2月18日每日安全热点 - 起亚确认遭DoppelPaymer勒索软件攻击赎金高达两千万

Inspired by 360CERT

漏洞 Vulnerability

QNap修复NAS中高危漏洞

https://www.bleepingcomputer.com/news/security/qnap-patches-critical-vulnerability-in-surveillance-station-nas-app/

 

IE 0day获微补丁更新

https://blog.0patch.com/2021/02/remotely-exploitable-0day-in-internet.html

 

安全研究 Security Research

API设计与逻辑漏洞

https://www.synacktiv.com/publications/gpgme-used-confusion-its-super-effective.html

 

安全资讯 Security Information

荷兰警方在黑客论坛发布拒绝犯罪宣言

https://www.bleepingcomputer.com/news/security/dutch-police-post-say-no-to-cybercrime-warnings-on-hacker-forums/

 

安全报告 Security Report

安全人员统计去年黑客事件引发的医疗行业事件倍增

https://www.bleepingcomputer.com/news/security/rising-healthcare-breaches-driven-by-hacking-and-unsecured-servers/

 

Sandworm利用Centreon进行网络攻击

https://www.bleepingcomputer.com/news/security/russian-sandworm-hackers-only-hit-orgs-with-old-centreon-software/

 

安全事件 Security Incident

起亚确认遭DoppelPaymer勒索软件攻击赎金高达两千万

https://www.bleepingcomputer.com/news/security/kia-motors-america-suffers-ransomware-attack-20-million-ransom/

 

美司法部指控三名朝鲜公民窃取十亿美元虚拟货币

https://www.bleepingcomputer.com/news/security/us-indicts-north-korean-hackers-for-stealing-13-billion/

 

安全客 Security Geek

物联网协议——MQTT与ROS

https://www.anquanke.com/post/id/231329

(完)