¡¶Î¬ËûÃü¡·ÖðÈÕÇå¾²¼òѶ20180625

Ðû²¼Ê±¼ä 2018-06-25

¡¾Çå¾²Îó²î¡¿Ë¼¿ÆPSIRTÖÒÑÔʹÓÃDoSÎó²î£¨CVE-2018-0296£©µÄ¹¥»÷»î¶¯


˼¿ÆPSIRT·¢Ã÷Õë¶ÔÆäÎó²î£¨CVE-2018-0296£©µÄ¹ûÕæµÄÎó²îʹÓ㬣¬£¬£¬ÏòÓû§ÖÒÑÔDZÔÚµÄÇ徲Σº¦¡£¡£¡£¡£¡£¡£¸ÃÎó²îÓÚ2018Äê6ÔÂ6ÈÕ¹ûÕæÅû¶£¬£¬£¬£¬¿ÉÔÊÐíδ¾­Éí·ÝÑéÖ¤µÄÔ¶³Ì¹¥»÷Õß´¥·¢¸ÃÎó²îµ¼Ö¾ܾøЧÀÍ£¨DoS£©»òÐÅϢй¶¡£¡£¡£¡£¡£¡£¸ÃÎó²îÓ°ÏìCisco ASAÈí¼þºÍCisco FTDÈí¼þ£¬£¬£¬£¬½¨ÒéÓû§Éý¼¶ÖÁ×îеİ汾ÒÔÐÞ¸´´ËÎÊÌâ¡£¡£¡£¡£¡£¡£

Ô­ÎÄÁ´½Ó£ºhttps://blogs.cisco.com/security/cve-2018-0296


¡¾ÍþвÇ鱨¡¿Ñо¿Ö°Ô±·¢Ã÷αװ³ÉWannaCry¾ÙÐÐڲƭµÄÀ¬»øÓʼþ»î¶¯


Ñо¿Ö°Ô±·¢Ã÷Ò»¸öеÄÀ¬»øÓʼþ»î¶¯£¬£¬£¬£¬¸Ã»î¶¯Î±×°³ÉÀ´×ÔWannaCry-Hack-Team×éÖ¯£¬£¬£¬£¬ÔÚÀ¬»øÓʼþÖгÆÀÕË÷Èí¼þWannaCry¾íÍÁÖØÀ´£¬£¬£¬£¬ÊÕ¼þÈ˵Ä×°±¸ÒѾ­Ñ¬È¾Á˸ÃÀÕË÷Èí¼þ²¢ÇÒÆäÊý¾Ý½«ÓÚ2018Äê6ÔÂ22ÈÕµÄ5:00-10:00PM±»É¾³ý£¬£¬£¬£¬³ý·ÇÆäÖ§¸¶0.1¸ö±ÈÌرҵÄÊê½ð¡£¡£¡£¡£¡£¡£¸Ã»î¶¯ÏÖʵÉÏÖ»ÊÇÒ»¸öȦÌ×£¬£¬£¬£¬ÖµµÃÇìÐÒµÄÊÇÏÖÔÚ»¹Ã»ÓÐÈËÊÜÆ­¡£¡£¡£¡£¡£¡£


Ô­ÎÄÁ´½Ó£ºhttps://www.bleepingcomputer.com/news/security/blackmail-campaign-pretending-to-be-wannacry-is-really-just-wannaspam/


¡¾ÍþвÇ鱨¡¿Ñо¿Ö°Ô±³ÆʹÓÃYooseeÖÎÀí³ÌÐòµÄ¶à¿îÍøÂçÉãÏñÍ·Ò×±»ºÚ¿Í½ÓÊÜ


Çå¾²Ñо¿ÊµÑéÊÒSRLabs³Æ¶à¸öÆ·ÅƵÄÍøÂçÉãÏñÍ·¡¢Çå¾²ÉãÏñ»ú¡¢³èÎïºÍÓ¤¶ù¼àÊÓÆ÷ʹÓÃÁ˲»Çå¾²µÄÔÆ¿ØÖÆϵͳ£¬£¬£¬£¬¹¥»÷Õß¿Éͨ¹ýÖ´ÐÐɨÃè¡¢ÐÞ¸Ä×°±¸ID²ÎÊýÒÔ¼°Ê¹ÓÃĬÈÏÃÜÂëÀ´½ÓÊÜ×°±¸²¢»ñÈ¡ÆäÊÓƵÁ÷¡£¡£¡£¡£¡£¡£SRLabs³ÆÕâЩװ±¸¶¼ÊÇÒ»¼ÒÉîÛÚ¹«Ë¾GwelltimesµÄÌùÅƲúÆ·£¬£¬£¬£¬ÕâЩ²úƷͨ¹ýYoosee app¾ÙÐÐÖÎÀí£¬£¬£¬£¬¸ÃÓ¦ÓÃÔÚGoogle PlayÉϵÄÏÂÔØ´ÎÊýÁè¼Ý100Íò´Î¡£¡£¡£¡£¡£¡£

Ô­ÎÄÁ´½Ó£ºhttps://www.bleepingcomputer.com/news/security/someone-is-taking-over-insecure-cameras-and-spying-on-device-owners/


¡¾ÍþвÇ鱨¡¿Ñо¿Ö°Ô±ÖÒÑÔ³ÆʹÓÃTLSÈÏÖ¤ÍøÕ¾µÄNetflix´¹ÂڻһֱÔöÌí


SANSÊÖÒÕÑо¿ÔºÔº³¤Johannes Ullrich³ÆʹÓÃTLSÈÏÖ¤ÍøÕ¾µÄNetflix´¹ÂڻһֱÔöÌí¡£¡£¡£¡£¡£¡£¹¥»÷ÕßÊ×ÏÈÈëÇÖWordPress»òDrupalµÈCMS¹¹½¨µÄÍøÕ¾£¬£¬£¬£¬È»ºó½¨ÉèNetflix´¹ÂÚÍøÕ¾²¢»ñÈ¡ÓëNetflixÃû³ÆÏà¹ØµÄTLSÖ¤Ê飬£¬£¬£¬Èçnetflix.domain.com»ònetflix.login.domain.com£¬£¬£¬£¬ÕâʹÆä¿´ÆðÀ´Ô½·¢¿ÉÐÅ¡£¡£¡£¡£¡£¡£ËäÈ»NetflixÕË»§¼ÛÖµ²¢²»¸ß£¬£¬£¬£¬µ«ÕâÖÖ¹¥»÷Ò×ÓÚʵÏÖ×Ô¶¯»¯ÇÒÄÑÒÔÈÃÊܺ¦Õß·¢Ã÷¡£¡£¡£¡£¡£¡£


Ô­ÎÄÁ´½Ó£ºhttps://threatpost.com/new-phishing-scam-reels-in-netflix-users-to-tls-certified-sites/132976/


¡¾ÍþвÇ鱨¡¿Ñо¿Ö°Ô±·¢Ã÷ROKU TVºÍSONOSÒôÏì×°±¸Ò×ÊÜDNSÖØа󶨹¥»÷


Ñо¿Ö°Ô±Brannon Dorsey·¢Ã÷Roku TVºÍSonosÒôÏì×°±¸Ò×ÊÜDNSÖØа󶨹¥»÷£¬£¬£¬£¬RokuÖеÄÎó²î£¨CVE-2018-11314£©Ê¹µÃ¹¥»÷Õß¿Éͨ¹ýÍâµØÍⲿ¿ØÖÆAPI»áʶȤ¶¥ºÐÁ÷ýÌå×°±¸µÄ»ù±¾¹¦Ð§£¬£¬£¬£¬°üÀ¨Æô¶¯Ó¦Óá¢ËÑË÷ÄÚÈݺͲ¥·Å¡£¡£¡£¡£¡£¡£SonosÖеÄÎó²î£¨CVE-2018-11316£©Ê¹µÃ¹¥»÷Õß¿Éͨ¹ýÆäUPnP webЧÀÍÆ÷ÔÚ×°±¸ÉÏÔËÐÐUnix shellÏÂÁî¡£¡£¡£¡£¡£¡£

Ô­ÎÄÁ´½Ó£ºhttps://threatpost.com/roku-tv-sonos-speaker-devices-open-to-takeover/133005/


¡¾Îó²î²¹¶¡¡¿Ñо¿Ö°Ô±³ÆWebAssemblyÖеÄÐÂÄÚÈÝ¿ÉÄܵ¼ÖÂä¯ÀÀÆ÷MeltdownºÍSpecter²¹¶¡Ê§Ð§


ForcepointÇå¾²Ñо¿Ö°Ô±John Bergbom³ÆWebAssembly±ê×¼Öм´½«ÔöÌíµÄÄÚÈÝ¿ÉÄܵ¼ÖÂÕë¶ÔMeltdownºÍSpecterµÄä¯ÀÀÆ÷²¹¶¡Ê§Ð§¡£¡£¡£¡£¡£¡£WebAssembly±ê×¼ÓÃÓÚÌá¸ßJavaScript´úÂëµÄËÙÂʺÍÐÔÄÜ£¬£¬£¬£¬ÏÖÔÚÖ§³ÖËùÓеÄÖ÷Á÷ä¯ÀÀÆ÷£¬£¬£¬£¬°üÀ¨Chrome¡¢Edge¡¢FirefoxºÍSafari¡£¡£¡£¡£¡£¡£Ñо¿Ö°Ô±³ÆWebAssemblyÖеÄÐÂÄÚÈÝ£¨¶Ô¹²ÏíÄÚ´æµÄÏ̵߳ÄÖ§³Ö£©¿ÉÈƹýä¯ÀÀÆ÷µÄÏà¹Ø²¹¶¡¡£¡£¡£¡£¡£¡£


Ô­ÎÄÁ´½Ó£ºhttps://www.bleepingcomputer.com/news/security/changes-in-webassembly-could-render-meltdown-and-spectre-browser-patches-useless/