·¨¹úÒ½ÔºGHTÔâµ½ÀÕË÷¹¥»÷»¼Õߺ͹ÜÀíÏà¹ØÐÅϢй¶

Ðû²¼Ê±¼ä 2022-04-26

1¡¢·¨¹úÒ½ÔºGHTÔâµ½ÀÕË÷¹¥»÷»¼Õߺ͹ÜÀíÏà¹ØÐÅϢй¶


ýÌå4ÔÂ25Èճƣ¬·¨¹úÒ½ÁƱ£½¡¼¯ÍÅGHT Coeur Grand EstÔâµ½¹¥»÷£¬»¼Õߺ͹ÜÀíÏà¹ØÐÅϢй¶¡£¹¥»÷·¢ÉúÔÚ4ÔÂ19ÈÕ£¬GHTÔÚ·¢ÏÖ¹¥»÷ºóÁ¢¼´¶Ï¿ªÁËÒ½ÔºµÄÍøÂçÁ¬½Ó£¬ÒÔ± £»¤ÐÅϢϵͳºÍÊý¾Ý¡£Ñо¿ÈËÔ±ÔÚÍøÕ¾Industrial Spy·¢ÏÖ£¬¹¥»÷ÕßÉù³ÆÒÑÀÕË÷1300000ÃÀÔª£¬¹«Ë¾Èç¹û²»Ö§¸¶Êê½ð£¬ËûÃǽ«ÔÚÍøÕ¾ÖгöÊÛÆäÇÔÈ¡µÄ28.7 GBÊý¾Ý£¬ÆäÖаüÂÞÉç»áÄþ¾²ºÅÂë¡¢»¤ÕÕɨÃè¼þ¡¢ÒøÐÐÐÅÏ¢¡¢µç×ÓÓʼþºÍµç»°ºÅÂëµÈ¡£


https://www.bleepingcomputer.com/news/security/french-hospital-group-disconnects-internet-after-hackers-steal-data/


2¡¢ResecurityÏêÊö½üÆÚÓëIRSËùµÃË°É걨ÓйصĵöÓã»î¶¯


4ÔÂ19ÈÕ£¬ResecurityÅû¶Á˽üÆÚÓëIRSËùµÃË°É걨ÓйصĵöÓã»î¶¯µÄÏêϸÐÅÏ¢¡£¹¥»÷Õßð³äÁËÕþ¸®»ú¹¹µÄIT·þÎñ¹©Ó¦ÉÌ£¬ÔÚµöÓãÓʼþÖÐÌí¼ÓαÔì³Éµç×Ó·¢Æ±µÄHTML¸½¼þ£¬¸½¼þÖаüÂÞ»ùÓÚJSµÄ»ìÏý´úÂë¡£HTML¸½¼þ±»´ò¿ªºó£¬Ëü»áÀûÓý»»¥Ê½±íµ¥Ä£ÄâOffice 365ÊÚȨ»úÖÆÀ´ÓÕʹĿ±êÊäÈëƾ֤¡£µöÓãÓʼþ»¹ÓÐÒ»¸öReturn-Path×ֶΣ¬ÓÃÓÚ´¦ÖÃÍ˻صĵç×ÓÓʼþ¡£ÖµµÃ×¢ÒâµÄÊÇ£¬¸ÃÓʼþ²»°üÂÞÈκÎURL£¬ÔÚÀֳɷ¢Ë͵½Ä¿±êÓÊÏäºóÒ²²¢Î´±»±ê־ΪDZÔÚÀ¬»øÓʼþ¡£


https://resecurity.com/blog/article/cybercriminals-deliver-irs-tax-scams-phishing-campaigns-by-mimicking-government-vendors 


3¡¢eSentire·¢ÏÖÖ¼ÔÚ·Ö·¢¶ñÒâÈí¼þMore_eggsµÄ¹¥»÷»î¶¯


eSentireÔÚ4ÔÂ21ÈÕÐû²¼Á˹ØÓÚ·Ö·¢¶ñÒâÈí¼þMore_eggsµÄ¹¥»÷»î¶¯µÄ³ÂËß¡£Ñо¿ÈËÔ±·¢ÏÖÐÂÒ»ÂÖµöÓã»î¶¯£¬Ã°³äÇóÖ°ÕßÓÕʹÆóÒµÕÐƸ¾­ÀíÏÂÔØαÔìµÄÇóÖ°¼òÀú£¬ÆäÖаüÂÞÁ˶ñÒâÈí¼þmore_eggs¡£Õâ¼Ò¼ÓÄôóÄþ¾²¹«Ë¾ÌåÏÖÒÑ·¢ÏÖ4´Î¹¥»÷»î¶¯£¬ÆäÖÐ3Æð·¢ÉúÔÚ3Ôµ×£¬Ä¿±ê°üÂÞÒ»¼ÒÃÀ¹úµÄº½¿Õº½Ì칫˾¡¢Ò»¼ÒÓ¢¹úµÄ»á¼Æ¹«Ë¾¡¢Ò»¼ÒÂÉʦÊÂÎñËùºÍÒ»¼ÒÈËÊÂÊðÀí»ú¹¹¡£Ñо¿ÈËÔ±ÍƲ⣬¸Ã¶ñÒâÈí¼þÓëGolden ChickensÓйØ¡£


https://www.esentire.com/blog/hackers-spearphish-corporate-hiring-managers-with-poisoned-resumes-infecting-them-with-the-more-eggs-malware


4¡¢Anonymous³ÆÆäOpRussia»î¶¯ÒѹûÈ»¶íÂÞ˹5.8TBµÄÊý¾Ý


ýÌå4ÔÂ24Èճƣ¬Anonymous³ÆÆäÌᳫµÄOpRussia»î¶¯ÒÑͨ¹ýDDoSecretsÐû²¼Á˶íÂÞ˹Լ5.8 TBµÄÊý¾Ý¡£½üÆÚÔâµ½Anonymous¹¥»÷µÄ¹«Ë¾°üÂÞ£º¶íÂÞ˹×î´óµÄҺѹ¹¤¾ßÉú²úÉÌ£¬432 GBÊý¾Ýй¶£¬ÆäÖаüÂÞ645000·âÓʼþ £»ÉÌÒµ·¿µØ²úͶ×ʹ«Ë¾Accent Capital£¬211GBÊý¾Ýй¶£¬ÆäÖаüÂÞ365000·âÓʼþ £»ÎïÒµ¹ÜÀí¹«Ë¾Sawatzky°üÂÞ575000·âÓʼþµÄ432 GBÊý¾Ý £»ÒÔ¼°Í¶×ʹ«Ë¾Worldwide Invest°üÂÞ250000·âÓʼþÔÚÄÚµÄ432 GBÊý¾Ý¡£


https://securityaffairs.co/wordpress/130554/hacktivism/anonymous-leaked-5-8-tb-russian-data.html


5¡¢Trend MicroÐû²¼2022ÄêÍøÂçÄþ¾²Ì¬ÊƵÄÔ¤²â³ÂËß


4ÔÂ24ÈÕ£¬Trend MicroÐû²¼ÁË2022ÄêÍøÂçÄþ¾²Ì¬ÊƵÄÔ¤²â³ÂËß¡£³ÂËßÖ¸³ö£¬¹©Ó¦Á´¹¥»÷»î¶¯½«¼¤Ôö £»ÀÕË÷Èí¼þ½«¼ÌÐøÉú³¤²¢Á÷ÐУ¬Ô¤²â½«·ºÆðÁ½¸öÇ÷ÊÆ£¬ÏÖ´úÀÕË÷Èí¼þ½«±äµÃÔ½À´Ô½ÓÐÕë¶ÔÐÔ£¬Ð§·Â´«Í³µÄAPT¹¥»÷£¬ÒÔ¼°ÀÕË÷ÍŻォʹÓøüÅÓ´óµÄÀÕË÷¼Æı £»ÁãÈÕ©¶´ÀûÓÃÔö¼Ó£¬²¢Áè¼Ý2021Äê´´¼Í¼µÄÊýÁ¿ £»Õë¶ÔÆû³µÐÐÒµµÄ¹¥»÷Ò²½«Ôö¼Ó¡£³ÂËß½¨ÒéÓû§´Ó3¸ö·½ÃæÖƶ¨Äþ¾²¼Æı£¬°üÂÞ¹¥»÷Ãæ¹ÜÀí£¨ASM£©¡¢ÀÕË÷Èí¼þ»º½âÒÔ¼°Â©¶´ºÍ²¹¶¡¹ÜÀí¡£


https://www.trendmicro.com/en_us/ciso/21/l/cybersecurity-trends-2022.html


6¡¢ZscalerÐû²¼2021ÄêÍøÂçµöÓã¹¥»÷̬ÊƵķÖÎö³ÂËß


ZscalerÔÚ4ÔÂ29ÈÕÐû²¼ÁË2021ÄêÍøÂçµöÓã¹¥»÷̬ÊƵķÖÎö³ÂËß¡£È¥ÄêZscale¼ì²âµ½µÄµöÓã¹¥»÷ÔÚÈ«Çò·¶Î§ÄÚÉÏÉýÁË29%£¬µ½´ïÁË8.739ÒڴεÄмͼ £»ÁãÊÛºÍÅú·¢ÊÇ×îÔâµ½¹¥»÷×î¶àµÄÐÐÒµ£¬ÔÚ¹ýÈ¥12¸öÔÂÖеĹ¥»÷Ôö¼ÓÁËÁè¼Ý400% £»ÃÀ¹ú¡¢Ð¼ÓÆ¡¢µÂ¹ú¡¢ºÉÀ¼ºÍÓ¢¹úÊǵöÓã»î¶¯×îÖ÷ÒªµÄÄ¿±ê £»Ëæ×ÅÓû§¶Ô¿ÉÒɵç×ÓÓʼþµÄ¾¯ÌèÔö¼Ó£¬ÐÂÐ˵ĵöÓãý½é£¨ÀýÈçSMSµöÓ㣩±È´«Í³ÒªÁìÔö³¤µÃ¸ü¿ì £»²»Í£Ôö¼ÓµÄµöÓã»î¶¯Óëphishing- as-a-serviceÖ±½ÓÏà¹Ø¡£


https://info.zscaler.com/resources-industry-report-threatlabz-state-of-phishing-report