安全研究 SECURITY SERVICE

KurdishCoder活动使用多种混淆工具,针对区块链行业

发布时间: 2019-12-09
来源:
浏览数: 63

(2019-03-15)今日威胁情报

1、KurdishCoder活动使用多种混淆工具,针对区块链行业

https://redqueen.tj-un.com/IntelDetails.html?id=4d410e54685e44e2b74136d27350fac7


2、Ubuntu发布Intel微码更新,修复CPU挂起问题

https://redqueen.tj-un.com/InfoDetails.html?id=7b494c305cc0423b8696edb1349b838a


3、PCI SSC发布非接触式支付的新数据安全标准

https://redqueen.tj-un.com/InfoDetails.html?id=c93c04b26390425ab49bd75057dbf89c


4、OpenBSD团队修复4个身份验证绕过/提权漏洞

https://redqueen.tj-un.com/InfoDetails.html?id=86a86d51b0eb411bb9c2d2b6c174aed4


(2019-03-15)今日威胁情报


1、【高】安徽司瓦图网络科技有限责任公司建站系统存在SQL注入漏洞

https://www.cnvd.org.cn/flaw/show/CNVD-2019-43350


2、【高】厦门易商网络科技建站系统存在SQL注入漏洞

https://www.cnvd.org.cn/flaw/show/CNVD-2019-43351


3、【高】苏州恩斯特网络科技有限公司建站系统pr***.php页面i***参数存在SQL注入漏洞

https://www.cnvd.org.cn/flaw/show/CNVD-2019-43352


4、【高】徐州梦创信息科技有限公司建站系统存在文件上传漏洞

https://www.cnvd.org.cn/flaw/show/CNVD-2019-43416


5、【高】苏州托普斯网络建站系统pr***.php页面i***参数存在SQL注入漏洞

https://www.cnvd.org.cn/flaw/show/CNVD-2019-43418


6、【高】SDCMS-B2C商城网站管理系统存在命令执行漏洞

https://www.cnvd.org.cn/flaw/show/CNVD-2019-43419


分享到:
  • 相关推荐 RELATED TO RECOMMEND
  • Lazarus组织瞄准无人机领域开展攻击活动
    点击次数: 1001
    2025 - 10 - 27
    Lazarus组织瞄准无人机领域开展攻击活动 https://www.welivesecurity.com/en/eset-research/gotta-fly-lazarus-targets-uav-sector/ 新型Caminho加载器利用LSB隐写术传播恶意软件 https://arcticwolf.com/resources/blog/brazilian-caminho-loader-employs-lsb-steganography-to-deliver-multiple-malware-families/ Delta Electronics ASDA-Soft漏洞预警 https://www.cisa.gov/news-events/ics-advisories/icsa-25-296-04 ASKI Energy ALS-Mini-S8 and ALS-Mini-S4漏洞预警 https://www.cisa.gov/news-events/ics-advisories/icsa-25-296-02 Smishing Triad组织发起短信钓鱼攻击瞄准全球用户 https://unit42.paloaltonetworks.com/global-smishing-campaign/
  • Rockwell Automation FactoryTalk Linx漏洞预警
    点击次数: 101
    2025 - 10 - 20
    Rockwell Automation FactoryTalk Linx漏洞预警 https://www.cisa.gov/news-events/ics-advisories/icsa-25-289-02 Hitachi Energy MACH GWS漏洞预警 https://www.cisa.gov/news-events/ics-advisories/icsa-25-289-11 Siemens HyperLynx and Industrial Edge App Publisher漏洞预警 https://www.cisa.gov/news-events/ics-advisories/icsa-25-289-10
  • UNC5221组织针对美国科技和法律行业部署BRICKSTORM后门
    点击次数: 102
    2025 - 10 - 09
    黑客组织BO Team更新攻击工具 https://securelist.ru/bo-team-upgrades-brockendoor-and-zeronetkit-backdoors/113536/ LastPass发现伪造的GitHub仓库传播macOS窃密软件Atomic https://blog.lastpass.com/posts/attack-targeting-macs-via-github-pages UNC5221组织针对美国科技和法律行业部署BRICKSTORM后门 https://cloud.google.com/blog/topics/threat-intelligence/brickstorm-espionage-campaign Lumma Stealer新变种通过分层混淆来逃避检测 https://gbhackers.com/lummastealers-details/
  • FUJIFILM Healthcare Americas Synapse Mobility漏洞预警
    点击次数: 109
    2025 - 08 - 25
    Paper Werewolf利用WinRAR零日漏洞传播恶意软件 https://gbhackers.com/paper-werewolf-exploits-winrar-zero-day-vulnerability/ FUJIFILM Healthcare Americas Synapse Mobility漏洞预警 https://www.cisa.gov/news-events/ics-medical-advisories/icsma-25-233-01 MuddyWater针对全球多地首席财务官和财务高管发起网络钓鱼攻击 https://hunt.io/blog/apt-muddywater-deploys-multi-stage-phishing-to-target-cfos 新型加载器QuirkyLoader通过钓鱼邮件传播恶意软件 https://www.ibm.com/think/x-force/ibm-x-force-threat-analysis-quirkyloaderScaly Wolf组织针对俄罗斯工程公司发起定向攻击 https://news.drweb.com/show/?i=15046&lng=en&c=5
  • DevilsTongue间谍软件针对多个国家Windows用户
    点击次数: 126
    2025 - 08 - 11
    DevilsTongue间谍软件针对多个国家Windows用户 https://gbhackers.com/sophisticated-devilstongue-spyware/ UAC-0099组织利用HTA文件部署MATCHBOIL加载器 https://gbhackers.com/uac-0099-hackers-weaponize-hta-files/ Delta Electronics DIAView漏洞预警 https://www.cisa.gov/news-events/ics-advisories/icsa-25-219-01 Packet Power EMX and EG漏洞预警 https://www.cisa.gov/news-events/ics-advisories/icsa-25-219-05  ealink IP Phones and RPS (Redirect and Provisioning Service)漏洞预警 https://www.cisa.gov/news-events/ics-advisories/icsa-25-219-08
友情连接:
免费服务热线 ree service hotline 400-613-1868 手机端
法律声明 Copyright  西安交大捷普网络科技有限公司  陕ICP备18022218号-1

陕公网安备 61019002000857号
犀牛云提供云计算服务