ÃÀ¹úÁª¹ú˾·¨»ú¹¹È·ÈÏÍøÂç¹¥»÷ £¬Ãô¸Ð°¸¼þÎļþ°²È«ÔâÍþв

°ä²¼¹¦·ò 2025-08-12

1. ÃÀ¹úÁª¹ú˾·¨»ú¹¹È·ÈÏÍøÂç¹¥»÷ £¬Ãô¸Ð°¸¼þÎļþ°²È«ÔâÍþв


8ÔÂ8ÈÕ £¬ÃÀ¹úÁª¹ú˾·¨»ú¹¹½üÈÕ֤ʵ £¬ÆäÓÃÓÚÖÎÀí»úÃÜ·¨Í¥ÎļþµÄµç×Ó°¸¼þÖÎÀíϵͳÕýÔâ·ê¸´ÔÓÇÒ³ÖÐøµÄÍøÂç¹¥»÷ £¬²¢ÒѲÉÈ¡¶î±í°²È«´ëÊ©¼ÓÇ¿·À»¤¡£Õâ´ÎÊܹ¥»÷µÄϵͳÔ̺¬ÁªÍõ·¨ÔºÎļþÖÎÀíµÄÖ÷ÌâÆ½Ì¨CM/ECF£¨°¸¼þÖÎÀí/µç×Ó°¸¼þµµ°¸ÏµÍ³£©ºÍPACER£¨¹«¹²½Ó¼û·¨Ôºµç×Ӽͼϵͳ£© £¬ºóÕß×÷ΪÁª¹ú˾·¨Îļþ¹«¿ªÓë´æ´¢µÄÖ§Öù £¬Æä°²È«ÐÔÖ±½Ó¹Øºõ´óÁ¿ËßËϵ±ÊÂÈ˵ÄÃô¸ÐÐÅÏ¢¡£Ö»¹Ü˾·¨»ú¹¹ÉêÃ÷δֱ½ÓÈ·ÈÏPolitico±¨Â·ÖÐÌáµ½µÄ¡°»úÃܶúÄ¿Éí·Ýй¶¡±µÈ¾ßÌåÖ¸¿Ø £¬µ«ÆäÔÚ²¼¸æÖÐÇ¿µ÷ £¬²¿ÃÅÃÜ·âÎļþÒòÔ̺¬Ãô¸ÐÐÅÏ¢ £¬ÏÖÒÑͨ¹ý¸üÑϸñµÄ½Ó¼û½ÚÔì¼¼Êõ¼ÓÇ¿±£»¤ £¬Ö¼ÔÚ×è¶ÏºÚ¿Í¹¥»÷õè¾¶¡£Ë¾·¨²¿ÃÅͬʱ°µÊ¾ £¬ÕýÓÅÏÅ×ë¸÷¼¶·¨ÔººÏ×÷ £¬ÒÔ¼õÇá¹¥»÷¶ÔËßËϵ±ÊÂÈË¿ÉÄÜÔì³ÉµÄÓ°Ïì £¬²¢³ÖÐøÉý¼¶ÏµÍ³°²È«ÐÔÒÔ·À±¸Î´À´Íþв¡£Õâ´ÎÊÂÎñÔ´ÓÚ2025Äê7Ô³õ £¬Ë¾·¨»ú¹¹Í¨¹ýÄäÃûÐÂÎÅÔ´»ñϤ¹¥»÷ÑϳÁÐÔºó £¬ÓÚ7ÔÂ4ÈÕÆô¶¯ÄÚ²¿µ÷²é²¢¼ò±¨ÓйØÇé¿ö £¬µ«Î´Á¢¼´¹«¿ªÉêÃ÷¡£Ö±ÖÁPolitico±¨Â·Åû¶¡°Ãô¸ÐÐÅϢй¶ӰÏì¶àÁª¹úµØÓò¡±ºó £¬Ë¾·¨»ú¹¹²Å°ä²¼²¼¸æ»ØÓ¦ £¬µ«Î´¾ßÌå×¢Ã÷¹¥»÷ÆðÔ´»ò¾ßÌåËðʧÁìÓò¡£


https://www.bleepingcomputer.com/news/security/us-judiciary-confirms-breach-of-court-electronic-records-service/


2. °Í»ù˹̹ʯÓÍÓÐÏÞ¹«Ë¾£¨PPL£©³É¹¦¶ôÔìÀÕË÷Èí¼þ¹¥»÷


8ÔÂ8ÈÕ £¬°Í»ù˹̹ʯÓÍÓÐÏÞ¹«Ë¾£¨PPL£©ÓÚ2025Äê8ÔÂ6ÈÕÔâ·êһ·ÀÕË÷Èí¼þ¹¥»÷ £¬Æä²¿ÃÅIT»ù´¡ÉèÊ©Êܵ½Ó°Ïì £¬µ«¹«Ë¾Í¨¹ý¼±¾çÏìÓ¦ºÍ¶à²ãÍøÂ簲ȫ´ëÊ©³É¹¦½ÚÔìÁËÊÂÎñ £¬Ö÷ÌâÔËӪϵͳ¼°Ãô¸ÐÊý¾ÝδÔâй¶¡£PPLÔÚÏò°Í»ù˹̹֤ȯÂòÂôËù£¨PSX£©Ìá½»µÄ֪ͨÖÐÅû¶ £¬ÊÂÎñ²úÉúºó £¬¹«Ë¾Á¢¼´Æô¶¯ÄÚ²¿ÍøÂ簲ȫºÍ̸ £¬ITÍŶÓÓë±í²¿×¨¼ÒЭͬ²ÉÈ¡¶ôÔì´ëÊ© £¬Ô̺¬ÔÝÍ£²¿ÃŷǹؼüIT·þÎñÒÔÏÞ¶ÈDZÔÚÓ°Ïì £¬È·±£ÏµÍ³ÆëÈ«ÐÔ¡£¹«Ë¾ÉêÃ÷Ç¿µ÷ £¬Æä¶à²ãÍøÂ簲ȫ¿ò¼ÜÓÐЧ¸ôÀëÁËÍþв £¬Î´·¢ÏֹؼüÒµÎñÊý¾Ý»òÃô¸ÐÐÅÏ¢±»Ð¹Â¶ £¬Ö÷ÌâÔËӪϵͳά³ÖÕý³£ÔËÐÐ £¬Î´³öÏÖÖжÏ¡£Ö»¹ÜÊÕµ½±í²¿ÈËÔ±µÄÀÕË÷֪ͨ £¬PPLÃ÷È·°µÊ¾Î´ÓëºÚ¿Í³ÉÁ¢ÁªÏµ £¬²¢ÒÑÆ¾¾Ý˾·¨ÒªÇó½«ÊÂÎñÉϱ¨ÖÁÓйط¨Âɼ°¼à¹Ü»ú¹¹ £¬Ä¿Ç°Õý¹²Í¬·¢Õ¹µ÷²é¡£Îª±£ÏÕ½ðÈÚÂòÂô°²È« £¬¹«Ë¾ÔÚɨÃèÆÚ¼äÔÝͣϵͳÂòÂôÖ°ÄÜ £¬¸ÄÓÃÊÖ¶¯·½Ê½ÊµÏÖ¸¶¿îÁ÷³Ì £¬Ô¤·À·çÏÕÀ©É¢¡£


https://www.brecorder.com/news/amp/40376980


3. ³¯ÏʺڿÍ×éÖ¯ScarCruft³õ´Î²¿ÊðÀÕË÷Èí¼þ


8ÔÂ8ÈÕ £¬º«¹ú°²È«¹«Ë¾S2W½üÈÕÅû¶ £¬Ó볯Ïʵ±¾Ö¹ØÁªµÄºÚ¿Í×éÖ¯ScarCruft£¨APT37£©ÔÚ½üÆÚÍøÂç¹¥»÷Öгõ´ÎʹÓÃÁËÐÂÐÍÀÕË÷Èí¼þ £¬±ê־ȡÆäÐж¯Ö¸±ê¿ÉÄÜ´Ó´«Í³¼äµý»î¶¯×ªÏò¾­¼ÃÀûÒæÇý¶¯¡£¸Ã×éÖ¯³Ö¾ÃÒÔº«¹ú¡¢ÈÕ±¾¡¢Ô½ÄϵȹúµÄ¸ß¼ÛÖµÓ×ÎÒ¼°µ±¾Ö»ú¹¹Îª¹¥»÷Ö¸±ê £¬µ«Õâ´ÎÐж¯ÖÐ £¬Æäͨ¹ýÓã²æÊ½´¹µöÓʼþͶµÝº¬¶ñÒâѹËõ°üµÄµö¶üÎļþ £¬³É¹¦ÈëÇÖϵͳ²¢²¿ÊðÁËÃûΪ¡°VCD¡±µÄÀÕË÷Èí¼þ¡£VCDÀÕË÷Èí¼þ»á¶Ô¼ÓÃÜÎļþÔö³¤¡°.vcd¡±À©´óÃû £¬²¢ÌìÉúÓ¢ÎÄÓ뺫ÎÄË«°æ±¾ÀÕË÷֪ͨ £¬ÒªÇóÊܺ¦ÕßÖ§¸¶Êê½ð¡£S2W·ÖÎöÖ¸³ö £¬ÕâÒ»ÐÐΪ°µÊ¾ScarCruft¿ÉÄÜÍØÕ¹ÁËÔ̺¬·ÛËéÐÔ¼°ÀÕË÷Õ½ÊõµÄÔËÓªÖ¸±ê £¬»òÊÔͼͨ¹ý¾­¼Ã¼¿Á©ÎªÊÜÔì²ÃÕþȨ³ï¼¯×ʽð¡£×êÑл¹¼ø±ð³ö¹¥»÷ÖÐʹÓõij¬¹ý9Àà¶ñÒâÈí¼þ £¬Ô̺¬ÐÅÏ¢ÇÔÈ¡¹¤¾ßLightPeek¡¢¿É¼ÔìÒôƵ¼°¼Í¼»÷¼üµÄFadeStealer £¬ÒÔ¼°ÀûÓúϷ¨ÊµÊ±Í¨Ñ¶Æ½Ì¨PubNub½øÐÐÒñ±ÎºÅÁî½ÚÔ죨C2£©Í¨Ñ¶µÄºóÃÅ·¨Ê½NubSpy¡£Í¨¹ý½«¶ñÒâÁ÷Á¿¼Ù×°³ÉÕý³£ÍøÂçͨѶ £¬¹¥»÷ÕßÓÐЧ°µ²ØÁËÐÐ×Ù¡£Õâ´Î¹¥»÷±»¹éÒòÓÚScarCruftÏÂÊôÓ××éChinopuNK £¬¸ÃÓ××éÔø´«²¼Ö§³ÖWindows/Android˫ƽ̨¹¥»÷µÄChinotto¶ñÒâÈí¼þ £¬²¢ÔÚ±¾´ÎÐж¯ÖÐʹÓÃÁËбäÖÖChillyChino¡£


https://therecord.media/scarcruft-north-korea-hackers-add-ransomware


4. ¹È¸è½¨¸´GeminiÈÕÀúÔ¼Çë·ì϶


8ÔÂ10ÈÕ £¬¹È¸è½üÈÕ½¨¸´ÁËÒ»Ïî¸ßΣ·ì϶ £¬¸Ã·ì϶ÔÊÐí¹¥»÷Õßͨ¹ý¾«ÐÄÔì×÷µÄGoogleÈÕÀúÔ¼Çë £¬Ô¶³ÌÊÕÊÜÓû§É豸ÉÏÔËÐеÄGemini´úÀí²¢ÇÔÈ¡Ãô¸ÐÊý¾Ý¡£Õâ´Î¹¥»÷ÎÞÐèÓû§×Ô¶¯µã»÷¶ñÒâÁ´½Ó»òÏÂÔØÎļþ £¬½öÐèÈÕ³£ÓëGemini¸±ÊÖ»¥¶¯¼´¿É´¥·¢ £¬¶ÔÒÀÀµ¸Ã·þÎñµÄÓû§×é³ÉÏÔÖøÍþв¡£Gemini×÷Ϊ¹È¸è¼¯³ÉÔÚAndroid¡¢GoogleÍøÂç·þÎñ¼°WorkspaceÀûÓÃÖеĴóÐÍ˵»°Ä£ÐÍ£¨LLM£©¸±ÊÖ £¬¿É½Ó¼ûGmail¡¢ÈÕÀúºÍGoogle HomeµÈÖ÷ÌâÖ°ÄÜ¡£¹¥»÷Õßͨ¹ý·¢ËÍÔ̺¬Ç¶ÈëʽÌáÐÑ×¢ÈëµÄÈÕÀúÔ¼Çë £¬¿ÉÀûÓÃGeminiµÄ¿ç¹¤¾ßȨÏÞÖ´ÐжñÒâ²Ù×÷¡£ÀýÈç £¬µ±Óû§Ñ¯ÎÊ¡°½ñÈÕÈÕÀúÊÂÎñ¡±Ê± £¬Gemini»á´ÓÈÕÀúÖÐÌáÈ¡ËùÓÐÊÂÎñ £¬Ô̺¬¹¥»÷ÕßÖ²ÈëµÄ¶ñÒâ±êÌâ¡£ÕâЩ°µ²ØÖ¸Áî¿ÉÆÈʹGeminiÇÔÈ¡µç×ÓÓʼþÄÚÈÝ¡¢¸ú×ÙÓû§µØÎ»¡¢Í¨¹ýGoogle Home½ÚÔìÖÇÄܼҾÓÉ豸¡¢ÔÚAndroidÉ豸ÉÏ´ò¿ªÀûÓ÷¨Ê½ £¬ÉõÖÁ´¥·¢ZoomÊÓÆµÍ¨»°¡£¹È¸è°²È«ÍŶÓÈ·ÈÏ·ì϶ºóѸËÙ½¨¸´ £¬²¢Ç¿µ÷Æäͨ¹ýºì¶ÓÑÝÁ·ºÍ¿çÐÐÒµºÏ×÷³ÖÐøÇ¿»¯·ÀÓù¡£


https://www.bleepingcomputer.com/news/security/google-calendar-invites-let-researchers-hijack-gemini-to-leak-user-data/


5. ConnexÐÅÓþºÏ×÷ÉçÔâÊý¾Ýй¶ £¬7Íò»áÔ±ÐÅÏ¢±»ÇÔ


8ÔÂ11ÈÕ £¬¿µÄùµÒ¸ñÖÝ×î´óµÄ·ÇͶ»úÐÔÐÅÓþºÏ×÷ÉçÖ®Ò»Connex½üÈÕÅû¶ £¬ÆäϵͳÔÚ2025Äê6Ô³õÔâ·êδ֪¹¥»÷ÕßÈëÇÖ £¬µ¼Ö´óÁ¿»áÔ±Ó×ÎÒ¼°²ÆÕþÐÅϢй¶¡£ÊÂÎñ¹¦·òÏßÏÔʾ £¬¹¥»÷ÕßÓÚ6ÔÂ2ÈÕÖÁ3ÈÕÆÚ¼ä·¸·¨½Ó¼û²¢ÏÂÔØÁ˲¿ÃÅÎļþ £¬ConnexÔÚ6ÔÂ3ÈÕ¼ì²âµ½Òì³£ £¬²¢ÓÚ7ÔÂ27ÈÕÈ·ÈÏÐ¹Â¶Éæ¼°ÐÕÃû¡¢Õ˺š¢½è¼Ç¿¨ÐÅÏ¢¡¢Éç»á°²È«ºÅÂë¼°µ±¾ÖÉí·ÝÖ¤µÈÃô¸ÐÊý¾Ý £¬µ«Î´·¢ÏÖ×ʽð»òÕË»§±»Ö±½ÓÇÔÈ¡µÄÖ¤¾Ý¡£×÷ΪӦ¶Ô´ëÊ© £¬ConnexÒÑͨ¹ýÃÀ¹úÓÊÕþÏòÊÜÓ°Ïì»áÔ±·¢ËÍÊý¾Ýй¶֪ͨ £¬²¢ÔÚ¹ÙÍø°ä²¼Ú¿Æ­¾¯±¨ £¬ÌáÐÑ»áÔ±¾¯ÌèÚ¿Æ­·Ö×Ó¼ÙÒâÆäÔ±¹¤Ö´ÐÐÍøÂç´¹µö¹¥»÷¡£¾¯±¨Ã÷È·Ö¸³ö £¬Connex¾ø²»»áͨ¹ýµç»°»ò¶ÌÐÅË÷Òª»áÔ±µÄPINÂë¡¢ÃÜÂë»òÕ˺Å £¬ºôÓõÊÕµ½¿ÉÒÉÁªÏµÊ±Á¢¼´¹Ò¶Ï²¢²¦´ò¹Ù·½µç»°ºËʵ¡£Ö»¹ÜConnexδÌá¼°Õâ´Îй¶ÊÇ·ñÓëÀÕË÷ÍÅ»ïÖ±½ÓÓйØ £¬µ«Æä°ä²¼µÄÚ¿Æ­Ô¤¾¯°µÊ¾¹¥»÷Õß¿ÉÄÜÀûÓñ»µÁÐÅÏ¢½øÒ»²½Ö´Ðо«×¼´¹µö £¬¼Ó¾ç»áÔ±·çÏÕ¡£


https://www.bleepingcomputer.com/news/security/connex-credit-union-discloses-data-breach-impacting-172-000-people/


6. ³¯ÏʺڿÍ×éÖ¯KimsukyÔⷵºڿͷ´Ôì £¬8.9GB»úÃÜÊý¾Ýй¶


8ÔÂ11ÈÕ £¬½üÈÕ £¬³¯Ïʵ±¾Ö²¼¾°µÄºÚ¿Í×éÖ¯KimsukyÔâ·ê³Á´óÊý¾Ýй¶ÊÂÎñ £¬Á½Ãû×Ô³Æ"Saber"ºÍ"cyb0rg"µÄ·µÂºÚ¿ÍÒÔ·ñ¾öÕþÖβÙŪΪÓÉ £¬½«ÆäÇÔÈ¡µÄ»úÃÜÊý¾Ý¹«¿ªÖÁÍøÂç¡£Õâ´ÎÐж¯ÔÚDEF CON 33ºÚ¿Í´ó»áÆÚ¼äͨ¹ý´«ÆæºÚ¿ÍÔÓÖ¾PhrackµÚ72ÆÚÆØ¹â £¬Òý·¢È«ÇòÍøÂ簲ȫ½ç¹Ø×¢¡£¾ÝÅû¶ £¬Ð¹Â¶µÄ8.9GBÊý¾ÝÔ̺¬Kimsuky×éÖ¯¶à¸öÖ÷Ìâ×ʲú£ºº­¸Çº«¹ú¹ú·À·´µý±¨Ë¾Á£¨dcc.mil.kr£©µÈµ±¾Ö»ú¹¹¡¢Ö÷Á÷ÓÊÏä·þÎñÉÌ£¨naver/daum/kakao£©µÄÍøÂç´¹µöÈÕÖ¾ £¬ÒÔ¼°º«¹ú±í½»²¿µç×ÓÓʼþƽ̨"Kebi"µÄÆëȫԴ´úÂë¡£¼¼ÊõÎĵµÏÔʾ £¬¸Ã×é֯ʹÓö¨Ô컯PHP¹¤¾ß°ü¹¹½¨¾ß±¸¼ì²â¶ã±ÜÖ°ÄܵĴ¹µöÍøÕ¾ £¬²¢½¨Éèʵʱ¸üеĴ¹µö¹¤¾ß°ü¡£ÖµÍ×ÌùÐĵÄÊÇ £¬×ª´¢ÎļþÖл¹Ô̺¬Î´±»VirusTotalÏóÕ÷µÄδ֪¶þ½øÔìÎļþºÍCobalt Strike¼ÓÔØÆ÷µÈ¸ß¼¶¹¥»÷¹¤¾ß¡£°²È«×êÑÐÈËÔ±·¢ÏÖ £¬KimsukyµÄ»ù´¡ÉèÊ©´æÔÚÏÔÖøÌØµã£ºÆä³ÉԱƵÈÔʹÓÃGoogle·­Òë´¦ÖÃÖÐÎÄÃýÎóÐÅÏ¢ £¬½Ó¼ų̂Íå¾üÕþÍøÕ¾ £¬²¢Í¨¹ýPureVPNµÈ·þÎñÉ̲ɰìVPN·þÎñ¡£Bashº¹Çà¼Í¼ÏÔʾ £¬¸Ã×éÖ¯ÔøÍ¨¹ýSSHÏνÓÄÚ²¿ÏµÍ³ £¬²¢¹ØÁª¶à¸ö¿ÉÒÉGitHubÕ˺źͺڿÍÂÛ̳¡£


https://www.bleepingcomputer.com/news/security/north-korean-kimsuky-hackers-exposed-in-alleged-data-breach/