网络安全动态 一周速览 2024.11.23 – 2024.11.29
网络安全动态 一周速览 2024.11.23 – 2024.11.29
Sugar Delta Insights 2024-11-29 09:30
网络安全动态 一周速览
2024.11.23 – 2024.11.29
政策更新及合规动态
1.四部门联合印发《电信网络诈骗及其关联违法犯罪联合惩戒办法》
Source:https://www.secrss.com/articles/72726
2.四部门开展“清朗·网络平台算法典型问题治理”专项行动
Source:https://www.secrss.com/articles/72692
3.纽约对Geico和Travelers因数据泄露罚款1130万美元
Source:https://www.bankinfosecurity.com/new-york-fines-geico-travelers-113m-for-data-breaches-a-26899
- 前实习生篡改代码攻击大模型训练,字节跳动起诉索赔800万
Source:https://www.secrss.com/articles/72821
行业威胁情报
1.星巴克因第三方软件供应商遭勒索软件攻击
Source:https://cybersecuritynews.com/starbucks-hit-by-ransomware-attack/#google_vignette
2.警惕微信群“钓鱼”传播“银狐”木马病毒变种
Source:https://mp.weixin.qq.com/s/JANpjpgjW1Pjo-Y32uthPw
- 工信部警示:Remcos RAT恶意软件新变种风险
Source:https://www.secrss.com/articles/72719
4.Zello要求用户重置密码以应对安全事件
Source:https://www.bleepingcomputer.com/news/security/zello-asks-users-to-reset-passwords-after-security-incident/
5.新型隐匿GodLoader恶意软件攻击多平台设备
Source:https://cybersecuritynews.com/godloader-malware-multiple-platform/#google_vignette
6.首个针对Linux系统的UEFI引导套件Bootkitty被发现
Source:https://www.bleepingcomputer.com/news/security/researchers-discover-bootkitty-first-uefi-bootkit-malware-for-linux/
7.Cloudflare因日志收集服务漏洞丢失55%客户日志数据
Source:https://www.bleepingcomputer.com/news/security/cloudflare-says-it-lost-55-percent-of-logs-pushed-to-customers-for-35-hours/
8.APT-C-60黑客利用StatCounter和Bitbucket在SpyGlace恶意软件攻击中进行间谍活动
Source:https://thehackernews.com/2024/11/apt-c-60-exploits-wps-office.html
9.NachoVPN攻击通过恶意VPN服务器传播更新威胁
Source:https://www.bleepingcomputer.com/news/security/new-nachovpn-attack-uses-rogue-vpn-servers-to-install-malicious-updates/
10.“Matrix”黑客部署大规模IoT僵尸网络发动DDoS攻击
Source:https://hackread.com/matrix-hackers-new-iot-botnet-ddos-attacks/
11.Blue Yonder供应链管理系统遭勒索软件攻击,影响英国多家超市运营
Source:https://www.bleepingcomputer.com/news/security/blue-yonder-ransomware-attack-disrupts-grocery-store-supply-chain/
12.恶意软件利用BYOVD技术绕过杀毒软件,终止142个安全进程
Source:https://thehackernews.com/2024/11/researchers-uncover-malware-using-byovd.html
13.黑客滥用Avast防护驱动绕过检测并禁用安全防御
Source:https://www.bleepingcomputer.com/news/security/hackers-abuse-avast-anti-rootkit-driver-to-disable-defenses/
14.Meta封禁超200万假账户,打击海外诈骗中心
Source:https://cybernews.com/security/meta-removes-2m-fake-accounts-south-asia-scam-centers/
15.Earth Kasha扩展攻击活动,新版LODEINFO恶意软件瞄准政府和高科技行业
Source:https://securityonline.info/earth-kasha-expands-operations-new-lodeinfo-malware-hits-government-and-high-tech/
16.美国和欧洲占全球暴露ICS系统的73%,关键基础设施面临高风险
Source:https://hackread.com/us-europe-account-73-global-exposed-ics-systems/
安全漏洞更新
1.7-Zip高危漏洞CVE-2024-11477可致任意代码执行,用户需紧急更新
Source:https://cybersecuritynews.com/7-zip-vulnerability-arbitrary-code/#google_vignette
2.Advantech工业Wi-Fi接入点发现超过二十个漏洞,紧急修复
Source:https://thehackernews.com/2024/11/over-two-dozen-flaws-identified-in.html
3.macOS漏洞(CVE-2023-32428)允许获取Root权限,PoC已发布
Source:https://securityonline.info/macos-vulnerability-cve-2023-32428-grants-root-access-poc-published/
4.ProjectSend漏洞CVE-2024-11680被黑客利用进行服务器入侵
Source:https://www.bleepingcomputer.com/news/security/hackers-exploit-projectsend-flaw-to-backdoor-exposed-servers/
5.RomCom利用Firefox和Windows零日漏洞实施无点击攻击
Source:https://www.darkreading.com/application-security/romcom-apt-zero-day-zero-click-browser-escapes-firefox-tor
6.eritas Enterprise Vault高危漏洞或致远程代码执行,企业须立即采取措施
Source:https://cybersecuritynews.com/multiple-vulnerabilities-in-veritas-enterprise-vault-let-attackers-execute-remote-code/
扫码关注我们
Delta Insights
行业资讯 动态观察 前沿研究
免责声明:此通讯文稿仅供参考,任何使用本公众号内容所引发的行为或决策,完全由您个人自行承担责任。在作出决策时,您应当咨询合格的安全顾问。