重大層級ServiceNow漏洞已被用於攻擊行動,駭客恐藉此竊取帳密資料
支付動態 · 2024-07-26
資安業者Resecurity針對ServiceNow本月修補的輸入驗證漏洞CVE-2024-4879提出警告,並指出駭客還會串連另外兩個漏洞,截取系統資料庫的內容
從產業類別看來,能源產業、資料中心、中東政府組織、軟體開發業者是對方偏好的攻擊目標。
值得留意的是,CVE-2024-4879、CVE-2024-5217本身就已經相當嚴重,CVSS風險評分皆達到9.8分,一旦遭到利用,攻擊者就有機會遠端執行任意程式碼(RCE)。
研究人員指出,上述3項漏洞駭客最積極利用的是CVE-2024-4879,根據他們的探測,攻擊者在試圖利用漏洞前,會確認受害主機是否曝露有關風險,然後注入有效酬載,用來確認特定乘法算式的結果來進行回應。
接著,對方植入第二階段惡意程式,來檢查能否存取資料庫的內容。一旦成功利用漏洞,受害主機就會回傳資料庫的有詳細資訊。最終,駭客將能轉儲使用者的名單,並從受害主機外流使用者名單,以及受害主機的中繼資料,而有可能導致帳密資料外流。
根據研究人員的分析,雖然大部分的資料都透過複雜的雜湊演算法處理,而並未被駭客利用,但他們認為,少部分曝光的資料就可能有助於駭客從事偵察。
Popular articles
British gambling levy rates confirmed for each vertical
Regulation
UK MPs reopen 2025 gambling inquiry as reform stalls
Regulation
Vietnam’s Controlled Gaming Shift Gains Ground, But Domestic Demand Still Lags
Southeast Asia
GAT CDMX 2025 Institutional Academy: Leaders and Experts Analyze the Present and Future of the Gaming Industry in Mexico and Lat
Sports Game
1spin4win releases unique slot Don Catleone Hold and Win featuring gangster cats
Online Game
JILI Partners with Cricket Legend AB de Villiers (ABD) to Launch Exclusive Branded Game Series 100% 11
Sports Game
Indiana online casino bill stalls in House committee
Regulation
Full House at GAT Expo Cartagena 2026 Academic Agenda
Online Game
HUIDU Invites You to Booth T70 at iGB L!VE 2026 — Let’s Ignite London This July!
HUIDU Focus
Online gambling, crypto pose ongoing money laundering risks in Philippines, analyst says
Southeast Asia
Institutional Academy that exceeded expectations marked the opening of GAT CDMX
Online Game
GAT Expo Puerto Rico Will Pulse with the New Era of Gaming in the Caribbean
Marketing
Super PAC Raises $48 Million: Sports Betting Forces Ramp Up Political Push
Regulation
1spin4win grows its Latin American presence by partnering with Fortuna Juegos
Online Game
GGC Awards 2026 Shines in Colombo: Honoring Leaders and Innovators in the iGaming Industry
HUIDU Focus
