¡¶Î¬ËûÃü¡·ÖðÈÕ°²È«¼òѶ20180625

°ä²¼¹¦·ò 2018-06-25

¡¾°²È«·ì϶¡¿Ë¼¿ÆPSIRTÖÒ¸æÀûÓÃDoS·ì϶£¨CVE-2018-0296£©µÄ¹¥»÷»î¶¯


˼¿ÆPSIRT·¢ÏÖÕë¶ÔÆä·ì϶£¨CVE-2018-0296£©µÄ¹«¿ªµÄ·ì϶ÀûÓà £¬ÏòÓû§ÖÒ¸æDZÔڵݲȫ·çÏÕ¡£¸Ã·ì϶ÓÚ2018Äê6ÔÂ6ÈÕ¹«¿ªÅû¶ £¬¿ÉÔÊÐíδ¾­Éí·ÝÑéÖ¤µÄÔ¶³Ì¹¥»÷Õß´¥·¢¸Ã·ì϶µ¼Ö»ؾø·þÎñ£¨DoS£©»òÐÅϢй¶¡£¸Ã·ì϶ӰÏìCisco ASAÈí¼þºÍCisco FTDÈí¼þ £¬½¨ÒéÓû§Éý¼¶ÖÁ×îеİ汾ÒÔ½¨¸´´ËÎÊÌâ¡£

Ô­ÎÄÁ´½Ó£ºhttps://blogs.cisco.com/security/cve-2018-0296


¡¾Íþвµý±¨¡¿×êÑÐÈËÔ±·¢ÏÖ¼Ù×°³ÉWannaCry½øÐÐڲƭµÄÀ¬»øÓʼþ»î¶¯


×êÑÐÈËÔ±·¢ÏÖÒ»¸öеÄÀ¬»øÓʼþ»î¶¯ £¬¸Ã»î¶¯¼Ù×°³ÉÀ´×ÔWannaCry-Hack-Team×éÖ¯ £¬ÔÚÀ¬»øÓʼþÖгÆÀÕË÷Èí¼þWannaCry¾íÍÁ³ÁÀ´ £¬ÊÕ¼þÈ˵ÄÉ豸ÒѾ­Ï°È¾Á˸ÃÀÕË÷Èí¼þ²¢ÇÒÆäÊý¾Ý½«ÓÚ2018Äê6ÔÂ22ÈÕµÄ5:00-10:00PM±»É¾³ý £¬³ý·ÇÆäÖ§¸¶0.1¸ö±ÈÌرҵÄÊê½ð¡£¸Ã»î¶¯ÏÖʵÉÏÖ»ÊÇÒ»¸öȦÌ× £¬ÖµµÃÇìÐÒµÄÊÇÄ¿Ç°»¹Ã»ÓÐÈËÊÜÆ­¡£


Ô­ÎÄÁ´½Ó£ºhttps://www.bleepingcomputer.com/news/security/blackmail-campaign-pretending-to-be-wannacry-is-really-just-wannaspam/


¡¾Íþвµý±¨¡¿×êÑÐÈËÔ±³ÆʹÓÃYooseeÖÎÀí·¨Ê½µÄ¶à¿îÍøÂçÉãÏñÍ·Ò×±»ºÚ¿ÍÊÕÊÜ


°²È«×êÑг¢ÊÔÊÒSRLabs³Æ¶à¸öÆ·ÅƵÄÍøÂçÉãÏñÍ·¡¢°²È«ÉãÏñ»ú¡¢³èÎïºÍÓ¤¶ù¼à¶½Æ÷ʹÓÃÁ˲»°²È«µÄÔƽÚÔìϵͳ £¬¹¥»÷Õß¿Éͨ¹ýÖ´ÐÐɨÃè¡¢Åú¸ÄÉ豸ID²ÎÊýÒÔ¼°Ê¹ÓÃĬÈÏÃÜÂëÀ´ÊÕÊÜÉ豸²¢»ñÈ¡ÆäÊÓƵÁ÷¡£SRLabs³ÆÕâЩÉ豸¶¼ÊÇÒ»¼ÒÉîÛÚ¹«Ë¾GwelltimesµÄÌùÅƲúÆ· £¬ÕâЩ²úƷͨ¹ýYoosee app½øÐÐÖÎÀí £¬¸ÃÀûÓÃÔÚGoogle PlayÉϵÄÏÂÔØ´ÎÊý³¬¹ý100Íò´Î¡£

Ô­ÎÄÁ´½Ó£ºhttps://www.bleepingcomputer.com/news/security/someone-is-taking-over-insecure-cameras-and-spying-on-device-owners/


¡¾Íþвµý±¨¡¿×êÑÐÈËÔ±ÖÒ¸æ³ÆʹÓÃTLSÈÏÖ¤ÍøÕ¾µÄNetflix´¹µö»î¶¯²»ÐÝÔö³¤


SANS¼¼Êõ×êÑÐÔºÔº³¤Johannes Ullrich³ÆʹÓÃTLSÈÏÖ¤ÍøÕ¾µÄNetflix´¹µö»î¶¯²»ÐÝÔö³¤¡£¹¥»÷ÕßÊ×ÏÈÈëÇÖWordPress»òDrupalµÈCMS¹¹½¨µÄÍøÕ¾ £¬¶øºó´´½¨Netflix´¹µöÍøÕ¾²¢»ñÈ¡ÓëNetflixÃû³ÆÓйصÄTLSÖ¤Êé £¬Èçnetflix.domain.com»ònetflix.login.domain.com £¬ÕâʹÆä¿´ÆðÀ´Ô½·¢¿ÉÐÅ¡£¹ÌÈ»NetflixÕË»§¼ÛÖµ²¢²»¸ß £¬µ«ÕâÖÖ¹¥»÷Ò×ÓÚʵÏÖ×Ô¶¯»¯ÇÒÄÑÒÔÈÃÊܺ¦Õß·¢ÏÖ¡£


Ô­ÎÄÁ´½Ó£ºhttps://threatpost.com/new-phishing-scam-reels-in-netflix-users-to-tls-certified-sites/132976/


¡¾Íþвµý±¨¡¿×êÑÐÈËÔ±·¢ÏÖROKU TVºÍSONOSÒôÏìÉ豸Ò×ÊÜDNS³Áа󶨹¥»÷


×êÑÐÈËÔ±Brannon Dorsey·¢ÏÖRoku TVºÍSonosÒôÏìÉ豸Ò×ÊÜDNS³Áа󶨹¥»÷ £¬RokuÖеķì϶£¨CVE-2018-11314£©Ê¹µÃ¹¥»÷Õß¿Éͨ¹ý±¾µØ±í²¿½ÚÔìAPI½ÓʶȤ¶¥ºÐÁ÷ýÌåÉ豸µÄ¸ù»ùÖ°ÄÜ £¬Ô̺¬Æô¶¯ÀûÓá¢ËÑË÷ÄÚÈݺͲ¥·Å¡£SonosÖеķì϶£¨CVE-2018-11316£©Ê¹µÃ¹¥»÷Õß¿Éͨ¹ýÆäUPnP web·þÎñÆ÷ÔÚÉ豸ÉÏÔËÐÐUnix shellºÅÁî¡£

Ô­ÎÄÁ´½Ó£ºhttps://threatpost.com/roku-tv-sonos-speaker-devices-open-to-takeover/133005/


¡¾·ì϶²¹¶¡¡¿×êÑÐÈËÔ±³ÆWebAssemblyÖеÄÐÂÄÚÈÝ¿ÉÄܵ¼ÖÂä¯ÀÀÆ÷MeltdownºÍSpecter²¹¶¡Ê§Ð§


Forcepoint°²È«×êÑÐÈËÔ±John Bergbom³ÆWebAssembly³ß¶ÈÖм´½«Ôö³¤µÄÄÚÈÝ¿ÉÄܵ¼ÖÂÕë¶ÔMeltdownºÍSpecterµÄä¯ÀÀÆ÷²¹¶¡Ê§Ð§¡£WebAssembly³ß¶ÈÓÃÓÚÌá¸ßJavaScript´úÂëµÄ¿ìÂʺͻúÄÜ £¬Ä¿Ç°Ö§³ÖËùÓеÄÖ÷Á÷ä¯ÀÀÆ÷ £¬Ô̺¬Chrome¡¢Edge¡¢FirefoxºÍSafari¡£×êÑÐÈËÔ±³ÆWebAssemblyÖеÄÐÂÄÚÈÝ£¨¶Ô¹²ÏíÄÚ´æµÄÏ̵߳ÄÖ§³Ö£©¿ÉÈƹýä¯ÀÀÆ÷µÄÓйز¹¶¡¡£


Ô­ÎÄÁ´½Ó£ºhttps://www.bleepingcomputer.com/news/security/changes-in-webassembly-could-render-meltdown-and-spectre-browser-patches-useless/