报告编号:B6-2021-051999
报告来源:360CERT
报告作者:360CERT
更新日期:2021-05-19
1. Vulnerability|漏洞
- CVE-2021-1497:Cisco HyperFlex HX Data Platform命令注入漏洞POC公开
https://attackerkb.com/topics/mDqlWhQovO/cve-2021-1497
- CVE-2021-1499:Cisco HyperFlex HX Data Platform任意文件上传漏洞POC公开
https://attackerkb.com/topics/Z2MeUsvSlT/cve-2021-1499
2. Security Incident|安全事件
- Lorenz一款针对企业进行攻击的新型勒索病毒
https://www.bleepingcomputer.com/news/security/meet-lorenz-a-new-ransomware-gang-targeting-the-enterprise/
- 俄罗斯两大黑客论坛宣布永久禁止发布勒索相关主题
https://www.bleepingcomputer.com/news/security/popular-russian-hacking-forum-xss-bans-all-ransomware-topics/
- 学生健康保险公司Guard.me遭受数据泄露
https://www.bleepingcomputer.com/news/security/exploit-released-for-wormable-windows-http-vulnerability/
- FBI发现鱼叉式钓鱼网站冒充Truist Bank银行冒充恶意软件
https://www.bleepingcomputer.com/news/security/fbi-spots-spear-phishing-posing-as-truist-bank-bank-to-deliver-malware/
- Bizarro银行木马针对巴西和国外的银行
https://securityaffairs.co/wordpress/118032/cyber-crime/bizarro-banking-trojan.html
- DarkSide勒索软件服务器被查封,其行动取消
https://www.bleepingcomputer.com/news/security/darkside-ransomware-servers-reportedly-seized-operation-shuts-down/
猜你喜欢: