{"id":46527,"date":"2025-08-15T09:17:12","date_gmt":"2025-08-15T02:17:12","guid":{"rendered":"https:\/\/antoanthongtinhaiphong.gov.vn\/?p=46527"},"modified":"2025-08-15T09:17:12","modified_gmt":"2025-08-15T02:17:12","slug":"he-sinh-thai-microsoft-doi-mat-voi-chuoi-lo-hong-nghiem-trong","status":"publish","type":"post","link":"https:\/\/antoanthongtinhaiphong.gov.vn\/he-sinh-thai-microsoft-doi-mat-voi-chuoi-lo-hong-nghiem-trong\/","title":{"rendered":"H\u1ec7 sinh th\u00e1i Microsoft \u0111\u1ed1i m\u1eb7t v\u1edbi chu\u1ed7i l\u1ed7 h\u1ed5ng nghi\u00eam tr\u1ecdng"},"content":{"rendered":"

G\u1ea7n \u0111\u00e2y, m\u1ed9t lo\u1ea1t l\u1ed7 h\u1ed5ng nghi\u00eam tr\u1ecdng \u0111\u00e3 \u0111\u01b0\u1ee3c ph\u00e1t hi\u1ec7n tr\u00ean c\u00e1c s\u1ea3n ph\u1ea9m ch\u1ee7 l\u1ef1c c\u1ee7a Microsoft, t\u1eeb Windows Server, Windows 10\/11, Office, Teams \u0111\u1ebfn Microsoft Entra ID. C\u00e1c l\u1ed7 h\u1ed5ng n\u00e0y, d\u00f9 thu\u1ed9c nhi\u1ec1u lo\u1ea1i kh\u00e1c nhau, \u0111\u1ec1u ti\u1ec1m \u1ea9n r\u1ee7i ro cao cho doanh nghi\u1ec7p v\u00e0 ng\u01b0\u1eddi d\u00f9ng c\u00e1 nh\u00e2n, \u0111\u1eb7c bi\u1ec7t trong b\u1ed1i c\u1ea3nh m\u00f4i tr\u01b0\u1eddng m\u1ea1ng ph\u1ee9c t\u1ea1p v\u00e0 t\u1ea5n c\u00f4ng tinh vi gia t\u0103ng.<\/b><\/p>\n

\n
\"Microsoft.png\"<\/div>\n<\/div>\n

L\u1ed7 h\u1ed5ng t\u1eeb ch\u1ed1i d\u1ecbch v\u1ee5 nghi\u00eam tr\u1ecdng trong Windows Remote Desktop Services\u200b<\/h3>\n

C\u00e1c nh\u00e0 nghi\u00ean c\u1ee9u b\u1ea3o m\u1eadt v\u1eeba c\u1ea3nh b\u00e1o v\u1ec1 m\u1ed9t l\u1ed7 h\u1ed5ng nghi\u00eam tr\u1ecdng trong Windows Remote Desktop Services (RDS) cho ph\u00e9p k\u1ebb t\u1ea5n c\u00f4ng th\u1ef1c hi\u1ec7n t\u1ea5n c\u00f4ng t\u1eeb ch\u1ed1i d\u1ecbch v\u1ee5 (DoS) ho\u00e0n to\u00e0n t\u1eeb xa m\u00e0 kh\u00f4ng c\u1ea7n x\u00e1c th\u1ef1c hay t\u01b0\u01a1ng t\u00e1c t\u1eeb ph\u00eda ng\u01b0\u1eddi d\u00f9ng. Nguy\u00ean nh\u00e2n xu\u1ea5t ph\u00e1t t\u1eeb c\u01a1 ch\u1ebf qu\u1ea3n l\u00fd t\u00e0i nguy\u00ean kh\u00f4ng ki\u1ec3m so\u00e1t trong ti\u1ebfn tr\u00ecnh d\u1ecbch v\u1ee5 RDS, \u0111\u01b0\u1ee3c ph\u00e2n lo\u1ea1i theo ti\u00eau chu\u1ea9n CWE-400 v\u1ec1 ti\u00eau th\u1ee5 t\u00e0i nguy\u00ean kh\u00f4ng gi\u1edbi h\u1ea1n.<\/p>\n

Khi khai th\u00e1c l\u1ed7 h\u1ed5ng, k\u1ebb t\u1ea5n c\u00f4ng c\u00f3 th\u1ec3 g\u1eedi m\u1ed9t chu\u1ed7i y\u00eau c\u1ea7u RDP \u0111\u01b0\u1ee3c thi\u1ebft k\u1ebf \u0111\u1eb7c bi\u1ec7t nh\u1eb1m li\u00ean t\u1ee5c ti\u00eau th\u1ee5 b\u1ed9 nh\u1edb v\u00e0 t\u00e0i nguy\u00ean x\u1eed l\u00fd c\u1ee7a m\u00e1y ch\u1ee7 \u0111\u00edch. \u0110i\u1ec1u n\u00e0y d\u1eabn \u0111\u1ebfn t\u00ecnh tr\u1ea1ng treo ho\u1eb7c kh\u1edfi \u0111\u1ed9ng l\u1ea1i d\u1ecbch v\u1ee5 Remote Desktop, khi\u1ebfn c\u00e1c phi\u00ean l\u00e0m vi\u1ec7c t\u1eeb xa b\u1ecb ng\u1eaft k\u1ebft n\u1ed1i v\u00e0 ng\u01b0\u1eddi d\u00f9ng kh\u00f4ng th\u1ec3 truy c\u1eadp h\u1ec7 th\u1ed1ng.<\/p>\n

L\u1ed7 h\u1ed5ng \u1ea3nh h\u01b0\u1edfng \u0111\u1ebfn nhi\u1ec1u phi\u00ean b\u1ea3n h\u1ec7 \u0111i\u1ec1u h\u00e0nh bao g\u1ed3m Windows Server t\u1eeb 2008 R2 \u0111\u1ebfn 2025 c\u00f9ng Windows 10 v\u00e0 Windows 11 phi\u00ean b\u1ea3n 24H2. V\u1edbi \u0111i\u1ec3m CVSS 3.1 l\u00e0 7.5, l\u1ed7 h\u1ed5ng n\u00e0y \u0111\u1eb7c bi\u1ec7t nguy hi\u1ec3m \u0111\u1ed1i v\u1edbi c\u00e1c m\u00e1y ch\u1ee7 RDS c\u00f3 k\u1ebft n\u1ed1i Internet c\u00f4ng khai, n\u01a1i k\u1ebb t\u1ea5n c\u00f4ng c\u00f3 th\u1ec3 qu\u00e9t v\u00e0 khai th\u00e1c tr\u1ef1c ti\u1ebfp qua m\u1ea1ng. Microsoft \u0111\u00e3 ph\u00e1t h\u00e0nh c\u00e1c b\u1ea3n v\u00e1 b\u1ea3o m\u1eadt KB5063880, KB5063878, KB5063875 v\u00e0 nhi\u1ec1u b\u1ea3n kh\u00e1c. C\u00e1c chuy\u00ean gia khuy\u1ebfn ngh\u1ecb doanh nghi\u1ec7p tri\u1ec3n khai c\u1eadp nh\u1eadt ngay l\u1eadp t\u1ee9c v\u00e0 \u00e1p d\u1ee5ng bi\u1ec7n ph\u00e1p gi\u1edbi h\u1ea1n truy c\u1eadp RDS t\u1eeb m\u1ea1ng ngo\u00e0i \u0111\u1ec3 gi\u1ea3m thi\u1ec3u nguy c\u01a1 gi\u00e1n \u0111o\u1ea1n d\u1ecbch v\u1ee5.<\/p>\n

Bypass NTLM tr\u00ean Windows: L\u1ed9 hashes NTLM m\u00e0 kh\u00f4ng c\u1ea7n t\u01b0\u01a1ng t\u00e1c\u200b<\/h3>\n

C\u00e1c chuy\u00ean gia t\u1eeb Cymulate v\u1eeba c\u00f4ng b\u1ed1 m\u1ed9t l\u1ed7 h\u1ed5ng nghi\u00eam tr\u1ecdng d\u1ea1ng\u00a0zero-click<\/i>\u00a0tr\u00ean n\u1ec1n t\u1ea3ng Windows, cho ph\u00e9p k\u1ebb t\u1ea5n c\u00f4ng tr\u00edch xu\u1ea5t NTLM hashes m\u00e0 kh\u00f4ng c\u1ea7n b\u1ea5t k\u1ef3 t\u01b0\u01a1ng t\u00e1c n\u00e0o t\u1eeb ph\u00eda n\u1ea1n nh\u00e2n. \u0110i\u1ec3m \u0111\u00e1ng ch\u00fa \u00fd l\u00e0 c\u01a1 ch\u1ebf t\u1ea5n c\u00f4ng n\u00e0y v\u1eabn ho\u1ea1t \u0111\u1ed9ng ngay c\u1ea3 tr\u00ean c\u00e1c h\u1ec7 th\u1ed1ng \u0111\u00e3 \u00e1p d\u1ee5ng b\u1ea3n v\u00e1 cho CVE-2025-24054, cho th\u1ea5y c\u00e1c bi\u1ec7n ph\u00e1p kh\u1eafc ph\u1ee5c tr\u01b0\u1edbc \u0111\u00e2y ch\u01b0a x\u1eed l\u00fd tri\u1ec7t \u0111\u1ec3 v\u1ea5n \u0111\u1ec1 g\u1ed1c r\u1ec5.<\/p>\n

L\u1ed7 h\u1ed5ng khai th\u00e1c c\u00e1ch Windows x\u1eed l\u00fd c\u00e1c t\u1ec7p shortcut (.lnk<\/i>). Khi ng\u01b0\u1eddi d\u00f9ng ho\u1eb7c h\u1ec7 th\u1ed1ng truy c\u1eadp t\u1edbi m\u1ed9t shortcut \u0111\u01b0\u1ee3c ch\u1ebf t\u1ea1o \u0111\u1ed9c h\u1ea1i, Windows s\u1ebd t\u1ef1 \u0111\u1ed9ng k\u00edch ho\u1ea1t qu\u00e1 tr\u00ecnh x\u00e1c th\u1ef1c NTLM n\u1ebfu TargetPath c\u1ee7a shortcut tr\u1ecf t\u1edbi m\u1ed9t t\u00e0i nguy\u00ean t\u1eeb xa. Trong k\u1ef9 thu\u1eadt m\u1edbi, k\u1ebb t\u1ea5n c\u00f4ng \u0111\u1eb7t TargetPath t\u1edbi m\u1ed9t file th\u1ef1c thi n\u1eb1m tr\u00ean m\u00e1y ch\u1ee7 do ch\u00fang ki\u1ec3m so\u00e1t, nh\u01b0ng l\u1ea1i g\u00e1n icon hi\u1ec3n th\u1ecb t\u1eeb m\u1ed9t ngu\u1ed3n c\u1ee5c b\u1ed9. Th\u1ee7 thu\u1eadt n\u00e0y \u0111\u00e1nh l\u1eeba c\u01a1 ch\u1ebf ki\u1ec3m tra c\u1ee7a b\u1ea3n v\u00e1 c\u0169, khi\u1ebfn qu\u00e1 tr\u00ecnh x\u00e1c th\u1ef1c NTLM v\u1eabn di\u1ec5n ra m\u00e0 kh\u00f4ng b\u1ecb ch\u1eb7n.<\/p>\n

Khi qu\u00e1 tr\u00ecnh NTLM handshake \u0111\u01b0\u1ee3c kh\u1edfi t\u1ea1o, m\u00e1y n\u1ea1n nh\u00e2n s\u1ebd g\u1eedi hash c\u1ee7a th\u00f4ng tin x\u00e1c th\u1ef1c t\u1edbi m\u00e1y ch\u1ee7 c\u1ee7a k\u1ebb t\u1ea5n c\u00f4ng. D\u1eef li\u1ec7u n\u00e0y c\u00f3 th\u1ec3 b\u1ecb brute-force ngo\u1ea1i tuy\u1ebfn \u0111\u1ec3 kh\u00f4i ph\u1ee5c m\u1eadt kh\u1ea9u g\u1ed1c ho\u1eb7c \u0111\u01b0\u1ee3c s\u1eed d\u1ee5ng tr\u1ef1c ti\u1ebfp trong c\u00e1c chi\u1ebfn d\u1ecbch NTLM relay, m\u1edf ra kh\u1ea3 n\u0103ng leo thang \u0111\u1eb7c quy\u1ec1n v\u00e0 di chuy\u1ec3n ngang gi\u1eefa c\u00e1c m\u00e1y trong m\u1ea1ng n\u1ed9i b\u1ed9.<\/p>\n

Microsoft \u0111\u00e3 x\u00e1c nh\u1eadn v\u1ea5n \u0111\u1ec1 v\u00e0 d\u1ef1 ki\u1ebfn ph\u00e1t h\u00e0nh b\u1ea3n v\u00e1 kh\u1ea9n c\u1ea5p. Trong th\u1eddi gian ch\u1edd \u0111\u1ee3i, c\u00e1c chuy\u00ean gia khuy\u1ebfn ngh\u1ecb doanh nghi\u1ec7p tri\u1ec3n khai bi\u1ec7n ph\u00e1p h\u1ea1n ch\u1ebf NTLM \u1edf t\u1ea7ng m\u1ea1ng, ch\u1eb3ng h\u1ea1n ch\u1eb7n l\u01b0u l\u01b0\u1ee3ng SMB\/HTTP ra ngo\u00e0i ho\u1eb7c s\u1eed d\u1ee5ng c\u00e1c ch\u00ednh s\u00e1ch b\u1ea3o m\u1eadt NTLM n\u00e2ng cao, nh\u1eb1m gi\u1ea3m thi\u1ec3u nguy c\u01a1 b\u1ecb khai th\u00e1c.<\/p>\n

T\u1ea5n c\u00f4ng \u201cdowngrade\u201d FIDO tr\u00ean Microsoft Entra ID\u200b<\/h3>\n

C\u00e1c nh\u00e0 nghi\u00ean c\u1ee9u c\u1ee7a Proofpoint v\u1eeba c\u00f4ng b\u1ed1 m\u1ed9t k\u1ef9 thu\u1eadt t\u1ea5n c\u00f4ng tinh vi nh\u1eb1m h\u1ea1 c\u1ea5p quy tr\u00ecnh x\u00e1c th\u1ef1c kh\u00f4ng m\u1eadt kh\u1ea9u FIDO tr\u00ean n\u1ec1n t\u1ea3ng Microsoft Entra ID. L\u1ed7 h\u1ed5ng n\u00e0y bi\u1ebfn m\u1ed9t c\u01a1 ch\u1ebf v\u1ed1n \u0111\u01b0\u1ee3c coi l\u00e0 chu\u1ea9n m\u1ef1c ch\u1ed1ng phishing th\u00e0nh m\u1ed9t \u0111i\u1ec3m y\u1ebfu c\u00f3 th\u1ec3 b\u1ecb khai th\u00e1c. C\u1ed1t l\u00f5i c\u1ee7a ph\u01b0\u01a1ng th\u1ee9c t\u1ea5n c\u00f4ng n\u1eb1m \u1edf vi\u1ec7c l\u1ee3i d\u1ee5ng m\u00f4 h\u00ecnh Adversary-in-the-Middle (AiTM) v\u1edbi c\u00e1c c\u00f4ng c\u1ee5 nh\u01b0 Evilginx \u0111\u1ec3 ch\u1eb7n v\u00e0 ch\u1ec9nh s\u1eeda l\u01b0u l\u01b0\u1ee3ng x\u00e1c th\u1ef1c.<\/p>\n

Khi ng\u01b0\u1eddi d\u00f9ng truy c\u1eadp v\u00e0o m\u1ed9t trang \u0111\u0103ng nh\u1eadp gi\u1ea3 m\u1ea1o, m\u00e1y ch\u1ee7 AiTM s\u1ebd g\u1eedi t\u1edbi d\u1ecbch v\u1ee5 Microsoft Entra ID m\u1ed9t chu\u1ed7i User-Agent \u0111\u00e3 b\u1ecb thay \u0111\u1ed5i, khi\u1ebfn h\u1ec7 th\u1ed1ng x\u00e1c \u0111\u1ecbnh sai r\u1eb1ng thi\u1ebft b\u1ecb kh\u00f4ng h\u1ed7 tr\u1ee3 FIDO. Thay v\u00ec ti\u1ebfn h\u00e0nh x\u00e1c th\u1ef1c b\u1eb1ng kh\u00f3a b\u1ea3o m\u1eadt FIDO2\/WebAuthn, h\u1ec7 th\u1ed1ng s\u1ebd t\u1ef1 \u0111\u1ed9ng chuy\u1ec3n sang ph\u01b0\u01a1ng th\u1ee9c x\u00e1c th\u1ef1c d\u1ef1 ph\u00f2ng nh\u01b0 Microsoft Authenticator, tin nh\u1eafn SMS ho\u1eb7c m\u00e3 OTP. \u0110\u00e2y l\u00e0 nh\u1eefng k\u00eanh c\u00f3 m\u1ee9c b\u1ea3o m\u1eadt th\u1ea5p h\u01a1n v\u00e0 d\u1ec5 b\u1ecb ch\u1eb7n b\u1eaft trong m\u00f4i tr\u01b0\u1eddng t\u1ea5n c\u00f4ng m\u1ea1ng.<\/p>\n

\n
\"1755145499193.png\"<\/div>\n

L\u1ed7i \u0111\u0103ng nh\u1eadp (tr\u00e1i) v\u00e0 c\u00e1c t\u00f9y ch\u1ecdn d\u1ef1 ph\u00f2ng (ph\u1ea3i)<\/i>\u200b<\/div>\n

T\u1ea1i th\u1eddi \u0111i\u1ec3m chuy\u1ec3n \u0111\u1ed5i sang x\u00e1c th\u1ef1c d\u1ef1 ph\u00f2ng, k\u1ebb t\u1ea5n c\u00f4ng c\u00f3 th\u1ec3 \u0111\u00e1nh c\u1eafp cookie phi\u00ean ho\u1eb7c token truy c\u1eadp. D\u1eef li\u1ec7u n\u00e0y cho ph\u00e9p ch\u00fang gi\u00e0nh quy\u1ec1n truy c\u1eadp h\u1ee3p l\u1ec7 v\u00e0o t\u00e0i kho\u1ea3n c\u1ee7a n\u1ea1n nh\u00e2n m\u00e0 kh\u00f4ng c\u1ea7n m\u1eadt kh\u1ea9u hay v\u01b0\u1ee3t qua th\u00eam l\u1edbp x\u00e1c th\u1ef1c. Khi \u0111\u00e3 ki\u1ec3m so\u00e1t phi\u00ean l\u00e0m vi\u1ec7c, tin t\u1eb7c c\u00f3 th\u1ec3 tri\u1ec3n khai c\u00e1c chi\u1ebfn d\u1ecbch phishing n\u00e2ng cao, di chuy\u1ec3n ngang trong h\u1ec7 th\u1ed1ng doanh nghi\u1ec7p ho\u1eb7c chi\u1ebfm \u0111o\u1ea1t ho\u00e0n to\u00e0n danh t\u00ednh s\u1ed1 c\u1ee7a ng\u01b0\u1eddi d\u00f9ng.<\/p>\n

L\u1ed7 h\u1ed5ng Microsoft Office: Nguy c\u01a1 th\u1ef1c thi m\u00e3 t\u1eeb xa<\/b>\u200b<\/h3>\n

Ba l\u1ed7 h\u1ed5ng nghi\u00eam tr\u1ecdng d\u1ea1ng use-after-free v\u1eeba \u0111\u01b0\u1ee3c ph\u00e1t hi\u1ec7n trong b\u1ed9 \u1ee9ng d\u1ee5ng Microsoft Office, g\u1ed3m CVE-2025-53731, CVE-2025-53740 v\u00e0 CVE-2025-53730. Hai l\u1ed7 h\u1ed5ng \u0111\u1ea7u ti\u00ean \u0111\u01b0\u1ee3c x\u1ebfp lo\u1ea1i Critical v\u1edbi \u0111i\u1ec3m CVSS cao nh\u1ea5t 8.4, cho ph\u00e9p k\u1ebb t\u1ea5n c\u00f4ng th\u1ef1c thi m\u00e3 t\u1eeb xa m\u00e0 kh\u00f4ng c\u1ea7n b\u1ea5t k\u1ef3 t\u01b0\u01a1ng t\u00e1c n\u00e0o t\u1eeb ng\u01b0\u1eddi d\u00f9ng. C\u00e1c l\u1ed7 h\u1ed5ng n\u00e0y t\u00e1c \u0111\u1ed9ng tr\u1ef1c ti\u1ebfp \u0111\u1ebfn nh\u1eefng th\u00e0nh ph\u1ea7n c\u1ed1t l\u00f5i c\u1ee7a Office, m\u1edf ra nguy c\u01a1 x\u00e2m nh\u1eadp s\u00e2u v\u00e0o h\u1ec7 th\u1ed1ng m\u00e0 kh\u00f4ng \u0111\u1ec3 l\u1ea1i d\u1ea5u hi\u1ec7u r\u00f5 r\u1ec7t.<\/p>\n

CVE-2025-53730 nh\u1eafm m\u1ee5c ti\u00eau v\u00e0o Microsoft Office Visio. D\u00f9 \u0111\u01b0\u1ee3c ph\u00e2n lo\u1ea1i \u1edf m\u1ee9c quan tr\u1ecdng thay v\u00ec Critical, l\u1ed7 h\u1ed5ng n\u00e0y v\u1eabn ti\u1ec1m \u1ea9n r\u1ee7i ro l\u1edbn, \u0111\u1eb7c bi\u1ec7t \u0111\u1ed1i v\u1edbi c\u00e1c t\u1ed5 ch\u1ee9c s\u1eed d\u1ee5ng Visio \u0111\u1ec3 thi\u1ebft k\u1ebf s\u01a1 \u0111\u1ed3, b\u1ea3n v\u1ebd k\u1ef9 thu\u1eadt ho\u1eb7c lu\u1ed3ng d\u1eef li\u1ec7u nghi\u1ec7p v\u1ee5. Trong c\u00e1c m\u00f4i tr\u01b0\u1eddng n\u00e0y, ch\u1ec9 m\u1ed9t t\u1ec7p Visio b\u1ecb khai th\u00e1c c\u0169ng c\u00f3 th\u1ec3 tr\u1edf th\u00e0nh \u0111i\u1ec3m kh\u1edfi \u0111\u1ea7u cho m\u1ed9t chi\u1ebfn d\u1ecbch t\u1ea5n c\u00f4ng quy m\u00f4 l\u1edbn.<\/p>\n

B\u1ea3n ch\u1ea5t use-after-free c\u1ee7a c\u00e1c l\u1ed7 h\u1ed5ng n\u00e0y cho ph\u00e9p k\u1ebb t\u1ea5n c\u00f4ng thao t\u00fang b\u1ed9 nh\u1edb \u0111\u00e3 \u0111\u01b0\u1ee3c gi\u1ea3i ph\u00f3ng nh\u01b0ng ch\u01b0a \u0111\u01b0\u1ee3c x\u00f3a s\u1ea1ch, t\u1eeb \u0111\u00f3 ghi \u0111\u00e8 ho\u1eb7c ch\u00e8n d\u1eef li\u1ec7u \u0111\u1ed9c h\u1ea1i. K\u1ef9 thu\u1eadt n\u00e0y c\u00f3 th\u1ec3 v\u00f4 hi\u1ec7u h\u00f3a c\u00e1c c\u01a1 ch\u1ebf b\u1ea3o v\u1ec7 b\u1ed9 nh\u1edb hi\u1ec7n \u0111\u1ea1i, m\u1edf \u0111\u01b0\u1eddng cho vi\u1ec7c tri\u1ec3n khai malware, \u0111\u00e1nh c\u1eafp d\u1eef li\u1ec7u nh\u1ea1y c\u1ea3m ho\u1eb7c duy tr\u00ec quy\u1ec1n truy c\u1eadp l\u00e2u d\u00e0i tr\u00ean h\u1ec7 th\u1ed1ng b\u1ecb x\u00e2m nh\u1eadp. Trong m\u00f4i tr\u01b0\u1eddng doanh nghi\u1ec7p, m\u1ee9c \u0111\u1ed9 nguy hi\u1ec3m c\u00e0ng gia t\u0103ng khi Microsoft Office th\u01b0\u1eddng \u0111\u01b0\u1ee3c t\u00edch h\u1ee3p s\u00e2u v\u1edbi c\u00e1c d\u1ecbch v\u1ee5 \u0111\u00e1m m\u00e2y v\u00e0 h\u1ec7 th\u1ed1ng qu\u1ea3n l\u00fd t\u00e0i li\u1ec7u.<\/p>\n

Microsoft Teams: RCE nguy hi\u1ec3m cho d\u1eef li\u1ec7u ng\u01b0\u1eddi d\u00f9ng\u200b<\/h3>\n

Microsoft Teams v\u1eeba ph\u00e1t hi\u1ec7n m\u1ed9t l\u1ed7 h\u1ed5ng nghi\u00eam tr\u1ecdng \u0111\u01b0\u1ee3c g\u00e1n m\u00e3 CVE-2025-53783, l\u00e0 m\u1ed9t l\u1ed7i tr\u00e0n b\u1ed9 \u0111\u1ec7m tr\u00ean heap (heap-based buffer overflow). Khi b\u1ecb khai th\u00e1c, l\u1ed7 h\u1ed5ng cho ph\u00e9p k\u1ebb t\u1ea5n c\u00f4ng \u0111\u1ecdc, ghi ho\u1eb7c xo\u00e1 tin nh\u1eafn ng\u01b0\u1eddi d\u00f9ng trong m\u00f4i tr\u01b0\u1eddng Teams.<\/p>\n

Vi\u1ec7c khai th\u00e1c l\u1ed7 h\u1ed5ng y\u00eau c\u1ea7u t\u01b0\u01a1ng t\u00e1c t\u1eeb ph\u00eda ng\u01b0\u1eddi d\u00f9ng v\u00e0 c\u00f3 \u0111\u1ed9 ph\u1ee9c t\u1ea1p t\u01b0\u01a1ng \u0111\u1ed1i cao. Song \u0111i\u1ec1u n\u00e0y kh\u00f4ng l\u00e0m gi\u1ea3m m\u1ee9c \u0111\u1ed9 nghi\u00eam tr\u1ecdng c\u1ee7a s\u1ef1 c\u1ed1 b\u1edfi t\u1ea5n c\u00f4ng c\u00f3 th\u1ec3 d\u1eabn \u0111\u1ebfn chi\u1ebfm \u0111o\u1ea1t t\u00e0i kho\u1ea3n h\u1ee3p l\u1ec7, m\u1edf \u0111\u01b0\u1eddng cho vi\u1ec7c l\u00e2y lan sang c\u00e1c h\u1ec7 th\u1ed1ng ho\u1eb7c d\u1ecbch v\u1ee5 li\u00ean quan kh\u00e1c. Trong m\u00f4i tr\u01b0\u1eddng doanh nghi\u1ec7p hi\u1ec7n \u0111\u1ea1i, Teams kh\u00f4ng ch\u1ec9 l\u00e0 n\u1ec1n t\u1ea3ng nh\u1eafn tin m\u00e0 c\u00f2n l\u00e0 trung t\u00e2m k\u1ebft n\u1ed1i v\u1edbi l\u1ecbch bi\u1ec3u, t\u00e0i li\u1ec7u, SharePoint v\u00e0 c\u00e1c c\u00f4ng c\u1ee5 c\u1ed9ng t\u00e1c kh\u00e1c, \u0111i\u1ec1u n\u00e0y khi\u1ebfn l\u1ed7 h\u1ed5ng n\u00e0y c\u00e0ng tr\u1edf n\u00ean \u0111\u00e1ng lo ng\u1ea1i h\u01a1n bao gi\u1edd h\u1ebft.<\/p>\n

S\u1ef1 xu\u1ea5t hi\u1ec7n \u0111\u1ed3ng th\u1eddi c\u1ee7a c\u00e1c l\u1ed7 h\u1ed5ng tr\u1ea3i r\u1ed9ng t\u1eeb h\u1ea1 t\u1ea7ng m\u00e1y ch\u1ee7, h\u1ec7 \u0111i\u1ec1u h\u00e0nh, b\u1ed9 \u1ee9ng d\u1ee5ng v\u0103n ph\u00f2ng \u0111\u1ebfn n\u1ec1n t\u1ea3ng c\u1ed9ng t\u00e1c v\u00e0 x\u00e1c th\u1ef1c danh t\u00ednh cho th\u1ea5y b\u1ec1 m\u1eb7t t\u1ea5n c\u00f4ng c\u1ee7a doanh nghi\u1ec7p \u0111ang ng\u00e0y c\u00e0ng m\u1edf r\u1ed9ng. Tin t\u1eb7c kh\u00f4ng c\u00f2n ch\u1ec9 nh\u1eafm v\u00e0o m\u1ed9t \u0111i\u1ec3m y\u1ebfu \u0111\u01a1n l\u1ebb m\u00e0 ph\u1ed1i h\u1ee3p khai th\u00e1c nhi\u1ec1u m\u1eaft x\u00edch \u0111\u1ec3 x\u00e2m nh\u1eadp v\u00e0 duy tr\u00ec hi\u1ec7n di\u1ec7n l\u00e2u d\u00e0i. Trong b\u1ed1i c\u1ea3nh n\u00e0y, vi\u1ec7c tri\u1ec3n khai b\u1ea3n v\u00e1 nhanh ch\u00f3ng, k\u1ebft h\u1ee3p v\u1edbi gi\u00e1m s\u00e1t ch\u1ee7 \u0111\u1ed9ng v\u00e0 ki\u1ec3m th\u1eed an ninh \u0111\u1ecbnh k\u1ef3, kh\u00f4ng c\u00f2n l\u00e0 l\u1ef1a ch\u1ecdn m\u00e0 l\u00e0 y\u00eau c\u1ea7u b\u1eaft bu\u1ed9c n\u1ebfu t\u1ed5 ch\u1ee9c mu\u1ed1n b\u1ea3o v\u1ec7 d\u1eef li\u1ec7u, duy tr\u00ec ho\u1ea1t \u0111\u1ed9ng v\u00e0 gi\u1eef v\u1eefng ni\u1ec1m tin c\u1ee7a kh\u00e1ch h\u00e0ng.<\/p>\n

T\u1ed5ng h\u1ee3p<\/i><\/b><\/div>\n","protected":false},"excerpt":{"rendered":"

G\u1ea7n \u0111\u00e2y, m\u1ed9t lo\u1ea1t l\u1ed7 h\u1ed5ng nghi\u00eam tr\u1ecdng \u0111\u00e3 \u0111\u01b0\u1ee3c ph\u00e1t hi\u1ec7n tr\u00ean c\u00e1c s\u1ea3n ph\u1ea9m ch\u1ee7 l\u1ef1c c\u1ee7a Microsoft, t\u1eeb Windows Server, Windows 10\/11, Office, Teams \u0111\u1ebfn Microsoft Entra ID. C\u00e1c l\u1ed7 h\u1ed5ng n\u00e0y, d\u00f9 thu\u1ed9c nhi\u1ec1u lo\u1ea1i kh\u00e1c nhau, \u0111\u1ec1u ti\u1ec1m \u1ea9n r\u1ee7i ro cao cho doanh nghi\u1ec7p v\u00e0 ng\u01b0\u1eddi d\u00f9ng c\u00e1 nh\u00e2n, […]<\/p>\n","protected":false},"author":20,"featured_media":46528,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"tdm_status":"","tdm_grid_status":"","footnotes":""},"categories":[3,24,35],"tags":[],"class_list":["post-46527","post","type-post","status-publish","format-standard","has-post-thumbnail","category-canh-bao-khuyen-nghi","category-tin-noi-bat","category-tin-tuc-su-kien"],"amp_enabled":true,"_links":{"self":[{"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/posts\/46527","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/users\/20"}],"replies":[{"embeddable":true,"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/comments?post=46527"}],"version-history":[{"count":1,"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/posts\/46527\/revisions"}],"predecessor-version":[{"id":46529,"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/posts\/46527\/revisions\/46529"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/media\/46528"}],"wp:attachment":[{"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/media?parent=46527"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/categories?post=46527"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/tags?post=46527"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}