Aqua·¢ÏÖÀûÓÃBitbucketºÍDocker HubµÄÍÚ¿ó»î¶¯ £»ÃÀ¹úNSAºÍDHS½áºÏ°ä²¼ÓйØPDNSµÄÖ¸ÄÏ

°ä²¼¹¦·ò 2021-03-07

¡¾Íþвµý±¨¡¿


Aqua·¢ÏÖÀûÓÃBitbucketºÍDocker HubµÄÍÚ¿ó»î¶¯

https://www.hackread.com/threat-actors-hijack-bitbucket-docker-hub-monero-mining/


Õë¶ÔD-LinkºÍIoTÉ豸µÄGafgytбäÖÖÒÀÀµTorͨѶ

https://threatpost.com/d-link-iot-tor-gafgyt-variant/164529/


FINRAÖÒ¸æÀûÓÃÉó¼Æ¾¯±¨Õë¶Ô¾­¼Í¹«Ë¾µÄ´¹µö¹¥»÷

https://www.bleepingcomputer.com/news/security/ongoing-phishing-attacks-target-us-brokers-with-fake-finra-audits/


¡¾¹¥»÷ÊÂÎñ¡¿


ÃÀ¹úÁª¹ú»ú¹¹µÄExchange·þÎñÆ÷Ôâµ½0day¹¥»÷

https://www.zdnet.com/article/microsoft-exchange-zero-day-vulnerabilities-exploited-in-attacks-against-us-local-govts-university/


¡¾°²È«Ö¸ÄÏ¡¿


ÃÀ¹úNSAºÍDHS½áºÏ°ä²¼ÓйØPDNSµÄÖ¸ÄÏ

https://www.securityweek.com/nsa-dhs-issue-guidance-protective-dns