FaCai团伙利用APT技术针对国内的攻击活动分析

DBAPPSecurity cybersecurity · Recent · Original source

事件概述自微软默认禁用了来自互联网的文档中的Office宏之后，其他类型的恶意负载如JavaScript、MSI文件、LNK对象和ISO文件的使用量就开始急剧... Read More Read More FaCai团伙利用APT技术针对国内的攻击活动分析最先出现在安恒威胁情报中心。

Related Vulnerabilities

CVE-2026-35650: OpenClaw before 2026.3.22 contains an environment variable override handling vulnerability that allo HIGH
CVE-2026-40212: OpenStack Skyline before 5.0.1, 6.0.0, and 7.0.0 has a DOM-based Cross-Site Scripting (XSS) vulnerab MEDIUM
CVE-2026-35668: OpenClaw before 2026.3.24 contains a path traversal vulnerability in sandbox enforcement allowing sa HIGH
CVE-2026-40100: FastGPT is an AI Agent building platform. Prior to 4.14.10.3, the /api/core/app/mcpTools/runTool end MEDIUM
CVE-2026-3690: OpenClaw Canvas Authentication Bypass Vulnerability. This vulnerability allows remote attackers to b HIGH