报告编号:B6-2021-062499
报告来源:360CERT
报告作者:360CERT
更新日期:2021-06-24
1 Vulnerability|漏洞
CVE-2021-3044: Cortex XSOAR未认证REST API使用漏洞
https://cert.360.cn/warning/detail?id=ad502701b807125563b6eb6d5f721f1a
CVE-2021-21998: VMware Carbon Black App Control身份验证绕过漏洞
https://cert.360.cn/warning/detail?id=a17fa8a96e0ac3f3197229cb7c33a9f5
2 Security Incident|安全事件
新型勒索软件DarkRadiation利用SSH蠕虫说对Linux进行攻击
https://thehackernews.com/2021/06/wormable-darkradiation-ransomware.html
Kimsuky APT组织对韩国国防安全相关部门的定向攻击活动分析
https://mp.weixin.qq.com/s/SLocYak45PoOwLtMCn0PFg
数以百万计的医学图像,患者数据仍通过 PACS 漏洞泄露
https://www.scmagazine.com/featured/millions-of-medical-images-patient-data-remain-exposed-via-pacs-flaws/
恶意 PyPI 包劫持开发设备以挖掘加密货币
https://www.bleepingcomputer.com/news/security/malicious-pypi-packages-hijack-dev-devices-to-mine-cryptocurrency/
勒索软件攻击破坏了生育患者的记录
https://www.databreachtoday.com/ransomware-attack-compromises-fertility-patients-records-a-16916
50% 的错误配置容器在一小时内就会被僵尸网络攻击
https://www.scmagazine.com/data-leakage-prevention-dlp/50-of-misconfigured-containers-hit-by-botnets-in-under-an-hour/