4月23日每日安全热点 - Qlocker勒索软件攻击使用7zip加密QNAP设备

360安全客 安全资讯 62103 4

漏洞 Vulnerability
Homebrew cask 恶意软件包投毒威胁
https://cert.360.cn/warning/detail?id=69850f2a502b79da4a8653acfe2aaa2d
WebSphere Application Server XML外部实体注入漏洞通告
https://cert.360.cn/warning/detail?id=3d7516824b8e88a07d1a8c2999c12dd1
安全事件 Security Incident
Donot Team APT Group Is Back To Using Old Malicious Patterns
https://cybleinc.com/2021/04/21/donot-team-apt-group-is-back-to-using-old-malicious-patterns/
Iran-Linked Threat Actor The MABNA Institute’s Operations in 2020
https://www.recordedfuture.com/iran-threat-actor-mabna-2020-operations/
Taking Action Against Hackers in Palestine
https://about.fb.com/news/2021/04/taking-action-against-hackers-in-palestine/
Donot针对移动端的攻击
https://isarc.tachyonlab.com/3919
Qlocker勒索软件攻击使用7zip加密QNAP设备
https://www.bleepingcomputer.com/news/security/massive-qlocker-ransomware-attack-uses-7zip-to-encrypt-qnap-devices/
假冒微软商店,Spotify网站传播窃取信息的恶意软件
https://www.bleepingcomputer.com/news/security/fake-microsoft-store-spotify-sites-spread-info-stealing-malware/
(完)