Aggregator

error code: 521

HackerNews 编译，转载请注明出处： 2025年1月14日下午3时01分，由美国、韩国和日本共同发布的声明指出，朝鲜国家支持的黑客组织通过多次加密货币抢劫案，窃取了价值超过6.59亿美元的加密货币。 该声明同时警告称，与朝鲜民主主义人民共和国相关的威胁组织仍在积极针对区块链技术行业的公司进行攻击。 “最近至2024年9月，美国政府观察到朝鲜对加密货币行业进行了激烈攻击，采用伪装良好的社会工程学手段部署恶意软件，如TraderTraitor、AppleJeus等。韩国和日本也观察到了朝鲜使用类似趋势和战术的情况。”联合声明警告道。 “朝鲜的网络计划威胁到我们三国以及更广泛的国际社会，特别是对国际金融体系的完整性和稳定性构成重大威胁。” 声明还正式确认，朝鲜攻击者是2024年7月印度最大比特币交易所WazirX遭入侵事件的幕后黑手，该事件导致2.35亿美元损失。 此外，朝鲜还与去年披露的多起其他加密货币抢劫案有关，包括DMM Bitcoin（3.08亿美元）、Upbit（5000万美元）、Rain Management（1613万美元）和Radiant Capital（5000万美元）。 然而，区块链分析公司Chainalysis在12月的一份报告中描绘了更严峻的情况，称朝鲜黑客去年在47起网络攻击中窃取了价值13.4亿美元的加密货币，打破了2022年11亿美元的纪录。 “2023年，与朝鲜相关的黑客在20起事件中窃取了约6.605亿美元；2024年，这一数字增至47起事件中窃取13.4亿美元，被盗价值增长了102.88%。”Chainalysis表示。 近年来，特别是2024年全年，美国、韩国和日本政府机构还发布了关于朝鲜诱骗私营公司雇佣其作为远程IT工作者的警报。 这些朝鲜IT工作者自称“IT战士”，通过位于美国的笔记本电脑农场连接到企业网络，冒充美国IT员工，这是FBI多年来一直警告的情况。 美国政府反复警告称，朝鲜拥有一支庞大的IT工作者队伍，他们经过培训，能够隐藏真实身份，在美国和世界各地数百家公司找到工作。 例如，网络安全公司KnowBe4最近雇佣了一名朝鲜恶意行为者担任首席软件工程师，该人员在通过背景调查、验证推荐信和四次视频面试后入职，这些过程均借助了被盗身份和AI工具。然而，一旦入职，这位“IT战士”便立即试图在公司提供的设备上安装信息窃取恶意软件。 在被发现并被解雇后，一些朝鲜IT工作者还利用内部知识和编程技能，以泄露被盗敏感信息的威胁向前雇主勒索。 目前，美国国务院提供高达500万美元的悬赏，以获取有助于破坏朝鲜前线公司延边银河和Volasys银河（及其员工）活动的信息。在过去六年中，这些公司通过非法远程IT工作计划获得了超过8800万美元的收入。 “美国、日本和韩国建议私营部门实体，特别是区块链和自由职业工作行业的实体，仔细阅读这些咨询和公告，以便更好地了解缓解网络威胁的措施，并降低无意中雇佣朝鲜IT工作者的风险。”美国、韩国和日本在今天的联合声明中补充道。   消息来源：Bleeping Computer, 编译：zhongx；  本文由 HackerNews.cc 翻译整理，封面来源于网络；   转载请注明“转自 HackerNews.cc”并附上原文

xhs_ai_publisher介绍xhs_ai_publisher 是一款小红书 AI 运营助手，集内容生成与自动发布于一体。它利用大模型技术生成符合小红书风格的文

xhs_ai_publisher介绍xhs_ai_publisher 是一款小红书 AI 运营助手，集内容生成与自动发布于一体。它利用大模型技术生成符合小红书风格的文章和图片，并通过 Selen...

日前，四川省绵竹市检察院办理了非法控制计算机信息系统系列案，及时斩断伸向网民的流量黑手，破获流量劫持违法犯罪团伙 3 个，抓捕犯罪嫌疑人 11 人，已成功追回涉案虚拟货币等违法所得 1200 余万元，

日前，四川省绵竹市检察院办理了非法控制计算机信息系统系列案，及时斩断伸向网民的流量黑手。

A vulnerability was found in Microsoft Windows and classified as problematic. Affected by this issue is some unknown functionality of the component BitLocker. The manipulation leads to not failing securely. This vulnerability is handled as CVE-2025-21210. It is possible to launch the attack on the physical device. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Microsoft Windows. It has been rated as problematic. This issue affects some unknown processing of the component BitLocker. The manipulation leads to information disclosure. The identification of this vulnerability is CVE-2025-21214. It is possible to launch the attack on the physical device. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability has been found in Microsoft Windows and classified as critical. Affected by this vulnerability is an unknown functionality of the component Telephony Service. The manipulation leads to heap-based buffer overflow. This vulnerability is known as CVE-2025-21411. The attack can be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Microsoft Windows and classified as critical. Affected by this issue is some unknown functionality of the component Telephony Service. The manipulation leads to heap-based buffer overflow. This vulnerability is handled as CVE-2025-21413. The attack may be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Microsoft Windows. It has been classified as critical. This affects an unknown part of the component Telephony Service. The manipulation leads to heap-based buffer overflow. This vulnerability is uniquely identified as CVE-2025-21417. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Libssh2 up to 1.8.0. It has been rated as critical. This issue affects the function _libssh2_packet_require/_libssh2_packet_requirev. The manipulation as part of Packet leads to out-of-bounds read. The identification of this vulnerability is CVE-2019-3859. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Libssh2 up to 1.8.0. Affected by this issue is some unknown functionality of the component SSH Server. The manipulation as part of SFTP Packet leads to out-of-bounds read. This vulnerability is handled as CVE-2019-3860. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Microsoft Windows. Affected is an unknown function of the component Telephony Service. The manipulation leads to heap-based buffer overflow. This vulnerability is traded as CVE-2025-21409. It is possible to launch the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability, which was classified as problematic, was found in Rsync. Affected is an unknown function of the component Symlink Handler. The manipulation leads to race condition. This vulnerability is traded as CVE-2024-12747. The attack needs to be done within the local network. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability has been found in Git up to 2.48.0 and classified as critical. This vulnerability affects unknown code of the component ANSI Escape Sequence Handler. The manipulation leads to escaping of output. This vulnerability was named CVE-2024-50349. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Git up to 2.48.0 and classified as problematic. This issue affects some unknown processing. The manipulation leads to escaping of output. The identification of this vulnerability is CVE-2024-52006. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

主站 分类 漏洞 工具 极客

该漏洞可能允许攻击者利用竞争条件，导致拒绝服务（DoS）攻击。