Scribd Logo
Upload

Welcome to Scribd!

  • CNCERT互联网安全威胁报告 2011年10月

    Uploaded by

    Dali Huang
    9 views15 pages

    Original Title

    CNCERT互联网安全威胁报告-2011年10月

    Copyright

    © Attribution Non-Commercial (BY-NC)

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    9 views15 pages

    CNCERT互联网安全威胁报告 2011年10月

    Uploaded by

    Dali Huang

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 15

    CNCERT

    2011 10

    10

    CNCERT

    2011 10
    634
    2051201
    CNVD631
    261560

    +8610 8299099982991000 +8610 82990399


    cncert@cert.org.cn
    PGP Keyhttp://www.cert.org.cn/cncert.asc
    http://www.cert.org.cn/

    www.cert.org.cn

    CNCERT

    CNCERT CNCERT/CC 1999 9

    2003 CNCERT 31

    CNCERT
    CERT

    CNCERT

    863-917
    863-917

    2009

    FIRST
    APCERT

    www.cert.org.cn

    CNCERT

    CNCERT CNCERT/CC
    CNCERT
    CNCERT CNCERT

    CNCERT

    CNCERT

    CNCERT
    cncert@cert.org.cn

    www.cert.org.cn

    2011 10

    10


    2011 10

    201 181 11.0%


    8.1% 9.8% 252
    653 61.4%
    Joomla Time Returns
    SQL Opera SVG
    Oracle AutoVue 'AutoVueX.ocx' ActiveX 'SaveViewStateToFile()'

    www.cert.org.cn


    2011 10 CNCERT
    1
    634
    5.1% 417
    13.1% 16 220%

    6.4% 72.2%
    17.5%
    23.0%
    34.4% 2051
    7.9% 252 61.4%
    360
    32.4%
    27.5% 11.9%
    20.6%CNVD2
    631 19.5%
    261 560
    7975
    4.7%CNCERT
    1105 24.9%

    1
    10 CNCERT
    271
    78

    2 CNVD CNCERT

    www.cert.org.cn

    CNCERT

    10
    14 24 CNCERT

    10 25 363
    IP 97


    10 CNVD
    ()
    cookie
    cookie cookie
    WebshellCNVD

    cookie

    IP


    CNCERT Duqu
    ANVA3 Duqu
    Stuxnet
    3ANVA CNCERT

    www.cert.org.cn

    Duqu Duqu

    CNVD
    Duqu Microsoft Windows
    word
    .docANVA


    10 CNCERT

    CNCERT

    12321

    10 17 24 CNCERT 12321
    qqvde.com
    bjlyxx.com.cn hntvn8.com
    chs-i.com.cn
    CNCERT

    www.cert.org.cn


    2011 10 634
    IP 52
    IP 4.7% IP
    582 0.4%

    2011 10 CNCERT 52 IP

    IP 22783
    IP 16723
    IP 6060


    2011 10 CNCERT 4120
    IP

    IP 582


    2011 10 CNCERT
    417 16

    www.cert.org.cn

    2011 10 CNCERT
    IP 1
    1 2011 10 IP

    IP

    dl.sdflt.com

    121.14.152.152

    al.sdflt.com

    121.10.107.83

    launcher.warcraftchina.com

    121.10.107.78

    top.back2009.info

    50.23.195.56

    update.woai310.com

    50.23.195.58

    2011 10 CNCERT ANVA


    175 91 52%

    84 48%
    5 2

    2 2011 10

    TLD

    .com

    gTLD

    74

    .org

    gTLD

    42

    .info

    gTLD

    19

    .tk

    ccTLD

    15

    .net

    gTLD



    2011 10 2051
    qq1281232825QQ:124320170Link

    www.cert.org.cn

    .com
    .com.cn
    .gov.cn 201
    9.8%
    10 31 4 3
    3 10 31

    zgsxsf.gov.cn

    ft.hn.gov.cn

    wp.pingguo.gov.cn

    al.yanlingagri.gov.cn

    wt.yanlingagri.gov.cn

    www.zgzy.gov.cn

    www.hljswjjw.gov.cn

    xisgs.gov.cn

    www.xisgs.gov.cn

    www.hbyxwater.gov.cn

    www.zhifang.gov.cn

    argtzy.gov.cn

    zzb.bjzf.gov.cn

    fgw.afx.gov.cn

    www.klswj.gov.cn

    www.xzqjsj.gov.cn

    mxczj.gov.cn

    www.lcchj.gov.cn

    www.qjxcb.gov.cn

    www.sclxjcy.gov.cn

    www.yjxgtzy.gov.cn

    4.gov.cn
    .gov.cn
    URL
    7

    www.cert.org.cn

    yingjing.gov.cn

    www.tjhdlushandaozhdz.gov.cn

    www.xjqm.gov.cn

    gntj.gov.cn

    www.lhxzw.gov.cn

    nhcs.gov.cn


    CNCERT 10 31

    4
    4 10 31

    www.fsa.gov.cn

    www.sxwhaj.gov.cn

    www.xnc.shasm.gov.cn

    www.smmzzj.gov.cn

    www.gdyj.lss.gov.cn

    bbs.hksti.gov.cn

    www.zznj.gov.cn

    hbj.xxz.gov.cn

    www.wjkx.gov.cn

    office.ncinfo.gov.cn

    www.tlepb.gov.cn

    www.tlgtj.gov.cn


    2011 10 CNVD
    631 261
    560 Apple
    CiscoGoogleLinuxMicrosoftOracle
    CNVD 104 0day
    8

    www.cert.org.cn

    Joomla Time Returns SQL


    Opera SVG Oracle AutoVue
    'AutoVueX.ocx' ActiveX 'SaveViewStateToFile()'

    WEB

    CNVD

    WEB



    2011 10 CNCERT
    1105

    43
    1105

    CNCERT

    2011 10 CNCERT
    1063

    www.cert.org.cn

    1. Trojan Horse

    5 6 7 8
    9 10
    2. Bot

    IRC Http P2P

    3. Worm

    5
    6
    7
    8
    9
    10
    10

    www.cert.org.cn

    U
    4. Virus

    5.

    11

    www.cert.org.cn

    IP


    Exploit

    12

    You might also like