Ñо¿Ö°Ô±ÑÝʾÇÔÈ¡AMDºÍIntel CPUÊý¾ÝµÄSLAM¹¥»÷

Ðû²¼Ê±¼ä 2023-12-08
1¡¢Ñо¿Ö°Ô±ÑÝʾÇÔÈ¡AMDºÍIntel CPUÊý¾ÝµÄSLAM¹¥»÷


¾ÝýÌå12ÔÂ6ÈÕ±¨µÀ£¬£¬£¬£¬Ñо¿Ö°Ô±¿ª·¢ÁËÒ»ÖÖÃûΪSLAMµÄÐÂÐͲàͨµÀ¹¥»÷£¬£¬£¬£¬Ê¹ÓÃIntel¡¢AMDºÍArm¼´½«ÍƳöµÄÓÃÓÚÌá¸ßCPUÇå¾²ÐÔµÄÓ²¼þ¹¦Ð§£¬£¬£¬£¬´ÓÄÚºËÄÚ´æÖÐÇÔÈ¡rootÃÜÂë¡£¡£¡£¡£¡£¡£¡£SLAMÊÇÒ»ÖÖ˲ִ̬Ðй¥»÷£¬£¬£¬£¬ËüʹÓÃÁËÔÊÐíÈí¼þʹÓÃ64λÏßÐԵصãÖеÄδ·­ÒëµØµãλÀ´´æ´¢ÔªÊý¾ÝµÄÄڴ湦Ч¡£¡£¡£¡£¡£¡£¡£CPU¹©Ó¦ÉÌÒÔ²î±ðµÄ·½·¨ÊµÏÖÕâÒ»µã£¬£¬£¬£¬Intel½«Æä³ÆÎªLAM£¬£¬£¬£¬AMD³ÆÎªUAI£¬£¬£¬£¬¶øArm³ÆÎªTBI¡£¡£¡£¡£¡£¡£¡£Ñо¿Ö°Ô±³Æ£¬£¬£¬£¬SLAMÖ÷ÒªÓ°ÏìÁËÖª×ãÌØ¶¨±ê×¼µÄδÀ´Ð¾Æ¬£¬£¬£¬£¬ËäÈ»ÏȽøµÄÓ²¼þ¹¦Ð§Ìá¸ßÁËÄÚ´æÇå¾²ÐÔºÍÖÎÀí£¬£¬£¬£¬µ«Ò²ÒýÈëÁË¿ÉʹÓõÄ΢¼Ü¹¹¾ºÕùÌõ¼þ¡£¡£¡£¡£¡£¡£¡£


https://www.bleepingcomputer.com/news/security/new-slam-attack-steals-sensitive-data-from-amd-future-intel-cpus/


2¡¢ÈÕ²ú´óÑóÖÞ·Ö¹«Ë¾Ôâµ½¹¥»÷Êý¾Ý¿ÉÄÜй¶±£´æÕ©Æ­Î£º¦


ýÌå12ÔÂ7Èճƣ¬£¬£¬£¬ÈÕ±¾Æû³µÖÆÔìÉÌÈÕ²úÕýÔÚÊÓ²ìÕë¶ÔÆä´óÑóÖÞ·Ö¹«Ë¾µÄ¹¥»÷»î¶¯¡£¡£¡£¡£¡£¡£¡£ÈÕ²ú´óÑóÖÞ¹«Ë¾Ö÷ÒªÈÏÕæ°Ä´óÀûÑǺÍÐÂÎ÷À¼µÄ·ÖÏú¡¢ÓªÏú¡¢ÏúÊÛºÍЧÀÍ¡£¡£¡£¡£¡£¡£¡£¸Ã¹«Ë¾Ðû²¼ÉùÃ÷¼û¸æ°Ä´óÀûÑǺÍÐÂÎ÷À¼ÈÕ²ú¹«Ë¾ºÍ½ðÈÚЧÀ͹«Ë¾µÄϵͳÔâµ½ÁËÒ»ÆðÍøÂçÊÂÎñ£¬£¬£¬£¬ÏÖÔÚÕýÔÚÈ·¶¨¹¥»÷µÄÓ°Ïì¡£¡£¡£¡£¡£¡£¡£Ö»¹Ü¸ÃÍøÕ¾µÄ¹¦Ð§ËƺõδÊÜÓ°Ï죬£¬£¬£¬µ«ÈÕ²úÌåÏÖÕýÔÚÆð¾¢»Ö¸´ÊÜÓ°Ïìϵͳ¡£¡£¡£¡£¡£¡£¡£Ð¡ÎÒ˽¼ÒÐÅÏ¢¿ÉÄÜй¶£¬£¬£¬£¬ÈÕ²ú¹«Ë¾ÌáÐѿͻ§¶ÔÆäÕË»§¼á³ÖСÐÄ£¬£¬£¬£¬×¢ÖØÈκÎÒì³£»£»£»£»òÕ©Æ­»î¶¯¡£¡£¡£¡£¡£¡£¡£


https://securityaffairs.com/155360/security/nissan-oceania-suffers-cyberattack.html


3¡¢ÃÀ¹úˮʦ³Ð°üÉÌAustal USA±»Hunters International¹¥»÷


¾Ý12ÔÂ6ÈÕ±¨µÀ£¬£¬£¬£¬ÃÀ¹úÔì´¬¹«Ë¾Austal USAÔâµ½Hunters InternationalµÄ¹¥»÷¡£¡£¡£¡£¡£¡£¡£Austal USAÊÇÃÀ¹ú¹ú·À²¿ºÍÁìÍÁÇå¾²²¿µÄ³Ð°üÉÌ£¬£¬£¬£¬ËûÌåÏÖÒÑѸËÙ»º½â¸ÃÊÂÎñ£¬£¬£¬£¬Î´¶ÔÔËÓªÔì³ÉÓ°Ï죬£¬£¬£¬¹¥»÷ÕßҲûÓлá¼û»ò»ñÈ¡ÈκÎСÎÒ˽¼Ò»òÉñÃØÐÅÏ¢¡£¡£¡£¡£¡£¡£¡£Hunters InternationalÉù³Æ¶Ô´Ë´Î¹¥»÷ÈÏÕæ£¬£¬£¬£¬²¢¹ûÕæÁËһЩÊý¾Ý×÷Ϊ֤¾Ý£¬£¬£¬£¬»¹Íþв½«ÔÚδÀ´¼¸ÌìÐû²¼¸ü´ó¶¼¾Ý£¬£¬£¬£¬°üÀ¨ºÏ¹æÎļþ¡¢ÕÐÆ¸ÐÅÏ¢¡¢²ÆÎñÏêϸÐÅÏ¢¡¢ÈÏÖ¤ºÍ¹¤³ÌÊý¾Ý¡£¡£¡£¡£¡£¡£¡£


https://www.bleepingcomputer.com/news/security/navy-contractor-austal-usa-confirms-cyberattack-after-data-leak/


4¡¢Î¢ÈíÅû¶¹ØÓÚStar Blizzard×îÐÂTTPµÄÏêϸÐÅÏ¢


΢ÈíÔÚ12ÔÂ7ÈÕÅû¶Á˹ØÓÚ¶íÂÞ˹ÍÅ»ïStar BlizzardµÄ×îÐÂTTP¡£¡£¡£¡£¡£¡£¡£×Ô2022ÄêÒÔÀ´£¬£¬£¬£¬Star BlizzardË¢ÐÂÁ˼ì²âÈÆ¹ý¹¦Ð§£¬£¬£¬£¬ÈÔȻרעÓÚµç×ÓÓʼþƾ֤й¶¡£¡£¡£¡£¡£¡£¡£Î¢ÈíÈ·ÈÏÁ˸ÃÍÅ»ïµÄ5ÖÖÐÂÈÆ¹ýÊÖÒÕ£¬£¬£¬£¬°üÀ¨Ê¹ÓÃЧÀÍÆ÷¶Ë½ÅÔ­À´±ÜÃâ×Ô¶¯É¨Ã衢ʹÓÃÓʼþÓªÏúƽ̨ЧÀÍÒþ²ØÕæÊµµÄ·¢¼þÈ˵ص㡢ʹÓÃDNSÌṩÉÌÀ´Òþ²ØVPS»ù´¡ÉèÊ©µÄIP¡¢Ê¹ÓÃÓÐÃÜÂë±£»£»£»£»¤µÄPDFÓÕ¶ü»òÍйÜPDFÓÕ¶üµÄ»ùÓÚÔÆµÄÎļþ¹²ÏíÆ½Ì¨µÄÁ´½ÓÒÔ¼°Îª¼ÓÈëÕß×¢²áµÄÓòתÏòÔ½·¢Ëæ»úµÄÓòÌìÉúËã·¨(DGA)¡£¡£¡£¡£¡£¡£¡£


https://www.microsoft.com/en-us/security/blog/2023/12/07/star-blizzard-increases-sophistication-and-evasion-in-ongoing-attacks/


5¡¢Group-IB·¢Ã÷Õë¶ÔÌ©¹úµçÐŹ«Ë¾µÄLinuxľÂíKrasue


12ÔÂ7ÈÕ£¬£¬£¬£¬Group-IB³ÆÆä·¢Ã÷ÁËÕë¶ÔµçÐŹ«Ë¾LinuxϵͳµÄľÂíKrasue£¬£¬£¬£¬×Ô2021ÄêÒÔÀ´Ò»Ö±Ã»Óб»·¢Ã÷¡£¡£¡£¡£¡£¡£¡£KrasueµÄ¶þ½øÖÆÎļþ°üÀ¨Ò»¸örootkitµÄ7¸ö±äÖÖ£¬£¬£¬£¬¸ÃrootkitÖ§³Ö¶à¸öLinuxÄں˰汾£¬£¬£¬£¬²¢»ùÓÚ3¸ö¿ªÔ´ÏîÄ¿µÄ´úÂë¡£¡£¡£¡£¡£¡£¡£Ñо¿Ö°Ô±ÌåÏÖ£¬£¬£¬£¬¸Ã¶ñÒâÈí¼þµÄÖ÷Òª¹¦Ð§ÊÇά³Ö¶ÔÖ÷»úµÄ»á¼û£¬£¬£¬£¬Õâ¿ÉÄÜÅú×¢ËüÊÇͨ¹ý½©Ê¬ÍøÂç°²ÅŵÄ£¬£¬£¬£¬»òÕßÓɳõʼ»á¼ûÊðÀí³öÊÛ¸ø¹¥»÷Õß¡£¡£¡£¡£¡£¡£¡£ÏÖÔÚ£¬£¬£¬£¬KrasueËÆºõ½öÕë¶ÔÌ©¹úµÄµçÐŹ«Ë¾¡£¡£¡£¡£¡£¡£¡£


https://www.group-ib.com/blog/krasue-rat/


6¡¢ZeroFoxÐû²¼½ü7¸ö¼¾¶ÈLockBit¹¥»÷»î¶¯µÄÆÊÎö±¨¸æ


12ÔÂ6ÈÕýÌ峯£¬£¬£¬£¬ZeroFoxÐû²¼Á˹ØÓÚ2022Äê1ÔÂÖÁ2023Äê9ÔµÄ7¸ö¼¾¶ÈÖÐLockBit¹¥»÷»î¶¯µÄÆÊÎö±¨¸æ¡£¡£¡£¡£¡£¡£¡£ÔÚÕâ¶Îʱ¼ä£¬£¬£¬£¬È«ÇòÁè¼ÝËÄ·ÖÖ®Ò»µÄÀÕË÷Èí¼þºÍÊý×ÖÀÕË÷£¨R&DE£©¹¥»÷ʹÓÃÁËLockBit£¬£¬£¬£¬Å·Ö޺ͱ±ÃÀ»®·ÖÓÐ30%ºÍ25%µÄR&DE¹¥»÷ʹÓÃLockBit¡£¡£¡£¡£¡£¡£¡£Õë¶Ô±±ÃÀµÄLockBit¹¥»÷Õë¶Ô×î¶àµÄÐÐÒµÊÇÖÆÔì¡¢ÐÞ½¨¡¢ÁãÊÛ¡¢Ö´·¨ºÍ×ÉѯÒÔ¼°Ò½ÁƱ£½¡¡£¡£¡£¡£¡£¡£¡£LockBitËùÕ¼µÄ±ÈÀý³ÊϽµÇ÷ÊÆ£¬£¬£¬£¬Õâ¿ÉÄÜÊÇÓÉÓÚR&DEÈÕÒæ¶àÑù»¯£¬£¬£¬£¬RaaS²úÆ·½µµÍÁ˹¥»÷ÕߵĽøÈëÃż÷¡£¡£¡£¡£¡£¡£¡£


https://www.zerofox.com/resources/lockbit-targeting-ransomware-digital-extortion/