安全快讯(2021.03.27~04.02)

漏洞通告

  1. Google安全更新,修复Chrome中的沙箱逃逸等8个漏洞

    https://securityaffairs.co/wordpress/116165/security/chrome-sandbox-escape.html

  2. npm库netmask组件存在漏洞,可影响数万个应用程序

    https://sick.codes/universal-netmask-npm-package-used-by-270000-projects-vulnerable-to-octal-input-data-server-side-request-forgery-remote-file-inclusion-local-file-inclusion-and-more-cve-2021-28918/

  3. Gitlab 多处高危漏洞,任意文件读取漏洞

    影响版本:Gitlab CE/EE < 13.8.7、Gitlab CE/EE < 13.9.5、Gitlab CE/EE < 13.10.1

    升级Gitlab至安全版本。https://about.gitlab.com/releases/2021/03/31/security-release-gitlab-13-10-1-released/

  4. VMware vRealize Operations Manager SSRF与文件写入漏洞

    影响版本:vRealize Operations Manager 8.3.0、vRealize Operations Manager 8.2.0、vRealize Operations Manager 8.1.1、vRealize Operations Manager 8.1.0、vRealize Operations Manager 8.0.1、vRealize Operations Manager 8.0.0、vRealize Operations Manager 7.5.0

    根据 vRealize Operations Manager 版本下载并更新合适的补丁。在安装补丁前建议做好相应备份。补丁下载地址请见:https://www.vmware.com/security/advisories/VMSA-2021-0004.html

  5. Apache Druid远程代码执行漏洞(CVE-2021-26919)

    影响范围:Apache Druid < 0.20.2

    请参考以下链接尽快升级至安全版本(Apache Druid 0.20.2):https://github.com/apache/druid/releases/tag/druid-0.20.2

  6. OpenSSL修复了两个高危漏洞(CVE-2021-3449/3450)

    两个漏洞均不影响 OpenSSL 1.0.2,且均在 OpenSSL 1.1.1k 中修复.

    https://www.openssl.org/news/secadv/20210325.txt

恶意代码

  1. 印度ECU Worldwide感染Mount Locker,2TB数据泄露:

    https://www.freightwaves.com/news/hackers-threaten-shipping-firm-ecu-worldwide-with-data-leak

  2. 黑客组织使用Hades勒索软件针对运输和物流组织

    https://www.accenture.com/us-en/blogs/cyber-defense/unknown-threat-group-using-hades-ransomware

  3. 伪装成“系统更新”的新型高级Android恶意软件通过第三方商店分发

    https://blog.zimperium.com/new-advanced-android-malware-posing-as-system-update/

  4. 未知黑客组织使用Hades勒索软件对美国大型组织进行的攻击

    https://www.accenture.com/us-en/blogs/cyber-defense/unknown-threat-group-using-hades-ransomware

威胁情报

  1. 意大利Boggi Milano遭到Ragnarok攻击,40GB数据被窃

    https://www.bloomberg.com/news/articles/2021-03-31/hackers-target-italian-menswear-boggi-milano-with-ransomware

  2. PHP官方Git存储库遭到供应链攻击,代码库已被篡改

    https://news-web.php.net/php.internals/113838

    https://mp.weixin.qq.com/s/p9ckSXp7gYNCtjRQKD7Qvg

  3. MobiKwik遭遇重大泄密事件,350万用户的KYC数据被曝光

    https://thehackernews.com/2021/03/mobikwik-suffers-major-breach-kyc-data.html

  4. Ovarro TBox RTU的缺陷可能会使工业系统遭受远程攻击

    https://thehackernews.com/2021/03/flaws-in-ovarro-tbox-rtus-could-open.html

  5. 外汇交易平台 FBS 服务器存在漏洞,泄露 160 亿条记录

    https://www.wizcase.com/blog/fbs-leak-research/

其他资讯

  1. 被3·15晚会曝光发虚假广告,UC浏览器代理商被罚15.3万元

    https://www.cnbeta.com/articles/tech/1109455.htm

  2. PayPal宣布可以使用加密货币结账

    https://www.helpnetsecurity.com/2021/03/30/paypal-checkout-with-crypto/

  3. Google从Android设备上收集的遥测数据二十倍于苹果

    https://www.solidot.org/story?sid=67360

  4. Google 正在推动建立 Android Ready SE 联盟,用于 SE 安全芯片标准的研发

    https://feedproxy.google.com/~r/GoogleOnlineSecurityBlog/~3/NRJL23LmeKs/announcing-android-ready-se-alliance.html

    【以上信息均来自互联网,若有侵权,留言删除】