6月7日每日安全热点 - 拜登敦促俄罗斯停止窝藏勒索团伙

2021-06-07 09:30:35 360安全客安全资讯 22375 4

漏洞 Vulnerability

CVE-2021-31181: 微软 SharePoint远程代码执行漏洞

https://www.zerodayinitiative.com/blog/2021/6/1/cve-2021-31181-microsoft-sharepoint-webpart-interpretation-conflict-remote-code-execution-vulnerability#0Day

CVE-2021-3560: polkit 本地权限提升漏洞

https://access.redhat.com/errata/RHSA-2021:2236

安全事件 Security Incident

Kimsuky APT组织分发伪装成KISA的假安全应用程序

https://cybleinc.com/2021/06/03/kimsuky-apt-group-distributes-fake-security-app-disguised-as-kisa-security-program/

俄罗斯组织APT28用来攻击军事和政府机构的新型 SkinnyBoy 恶意软件

https://cluster25.io/wp-content/uploads/2021/05/2021-05_FancyBear.pdf

2020 年 SECTORD GROUP 的威胁情况

https://redalert.nshc.net/2021/06/03/sectord-groups-threat-landscape-in-2020/

拜登敦促俄罗斯停止窝藏勒索团伙

https://www.scmagazine.com/home/security-news/ransomware/post-colonial-and-jbs-biden-presses-russia-to-stop-harboring-ransomware-gangs/

FBI将JBS勒索软件攻击归咎于REvil

https://www.zdnet.com/article/fbi-attributes-jbs-ransomware-attack-to-revil/

（完）