£¬£¬Ã»º±¼û¾ÝÃÔʧ£¬£¬£¬£¬£¬Ò²Ã»ÓÐÖ§¸¶Êê½ð¡£¡£¡£¡£¡£¡£µ«Underwood³ÆÄ³Ð©²¿ÃÅÊÜËðÑϳÁ£¬£¬£¬£¬£¬ÓÈÆäÊdzµÁ¾°ì¹«ÊÒ - ¸Ã°ì¹«ÊҵķÖÖ§»ú¹¹ÒѾ¹Ø¹ØÁ˳¤´ïÒ»ÖܵŦ·ò¡£¡£¡£¡£¡£¡£Underwood»¹°µÊ¾¸ÃÖݵÄ3ÍòÌ¨ÍÆËã»úÖÐÓÐ1500̨Êܵ½Á˹¥»÷¡£¡£¡£¡£¡£¡£Ä¿Ç°µ÷²éÈËÔ±»¹ÔÚµ÷²éÍøÂç¹¥»÷µÄÆðÔ´¡£¡£¡£¡£¡£¡£
ÔÎÄÁ´½Ó£º
https://www.securityweek.com/cyberattack-hit-10-louisianas-state-government-servers2¡¢ÃÀ¹úIT·þÎñÔËÓªÉÌVCPIÔâµ½ÀÕË÷Èí¼þryuk¹¥»÷
×ܲ¿Î»ÓÚÃÀ¹úÍþ˹¿µÐÇÖÝÃܶûÎÖ»ùµÄIT·þÎñÉÌVCPIÔâÀÕË÷Èí¼þRyuk¹¥»÷£¬£¬£¬£¬£¬¸Ã¹«Ë¾Îª¿Í»§ÍйܵÄËùº±¼û¾Ý¾ù±»¼ÓÃÜ£¬£¬£¬£¬£¬¹¥»÷ÕßÀÕË÷µÄÊê½ð¸ß´ï1400ÍòÃÀÔª¡£¡£¡£¡£¡£¡£VCPIΪ45¸öÖݵÄ110ËùÁÆÑøÔººÍ¼±Ö¢»¤ÀíÉèÊ©ÌṩITÕ÷ѯ¡¢»¥ÁªÍø½Ó¼û¡¢Êý¾Ý´æ´¢ºÍ°²È«·þÎñ£¬£¬£¬£¬£¬×ÜÌå¶øÑԸù«Ë¾ÕƹÜÊØ»¤Ô¼8ÍòÌ¨ÍÆËã»úºÍ·þÎñÆ÷¡£¡£¡£¡£¡£¡£¹¥»÷ÊÂÎñ²úÉúÔÚ11ÔÂ17ÈÕÁ賿1µã30·Ö×óÓÒ£¬£¬£¬£¬£¬µ«°²È«³§ÉÌHold Security³ÆÖ¤¾ÝÅú×¢×î³õµÄÈëÇÖ¿ÉÄÜÔçÔÚ2018Äê9ÔÂ¾ÍÆðÍ·ÁË¡£¡£¡£¡£¡£¡£VCPIÊ×ϯִÐйټæËùÓÐÕßKaren Christianson°µÊ¾Õâ´Î¹¥»÷ÏÖʵÉÏÓ°ÏìÁËËûÃǵÄËùÓÐÖ÷Ìâ²úÆ·£¬£¬£¬£¬£¬Ô̺¬Internet·þÎñºÍµç×ÓÓʼþ¡¢»¼Õ߼ͼ¡¢¿Í»§Õ˵¥ºÍµç»°ÏµÍ³£¬£¬£¬£¬£¬ÉõÖÁÔ̺¬VCPI×Ô¼ºµÄ¹¤×ʺËËãϵͳ¡£¡£¡£¡£¡£¡£
ÔÎÄÁ´½Ó£º
https://krebsonsecurity.com/2019/11/110-nursing-homes-cut-off-from-health-records-in-ransomware-attack/3¡¢¶à¸öAndroid APPÈÔÊÜGIF·ì϶(CVE-2019-11932)Ó°Ïì
CVE-2019-11932ÊÇÔÚWhatsAppµÄAndroid°æ±¾Öз¢ÏÖµÄÒ»¸ö·ì϶£¬£¬£¬£¬£¬¹¥»÷Õß¿Éͨ¹ý¶ñÒâGIFÎļþÀûÓø÷ì϶Զ³ÌÖ´ÐдúÂë¡£¡£¡£¡£¡£¡£¸Ã·ì϶³õ´ÎÅû¶ÓÚ10ÔÂ2ÈÕ£¬£¬£¬£¬£¬²¢ÒÑÔÚWhatsApp 2.19.244°æ±¾Öн¨¸´£¬£¬£¬£¬£¬µ«Ç±ÔÚµÄÎÊÌâÒÀÈ»´æÔÚÓÚÃûΪlibpl_droidsonroids_gif.soµÄ¿â¡£¡£¡£¡£¡£¡£¸Ã¿âÊÇandroid-gif-drawableÈí¼þ°üµÄÒ»²¿ÃÅ£¬£¬£¬£¬£¬ºÜ¶àAPPÈÔÔÚʹÓþɵİ汾£¬£¬£¬£¬£¬µ¼ÖÂËüÃÇÈÔ´¦ÓÚΣÏÕÖ®ÖÓ×£¡£¡£¡£¡£¡£½öÔÚGoogle PlayÉÏ×êÑÐÈËÔ±¾Í·¢ÏÖÁË3000¶à¸öÊÜ´Ë·ì϶ӰÏìµÄAPP£¬£¬£¬£¬£¬Õ⻹²»Ô̺¬µÚÈý·½ÀûÓÃÉ̵꣨ÀýÈç1mobile¡¢9AppsµÈ£©Öеĸü¶àAPP¡£¡£¡£¡£¡£¡£
ÔÎÄÁ´½Ó£º
https://blog.trendmicro.com/trendlabs-security-intelligence/patched-gif-processing-vulnerability-cve-2019-11932-still-afflicts-multiple-mobile-apps/4¡¢Fortinet°²È«²úÆ·Ó²±àÂë¼ÓÃÜÃÜÔ¿·ì϶£¨CVE-2018-9195£©
SEC Consult°²È«×êÑÐÔ±StefanViehb?ckÔÚFortinetµÄFortiOSÖз¢ÏÖÓ²±àÂëµÄ¼ÓÃÜÃÜÔ¿£¨CVE-2018-9195£©£¬£¬£¬£¬£¬ÊÜÓ°ÏìµÄ²úÆ·Ô̺¬FortiGate·À»ðǽÒÔ¼°MacºÍWindows°æ±¾µÄFortiClientÖն˱£»£»£»£»£»£»£»£»¤Èí¼þ¡£¡£¡£¡£¡£¡£ÕâÈýÖÖ²úƷʹÓÃÈõ¼ÓÃÜ£¨XOR£©²¢ÇÒÊÇÓ²±àÂëµÄ¼ÓÃÜÃÜÔ¿Óë¸÷ÀàFortiGateÔÆ·þÎñ½øÐÐͨѶ¡£¡£¡£¡£¡£¡£¸ÃÃÜÔ¿ÓÃÓÚ¼ÓÃÜFortiGuard Web¹ýÂËÖ°ÄÜ¡¢FortiGuard·´À¬»øÓʼþÖ°ÄܺÍFortiGuard AntiVirusÖ°ÄܵÄÓû§Á÷Á¿¡£¡£¡£¡£¡£¡£¹¥»÷Õß¿ÉÀûÓô˷ì϶Ðá̽Óû§µÄÁ÷Á¿£¬£¬£¬£¬£¬¸ú×ÙËûÃǵÄä¯ÀÀ¼Í¼»òµç×ÓÓʼþÊý¾Ý¡£¡£¡£¡£¡£¡£×êÑÐÈËÔ±ÓÚ2018Äê5Ô·¢ÏÖ²¢»ã±¨ÁËÕâЩÎÊÌ⣬£¬£¬£¬£¬µ«Fortinet»¨ÁË10µ½18¸öԵŦ·ò²Åɾ³ýÁËÓ²±àÂëµÄÃÜÔ¿¡£¡£¡£¡£¡£¡£½¨ÒéÓû§¸üÐÂÖÁFortiOS 6.0.7»ò6.2.0¡¢FortiClient Windows 6.2.0¼°FortiClient Mac 6.2.2¡£¡£¡£¡£¡£¡£
ÔÎÄÁ´½Ó£º
https://www.zdnet.com/article/some-fortinet-products-shipped-with-hardcoded-encryption-keys/
5¡¢ÐÂ¼ÓÆÂ¹ÜÕÊίԱ»áÐıíй¶Լ6500Ãû¹ÜÕÊʦÊý¾Ý
ÐÂ¼ÓÆÂ¹ÜÕÊίԱ»á¡°ÎÞÒâ¼ä¡±Ïò¶à¸ö×éÖ¯·¢ËÍÁËÔ̺¬6541Ãû¹ÜÕÊÈËÔ±Êý¾ÝµÄµç×ÓÓʼþ£¬£¬£¬£¬£¬ÕâÒ»ÎÊÌâÖ±µ½ÊýÔºó²Å±»·¢ÏÖ¡£¡£¡£¡£¡£¡£Æ¾¾Ý¸ÃίԱ»áµÄÉêÃ÷£¬£¬£¬£¬£¬½ñÄê6ÔÂ12ÈÕÖÁ10ÔÂ22ÈÕÖ®¼äÕâЩÊý¾Ýͨ¹ý¶à·âµç×ÓÓʼþ±»·¢Ë͸øÁË22¸ö×éÖ¯£¬£¬£¬£¬£¬ÆäÖÐÔ̺¬21¸ö¾¹ýÈÏÖ¤µÄÅàѵ×éÖ¯£¨ATO£©ºÍÒ»¸ö¹©¸øÉÌ¡£¡£¡£¡£¡£¡£ÊÜÓ°ÏìµÄÈËÔ±Ô̺¬ÐÂ¼ÓÆÂÌØÐí¹ÜÕÊʦ×ʸñ´òËãÈ·µ±Ç°¼°´ÓǰµÄºòÑ¡È˺Í5ÔÂ17ÈÕ֮ǰ²Î¼Ó¸ÃÏîÄ¿ÖÎÀíµÄATOÈËÔ±¼°ÆäËû¸ß¹Ü¡£¡£¡£¡£¡£¡£Â¶³öµÄÐÅÏ¢Ô̺¬ÐÕÃû¡¢Éí·ÝÖ¤ºÅ¡¢µ®ÉúÈÕÆÚºÍ¾ÍÒµÐÅÏ¢¡£¡£¡£¡£¡£¡£
ÔÎÄÁ´½Ó£º
https://www.zdnet.com/article/security-lapse-exposes-personal-data-of-6500-singapore-accountants/
6¡¢Ð¼üÅ̼ͼľÂíPhoenixÒÑϰȾ³¬¹ý1Íò¸öϵͳ
Cybereason×êÑÐÈËÔ±ÔÚÒ»·Ý»ã±¨ÖаµÊ¾£¬£¬£¬£¬£¬Ò»¸öÃûΪPhoenixµÄмüÅ̼ͼľÂí´Ó7ÔÂ·ÝÆðÍ·¾ÍÔÚºÚ¿ÍÂÛ̳ÉÏÏúÊÛ£¬£¬£¬£¬£¬µ±Ç°ÒÑÓÐ1Íò¶àÆðϰȾÊÂÎñÓëÖ®Óйء£¡£¡£¡£¡£¡£ÔÚ´ÓǰµÄ¼¸¸öÔÂÖУ¬£¬£¬£¬£¬Phoenix´Óµ¥Ò»µÄ¼üÅ̼ͼľÂí£¨keylogger£©ÑݱäΪ¾ß±¸¸ü¶àÖ°ÄܵÄÐÅÏ¢ÇÔȡľÂí£¨infostealer£©¡£¡£¡£¡£¡£¡£½Ïеİ汾¿É´Ó20ÖÖ·ÖÆçµÄä¯ÀÀÆ÷¡¢4¸ö·ÖÆçµÄÓʼþ¿Í»§¶ËÒÔ¼°FTP¿Í»§¶ËºÍ̸ÌìÀûÓÃÖÐÇÔÈ¡Óû§Êý¾Ý£¨ÀýÈçÃÜÂ룩¡£¡£¡£¡£¡£¡£´Ë±í£¬£¬£¬£¬£¬Phoenix»¹¾ß±¸·´AVºÍ·´VMÄ£¿£¿£¿£¿£¿£¿£¿é£¬£¬£¬£¬£¬ÕâÁ½¸öÄ£¿£¿£¿£¿£¿£¿£¿é½«³¢ÊԹعØ80¶àÖÖ³£¼ûµÄ°²È«²úÆ·ºÍVMÀûÓõĹý³Ì¡£¡£¡£¡£¡£¡£
ÔÎÄÁ´½Ó£º
https://www.zdnet.com/article/new-phoenix-keylogger-tries-to-stop-over-80-security-products-to-avoid-detection/


¾©¹«Íø°²±¸11010802024551ºÅ