¹þÂ޵°ٻõÅû¶¹©¸øÁ´Î¥¹æÊÂÎñ £¬Ó°ÏìÏßÉϿͻ§

°ä²¼¹¦·ò 2025-09-30

1. ¹þÂ޵°ٻõÅû¶¹©¸øÁ´Î¥¹æÊÂÎñ £¬Ó°ÏìÏßÉϿͻ§


9ÔÂ28ÈÕ £¬Ó¢¹úÉÝ³ÞÆ·°Ù»õ¹«Ë¾¹þÂ޵°ٻõ½üÈÕÏò¹Ë¿Í·¢³öÖÒ¸æ £¬³ÆÆä²¿ÃÅÔÚÏ߿ͻ§µÄÓ×ÎÒÐÅÏ¢¿ÉÄÜÒòµÚÈý·½¹©¸øÉ̵ÄITϵͳ·ì϶±»µÁ¡£¾Ý¸Ã¹«Ë¾ÉêÃ÷ £¬Ð¹Â¶Êý¾Ý½öÉæ¼°ÐÕÃûºÍÁªÏµ·½Ê½µÈ¸ù»ùÓ×ÎÒ±êʶ·û £¬ÕË»§ÃÜÂë¼°¸¶¿îÐÅϢδÊÜÓ°Ïì¡£¹þÂÞµÂÇ¿µ÷Õâ´ÎÊÂÎñΪ¡°¹ÂÁ¢ÊÂÎñ¡± £¬ÆäÄÚ²¿ÏµÍ³Î´ÔâÈëÇÖ £¬ÇÒÓë½ñÄê5Ô²úÉúµÄÍøÕ¾½Ó¼ûÏÞ¶ÈÊÂÎñÎ޹ء£¹þÂ޵°ٻõĿǰÓÉ¿¨Ëþ¶ûͶ×ʾֿعÉ¡£¸Ã¹«Ë¾°µÊ¾ £¬ÒÑ´ÓµÚÈý·½¹©¸øÉÌ´¦»ñϤÊý¾ÝÇÔÈ¡Çé¿ö £¬²¢Á¢¼´Í¨ÖªÊÜÓ°Ïì¿Í»§¡£¹©¸øÉÌÒÑÈ·ÈÏÊÂÎñÒѵõ½½ÚÔì £¬Ë«·½ÕýºÏ×÷²ÉÈ¡ËùÓбØÒª´ëÊ© £¬Í¬Ê±ÒÑÏòËùÓÐÓйز¿ÃÅ´«µÝ¡£ÖµÍ×ÌùÐĵÄÊÇ £¬Scattered SpiderÀÕË÷Èí¼þ×éÖ¯ÔøÐû³Æ¶Ô½ñÄêÔçЩʱ³½Õë¶Ô¹þÂ޵°ٻõ¡¢Âêɯ°Ù»õ¼°ºÏ×÷ÉçµÄÍøÂç¹¥»÷ÕÆ¹Ü¡£Õâ´ÎÊý¾Ýй¶ÊÂÎñÔÙ´Î͹ÏÔÆóÒµ¹©¸øÁ´°²È«·çÏÕ¡£


https://cybernews.com/news/harrods-luxury-department-store-warns-customers-of-data-breach/


2. Kido SchoolsÔâÀÕË÷Èí¼þ¹¥»÷ £¬8000Ãû¶ùͯÃô¸ÐÐÅϢй¶


9ÔÂ26ÈÕ £¬×ܲ¿Î»ÓÚÂ׶صÄÓ×¶ùÔ°Á¬Ëø»ú¹¹Kido Schools½üÈÕÔâ·êÀÕË÷Èí¼þ¹¥»÷ £¬ÐÂÐ˺ڿÍ×éÖ¯RadiantÐû³Æ¶Ô´ËÕÆ¹Ü £¬²¢ÔÚ°µÍøÐ¹ÃÜÍøÕ¾¹«¿ªÁ˾ݳÆÊôÓÚÓ¢¹ú18ËùÍжùËù8000ÃûѧÁäǰ¶ùͯ¼°ÆäÇ×ÊôµÄÃô¸ÐÐÅÏ¢ £¬Ô̺¬¶ùͯÁ³²¿ÌØÐ´Í¼Ïñ¡¢È«Ãû¡¢ÐԱ𡢵®ÉúÈÕÆÚ¡¢µ®ÉúµØ¡¢Í¬×¡ÈËÐÅÏ¢¡¢¸¸Ä¸ÐÕÃû¡¢¹¤×÷µØÖ·¡¢ÁªÏµ·½Ê½ £¬ÒÔ¼°×游ĸ¡¢ÆäËûÇ×ÆÝ»òÁÚ¾ÓµÄÁªÏµ·½Ê½µÈ¡£´Ë±í £¬Ô±¹¤Êý¾Ý¿âÒ²±»Ð¹Â¶ £¬Ô̺¬ÐÕÃû¡¢ÐԱ𡢵®ÉúÈÕÆÚ¡¢ÆëÈ«µØÖ·¡¢µç×ÓÓʼþ¡¢¹úÃñ±£ÏÕºÅÂ롢Ψһ¹¤ÈËID¼°ÈëÖ°ÈÕÆÚµÈÓ×ÎÒÐÅÏ¢¡£Radiant×Ô³ÆÒÑÂñ·üKidoÍøÂçÊýÖÜ £¬²¢Ðû³ÆÀ´×Ô¶íÂÞ˹¡£¸Ã×éÖ¯ÔÚ½»Éæ·ÖÁѺóÆðÍ·°ä²¼Ñù±¾×ÊÁÏ £¬Ä¿Ç°ÒѰ䲼20Ãû¶ùͯÓ×ÎÒ×ÊÁϼ°50ÃûÔ±¹¤Ó×ÎÒÐÅÏ¢ £¬²¢Íþв¡°»¹»áÓиü¶à¡±¡£ºÚ¿ÍÆ·ÆÀKido¡°ç¢Â©¡± £¬²¢¼¤Àø¼Ò³¤Í¨¹ý¡°²ÎÓëË÷Åâ¡±ÍøÕ¾¶ÔÓ×¶ùÔ°Ìá¸æ×´ËÏ¡£Â׶ؾ¯Ô±ÌüÒÑȾָµ÷²é £¬Ä¿Ç°´¦ÓÚÔçÆÚ½×¶Î¡£Kido SchoolsÒÑ֪ͨÓйز¿Ãż°¼Ò³¤ £¬µ«Î´°ä·¢¹«¿ªÉêÃ÷¡£


https://cybernews.com/cybercrime/kido-nursery-schools-ransomware-attack-8000-children-images-compromised/


3. ÈÕ±¾³¯ÈÕ¼¯ÍÅÔâÍøÂç¹¥»÷Ö±¾ÍÁÒµÎñÖжÏ


9ÔÂ29ÈÕ £¬ÈÕ±¾×ÏúÆ¡¾ÆÔì×÷É̳¯ÈÕ¼¯ÍſعÉÓÐÏÞ¹«Ë¾£¨¼ò³Æ"³¯ÈÕ"£©½üÈÕÅû¶Ôâ·êÑϳÁÍøÂç¹¥»÷ £¬µ¼ÖÂÆäÈÕ±¾±¾ÍÁ¶àÏîÖ÷ÌâÒµÎñÏÝÈë̱»¾¡£×÷Ϊռ¾ÝÈÕ±¾Æ¡¾ÆÊг¡Ô¼Èý·ÖÖ®Ò»·Ý¶îµÄÐÐÒµ¾ÞÍ· £¬³¯ÈÕÕ¼ÓÐ3ÍòÃûÔ±¹¤¡¢Äê²úÁ¿´ï1ÒÚ°ÙÉý £¬2024ÄêÔ¤¼ÆÄêÊÕÈë½ü200ÒÚÃÀÔª¡£Õâ´Î¹¥»÷×ÔÔ糿7ʱÆô¶¯ £¬ÒÑÆëÈ«ÖÐ¶ÏÆä¶©¹ºÓë·¢»õϵͳ £¬ºô½ÐÖÐÐļ°¿Í»§·þÎñ̨ÒàÎÞ·¨¶Ô±íÊ¢¿ª £¬¶ÔÈÕ³£ÔËÓªÔì³É³Á´ó³å»÷¡£³¯ÈÕ¼¯ÍÅÔÚ¹ÙÍøÉêÃ÷ÖÐ֤ʵ £¬±¾´ÎÍøÂç¹¥»÷Òý·¢µÄϵͳ¹ÊÕϽöÓ°ÏìÈÕ±¾±¾ÍÁÒµÎñ £¬Ä¿Ç°ÉÐδ·¢ÏÖÓ×ÎÒÐÅÏ¢»ò¿Í»§Êý¾Ý±íйÖÁ±í²¿¡£¹«Ë¾ÕýÈ«Á¦µ÷²éÖжϱ¾Ô­²¢Íƶ¯ÒµÎñ¸´Ô­ £¬µ«Î´°ä²¼¾ßÌ帴ԭ¹¦·ò±í¡£Ö»¹Ü¹ú¼Ê·ÖÖ§»ú¹¹£¨Å·ÖÞ¡¢´óÑóÖÞ¡¢¶«ÄÏÑÇ£©¼°ÆìÏÂPeroni¡¢Pilsner UrquellµÈ³ÛÃûÆ·ÅÆÎ´Êܲ¨¼° £¬µ«±¾ÍÁÒµÎñÖͰ­ÒÑÒý·¢¹©¸øÁ´Á¬Ëø·´Ó³¡£½ØÖÁĿǰ £¬ÉÐÎÞÀÕË÷Èí¼þÍÅ»ïÐû³Æ¶Ô´ËÕÆ¹Ü £¬ÍþвÐÐΪÕßÉí·Ý¼°³õʼ¹¥»÷õè¾¶ÒàδÃ÷È·¡£


https://www.bleepingcomputer.com/news/security/japans-largest-brewer-suspends-operations-due-to-cyberattack/


4. ÀÕË÷Èí¼þÍÅ»ï×·ÇóBBC¼ÇÕßµÄÔ®ÊÖ £¬ÒÔ¹¥»÷ýÌå¾ÞÍ·


9ÔÂ29ÈÕ £¬×Գƴú±íMedusaÀÕË÷Èí¼þÍÅ»ïµÄÍþвÐÐΪÕß7ÔÂͨ¹ý¼ÓÃÜͨѶ¹¤¾ßSignalÁªÏµBBCÍøÂ簲ȫ¼ÇÕßÇÇ¡¤Ì©µÏ £¬ÊÔͼÓÕʹÆä³ÉΪÄÚ²¿ÍþвÒÔÈëÇÖÓ¢¹ú¹«¹²·þÎñ¹ã²¥¹«Ë¾ÍøÂç¡£ÍþвÕß¡°Syn¡±³Ô¼µ £¬ÈôÌ©µÏÔÊÐíMedusa½Ó¼ûBBCϵͳ £¬½«»ñµÃÊê½ð×ܶîµÄ15%×÷Ϊ±¨´ð £¬ºóÊÔͼ½«·Ö³É±ÈÀýÌá¸ßÖÁ25% £¬²¢Ç¿µ÷³É¹¦ÈëÇÖºó¿ÉË÷È¡¡°ÊýǧÍòÃÀÔª¡±Êê½ð¡£MedusaÍÅ»ï×Ô2021Äê1Ô³öÏÖÒÔÀ´ £¬ÒÔË«³ÁÀÕË÷¹¥»÷ºÍ2023ÄêÍÆ³öµÄÀÕË÷ÃÅ»§ÎÅÃû £¬Ôø±»ÃÀ¹úCISA»ã±¨¶Ô¹Ø¼ü»ù´¡ÉèÊ©·¢Æð³¬300´Î¹¥»÷ £¬ÆäÖ÷Ìâ³ÉÔ±³£Í¨¹ý°µÍøÕÐļ¡°³õʼ½Ó¼û¾­¼ÍÈË¡±Ö´Ðй¥»÷¡£ÎªÓÕʹ̩µÏºÏ×÷ £¬ÍþвÕßÁоٹýÍùÄÚ²¿ÈËԱЭÖú¹¥»÷µÄ°¸Àý £¬²¢ÊÔͼͨ¹ýMFAºäÕ¨£¨¼´ÆµÈÔ·¢ËÍË«³ÁÉí·ÝÑéÖ¤ÒªÇ󣩯Èʹ¼ÇÕßÊÚȨ½Ó¼û¡£È»¶ø £¬Ì©µÏδÍ×Э £¬·´¶øÁªÏµBBCÐÅÏ¢°²È«ÍŶÓ £¬²¢×Ô¶¯¶Â½ØÓë»ú¹¹»ù´¡ÉèÊ©µÄÏνÓ¡£Ëæºó £¬ÍþвÕßͨ¹ýSignalÖÂǸ £¬³Æ¡°ÓŻݻ¡±ÊýÈÕÄÚÓÐЧ £¬µ«Òò¼ÇÕßÊýÈÕδ»ØÓ¦ £¬×îÖÕɾ³ýÕË»§¡£


https://www.bleepingcomputer.com/news/security/ransomware-gang-sought-bbc-reporters-help-in-hacking-media-giant/


5. Ó¢¹ú15ÒÚÓ¢°÷´û¿îµ£±£ÖúÁ¦½Ý±ªÂ·»¢Ó¦¶ÔÍøÂç¹¥»÷


9ÔÂ29ÈÕ £¬½üÈÕ £¬Ó¢¹ú×î´óÆû³µ³ö¿ÚÉ̽ݱªÂ·»¢£¨JLR£©ÒòÔâ·êÑϳÁÍøÂç¹¥»÷µ¼Ö¶๤³§Í£²ú¡¢¹©¸øÁ´ÖжϺó £¬Ó¢¹úµ±¾Öͨ¹ýÓ¢¹ú³ö¿ÚÈÚ×ʾ֣¨UKEF£©µÄ³ö¿Ú·¢Õ¹µ£±££¨EDG£©´òËã £¬ÎªÆäÌṩ15ÒÚÓ¢°÷´û¿îµ£±£¡£¸Ã»úÔìͨ¹ý³Ðµ£Ã³Ò×ÒøÐдû¿îµÄ´ó²¿ÃÅ·çÏÕ £¬Ê¹JLR»ñµÃ±È×ÔÉíÔÚ³Á´óÊÂÎñºó¸üÓźñ¡¢½ð¶î¸ü´óµÄ´û¿î £¬´û¿î½«ÔÚÎåÄêÄÚ³¥»¹ £¬×¨ÏîÓÃÓÚÖ§¸¶¹©¸øÉÌ¿î×Ó¼°¸´Ô­¹©¸øÁ´ÔËÓª¡£Ó¢¹úóÒ׺ÍÒµÎñ´ó³¼±ËµÃ¡¤¿­¶ûÇ¿µ÷ £¬Õâ´Î¹¥»÷²»½öÕë¶ÔÓ¢¹ú±êÖ¾ÐÔÆû³µÆ·ÅÆ £¬¸üÍþвµ½Õû¸öÆû³µÐÐÒµ¼°ÒÀÀµÆäÉú¼ÆµÄ´ÓÒµÕß¡£´û¿îµ£±£½«Ö§³ÖÎ÷Ã×µÂÀ¼×È¿¤¡¢Ä¬Î÷ÈûµÂ¿¤¼°È«Ó¢¼¼Êõ¸Úλ £¬²¢Í¨¹ýÏÖ´ú¹¤ÒµÕ½Êõ¼°ÒµÎñºÍ̸³Ö¾ÃÖ§³Ôìû³µÐÐÒµ·¢Õ¹¡£¾ÝÅû¶ £¬¹¥»÷ÑϳÁÇÖÈÅJLRµÄITϵͳ¼°Ôì×÷ÔËÓª £¬µ¼ÖÂÊý¾Ý±»µÁ £¬¹¤³§Í£²ú¹¦·ò±»ÆÈµ¢¸é¡£×Գơ°Scattered Lapsus$ Hunters¡±µÄºÚ¿Í×éÖ¯Ðû³Æ¶Ô´ËÕÆ¹Ü £¬²¢ÔÚTelegram°ä²¼JLR SAPϵͳÄÚ²¿Îļþ½ØÍ¼ £¬Ðû³ÆÒѲ¿ÊðÀÕË÷Èí¼þ¡£


https://www.bleepingcomputer.com/news/security/uk-govt-backs-jlr-with-15-billion-loan-guarantee-after-cyberattack/


6. ¿ÆÂÞÀ­¶àÖݽüÍòÃûNRAÖ§³ÖÕßÃô¸ÐÐÅÏ¢ÔâÒâ±íй©


9ÔÂ29ÈÕ £¬¿ÆÂÞÀ­¶àÖݽü10,000ÃûÃÀ¹úÈ«¹ú²½Ç¹Ð­»á£¨NRA£©Ö§³ÖÕßµÄÐÕÃû¼°¼Òͥסַ±»Òâ±í°ä²¼ÖÁÍøÂç £¬Í¨¹ýGoogleËÑË÷¼´¿É¹«¿ª½Ó¼û¡£¾ÝÍøÂ簲ȫýÌåµ÷²é £¬¸ÃÊý¾Ý¼¯Ô´×Ô·ÇͶ»ú×éÖ¯"ÃÀ¹ú²½Ç¹Ð­»áÖ®ÓÑ"£¨Friends of NRA£©¹ÙÍø £¬Ô̺¬1.1MBµÄÓʼþÁбí £¬¼Í¼ÁË2018ÄêǰºóÔÚ¸ÃÍøÕ¾×¢²á³é½±»ò·þÎñµÄÓû§ÁªÏµÐÅÏ¢¡£Ð¹Â©Ô­Òò±»¹é×ïÓÚ³£¼ûµÄ±¨´ðÅäÖÃÃýÎó £¬µ¼ÖÂËÑË÷ÒýÇæË÷ÒýÁ˱¾Ó¦±£ÃܵÄÊý¾Ý¡£×êÑÐÈËÔ±Ö¸³ö £¬Ö»¹ÜÊý¾Ý½öÔ̺¬ÐÕÃûºÍסַÇÒÒÑ´ÓǰÆßÄê £¬Ê±Ð§ÐÔÓÐÏÞ £¬µ«ÈÔ¿ÉÄÜÒý·¢¸ú×ÙɧÈŵȷçÏÕ¡£¸Ã×éÖ¯×÷ΪNRA»ù½ð»áµÄÖØÒª³ï¿î·½ £¬³Ö¾ÃÖ§³ÖÉä»÷»î¶¯ºÍǹе½ÌÓýÏîÄ¿ £¬µ«Õâ´ÎÊÂÎñ¶³öÆäÊý¾ÝÖÎÀí´æÔÚÑϳÁ·ì϶¡£ÖµÍ×ÌùÐĵÄÊÇ £¬2021ÄêÔøÓжíÂÞ˹¹ØÁªµÄºÚ¿Í×éÖ¯"¸ñÀï·ò"½«NRAÁÐΪ¹¥»÷Ö¸±ê £¬¶øNRAÆäʱδÈϿɰ²È«·ì϶ £¬²¢»Ø±Üµç×Ó°²È«ÎÊÌâ»áÉÌ¡£


https://cybernews.com/security/friends-nra-data-leak-colorado/