报告编号：B6-2021-062499

报告来源：360CERT

报告作者：360CERT

更新日期：2021-06-24

1 Vulnerability|漏洞

CVE-2021-3044: Cortex XSOAR未认证REST API使用漏洞

https://cert.360.cn/warning/detail?id=ad502701b807125563b6eb6d5f721f1a

CVE-2021-21998: VMware Carbon Black App Control身份验证绕过漏洞

https://cert.360.cn/warning/detail?id=a17fa8a96e0ac3f3197229cb7c33a9f5

2 Security Incident|安全事件

新型勒索软件DarkRadiation利用SSH蠕虫说对Linux进行攻击

https://thehackernews.com/2021/06/wormable-darkradiation-ransomware.html

Kimsuky APT组织对韩国国防安全相关部门的定向攻击活动分析

https://mp.weixin.qq.com/s/SLocYak45PoOwLtMCn0PFg

数以百万计的医学图像，患者数据仍通过 PACS 漏洞泄露

https://www.scmagazine.com/featured/millions-of-medical-images-patient-data-remain-exposed-via-pacs-flaws/

恶意 PyPI 包劫持开发设备以挖掘加密货币

https://www.bleepingcomputer.com/news/security/malicious-pypi-packages-hijack-dev-devices-to-mine-cryptocurrency/

勒索软件攻击破坏了生育患者的记录

https://www.databreachtoday.com/ransomware-attack-compromises-fertility-patients-records-a-16916

50% 的错误配置容器在一小时内就会被僵尸网络攻击

https://www.scmagazine.com/data-leakage-prevention-dlp/50-of-misconfigured-containers-hit-by-botnets-in-under-an-hour/