{"id":47788,"date":"2026-05-01T22:51:17","date_gmt":"2026-05-01T15:51:17","guid":{"rendered":"https:\/\/antoanthongtinhaiphong.gov.vn\/?p=47788"},"modified":"2026-05-05T22:52:04","modified_gmt":"2026-05-05T15:52:04","slug":"nguy-co-tan-cong-lan-rong-tu-lo-hong-spoofing-tren-sharepoint-hang-nghin-may-chu-chua-cap-nhat-ban-va","status":"publish","type":"post","link":"https:\/\/antoanthongtinhaiphong.gov.vn\/nguy-co-tan-cong-lan-rong-tu-lo-hong-spoofing-tren-sharepoint-hang-nghin-may-chu-chua-cap-nhat-ban-va\/","title":{"rendered":"Nguy c\u01a1 t\u1ea5n c\u00f4ng lan r\u1ed9ng t\u1eeb l\u1ed7 h\u1ed5ng Spoofing tr\u00ean SharePoint: H\u00e0ng ngh\u00ecn m\u00e1y ch\u1ee7 ch\u01b0a c\u1eadp nh\u1eadt b\u1ea3n v\u00e1"},"content":{"rendered":"<div class=\"d-flex flex-wrap\">\n<div class=\"h6 text-dark\"><i class=\"fas fa-user-edit\"><\/i>\u00a0<a href=\"https:\/\/antoanthongtin.vn\/bai-viet?AuthorIds=H%E1%BB%93ng%20%C4%90%E1%BA%A1t\">H\u1ed3ng \u0110\u1ea1t<\/a><\/div>\n<\/div>\n<p class=\"mt-3 excerpt\">H\u01a1n 1.300 m\u00e1y ch\u1ee7 Microsoft SharePoint ti\u1ebfp x\u00fac tr\u00ean Internet v\u1eabn ch\u01b0a \u0111\u01b0\u1ee3c v\u00e1 l\u1ed7i b\u1ea3o m\u1eadt li\u00ean quan \u0111\u1ebfn l\u1ed7 h\u1ed5ng Spoofing, m\u1ed9t l\u1ed7 h\u1ed5ng \u0111\u01b0\u1ee3c khai th\u00e1c t\u1eeb ng\u00e0y \u0111\u1ea7u ti\u00ean v\u00e0 v\u1eabn \u0111ang b\u1ecb l\u1ee3i d\u1ee5ng trong c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng hi\u1ec7n t\u1ea1i.<\/p>\n<article id=\"content\" class=\"content gradient\"><img decoding=\"async\" src=\"https:\/\/dulieu.antoanthongtin.gov.vn\/tapchiantoanthongtin\/070fb858-3cae-4462-a38d-f7821d6b3f14\/microsoft_sharepoint.png\" \/><\/p>\n<p>\u0110\u01b0\u1ee3c theo d\u00f5i v\u1edbi m\u00e3 \u0111\u1ecbnh danh CVE-2026-32201, l\u1ed7 h\u1ed5ng n\u00e0y \u1ea3nh h\u01b0\u1edfng \u0111\u1ebfn SharePoint Enterprise Server 2016, SharePoint Server 2019 v\u00e0 SharePoint Server Subscription Edition (phi\u00ean b\u1ea3n on-premises m\u1edbi nh\u1ea5t, s\u1eed d\u1ee5ng m\u00f4 h\u00ecnh \u201cc\u1eadp nh\u1eadt li\u00ean t\u1ee5c\u201d).<\/p>\n<p>Nh\u01b0 Microsoft \u0111\u00e3 gi\u1ea3i th\u00edch khi v\u00e1 l\u1ed7i b\u1ea3o m\u1eadt n\u00e0y trong b\u1ea3n c\u1eadp nh\u1eadt\u00a0<a href=\"https:\/\/antoanthongtin.vn\/tin\/microsoft-phat-hanh-ban-va-patch-tuesday-thang-4-2026-khac-phuc-164-lo-hong-bao-mat\">Patch Tuesday<\/a>\u00a0th\u00e1ng 4\/2026, vi\u1ec7c khai th\u00e1c th\u00e0nh c\u00f4ng cho ph\u00e9p c\u00e1c t\u00e1c nh\u00e2n \u0111e d\u1ecda kh\u00f4ng c\u00f3 \u0111\u1eb7c quy\u1ec1n th\u1ef1c hi\u1ec7n gi\u1ea3 m\u1ea1o m\u1ea1ng, b\u1eb1ng c\u00e1ch l\u1ee3i d\u1ee5ng \u0111i\u1ec3m y\u1ebfu trong vi\u1ec7c x\u00e1c th\u1ef1c \u0111\u1ea7u v\u00e0o kh\u00f4ng \u0111\u00fang c\u00e1ch trong c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng c\u00f3 \u0111\u1ed9 ph\u1ee9c t\u1ea1p th\u1ea5p, kh\u00f4ng y\u00eau c\u1ea7u t\u01b0\u01a1ng t\u00e1c c\u1ee7a ng\u01b0\u1eddi d\u00f9ng.<\/p>\n<p>\u201cK\u1ebb t\u1ea5n c\u00f4ng khai th\u00e1c th\u00e0nh c\u00f4ng l\u1ed7 h\u1ed5ng n\u00e0y c\u00f3 th\u1ec3 xem m\u1ed9t s\u1ed1 th\u00f4ng tin nh\u1ea1y c\u1ea3m, thay \u0111\u1ed5i th\u00f4ng tin \u0111\u00e3 \u0111\u01b0\u1ee3c ti\u1ebft l\u1ed9, nh\u01b0ng kh\u00f4ng th\u1ec3 h\u1ea1n ch\u1ebf quy\u1ec1n truy c\u1eadp v\u00e0o t\u00e0i nguy\u00ean\u201d, th\u00f4ng b\u00e1o cho bi\u1ebft.<\/p>\n<p>M\u1eb7c d\u00f9 Microsoft t\u1eebng c\u1ea3nh b\u00e1o v\u1ec1 l\u1ed7 h\u1ed5ng n\u00e0y, x\u1ebfp n\u00f3 v\u00e0o lo\u1ea1i l\u1ed7 h\u1ed5ng\u00a0<a href=\"https:\/\/antoanthongtin.vn\/tin\/tin-tac-trung-quoc-khai-thac-lo-hong-bao-mat-zero-day-cua-dell-tu-giua-nam-2024\">zero-day<\/a>, nh\u01b0ng g\u00e3 kh\u1ed5ng l\u1ed3 c\u00f4ng ngh\u1ec7 v\u1eabn ch\u01b0a ti\u1ebft l\u1ed9 c\u00e1ch th\u1ee9c n\u00f3 b\u1ecb khai th\u00e1c trong c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng, ho\u1eb7c li\u00ean k\u1ebft ho\u1ea1t \u0111\u1ed9ng \u0111\u1ed9c h\u1ea1i n\u00e0y v\u1edbi m\u1ed9t t\u00e1c nh\u00e2n \u0111e d\u1ecda ho\u1eb7c nh\u00f3m tin t\u1eb7c c\u1ee5 th\u1ec3 n\u00e0o.<\/p>\n<p>Ng\u00e0y 21\/4, Shadowserver c\u1ea3nh b\u00e1o r\u1eb1ng h\u01a1n 1.300 m\u00e1y ch\u1ee7 Microsoft\u00a0<a href=\"https:\/\/antoanthongtin.vn\/tin\/canh-bao-tin-tac-trung-quoc-khai-thac-lo-hong-sharepoint-toolshell-tren-dien-rong\">SharePoint<\/a>\u00a0ch\u01b0a \u0111\u01b0\u1ee3c v\u00e1 l\u1ed7i v\u1eabn \u0111ang ch\u1edd \u0111\u01b0\u1ee3c t\u0103ng c\u01b0\u1eddng b\u1ea3o m\u1eadt, trong khi ch\u1ec9 c\u00f3 ch\u01b0a \u0111\u1ebfn 200 h\u1ec7 th\u1ed1ng \u0111\u01b0\u1ee3c v\u00e1 l\u1ed7i k\u1ec3 t\u1eeb khi Microsoft ph\u00e1t h\u00e0nh b\u1ea3n c\u1eadp nh\u1eadt b\u1ea3o m\u1eadt CVE-2026-32201.<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/dulieu.antoanthongtin.gov.vn\/tapchiantoanthongtin\/a140f5f6-c9b8-4205-9366-31ca947d8841\/SharePoint-servers-vulnerable-CVE-2026-32201.png\" \/><\/p>\n<p><em>M\u00e1y ch\u1ee7 SharePoint d\u1ec5 b\u1ecb t\u1ea5n c\u00f4ng CVE-2026-32201<\/em><\/p>\n<p>C\u00f9ng ng\u00e0y, Microsoft ph\u00e1t h\u00e0nh b\u1ea3n v\u00e1 kh\u1eafc ph\u1ee5c l\u1ed7 h\u1ed5ng CVE-2026-32201, C\u01a1 quan An ninh m\u1ea1ng v\u00e0 C\u01a1 s\u1edf h\u1ea1 t\u1ea7ng M\u1ef9 (CISA) \u0111\u00e3 th\u00eam l\u1ed7 h\u1ed5ng n\u00e0y v\u00e0o Danh m\u1ee5c c\u00e1c l\u1ed7 h\u1ed5ng \u0111\u00e3 b\u1ecb khai th\u00e1c (KEV) c\u1ee7a m\u00ecnh. C\u01a1 quan n\u00e0y c\u0169ng ra l\u1ec7nh cho c\u00e1c c\u01a1 quan thu\u1ed9c nh\u00e1nh h\u00e0nh ph\u00e1p d\u00e2n s\u1ef1 li\u00ean bang (FCEB) t\u1ea1i M\u1ef9 v\u00e1 l\u1ed7i m\u00e1y ch\u1ee7 SharePoint trong v\u00f2ng hai tu\u1ea7n, tr\u01b0\u1edbc ng\u00e0y 28\/4.<\/p>\n<p>\u201cLo\u1ea1i l\u1ed7 h\u1ed5ng n\u00e0y l\u00e0 m\u1ed9t ph\u01b0\u01a1ng th\u1ee9c t\u1ea5n c\u00f4ng th\u01b0\u1eddng xuy\u00ean c\u1ee7a c\u00e1c t\u00e1c nh\u00e2n m\u1ea1ng \u0111\u1ed9c h\u1ea1i v\u00e0 ti\u1ec1m \u1ea9n nh\u1eefng r\u1ee7i ro \u0111\u00e1ng k\u1ec3 \u0111\u1ed1i v\u1edbi to\u00e0n b\u1ed9 h\u1ec7 th\u1ed1ng ch\u00ednh ph\u1ee7 li\u00ean bang. H\u00e3y \u00e1p d\u1ee5ng c\u00e1c bi\u1ec7n ph\u00e1p gi\u1ea3m thi\u1ec3u c\u1ee7a nh\u00e0 cung c\u1ea5p, tu\u00e2n theo h\u01b0\u1edbng d\u1eabn BOD 22-01 hi\u1ec7n h\u00e0nh \u0111\u1ed1i v\u1edbi c\u00e1c d\u1ecbch v\u1ee5 \u0111\u00e1m m\u00e2y, ho\u1eb7c ng\u1eebng s\u1eed d\u1ee5ng s\u1ea3n ph\u1ea9m n\u1ebfu kh\u00f4ng c\u00f3 bi\u1ec7n ph\u00e1p gi\u1ea3m thi\u1ec3u n\u00e0o kh\u1ea3 d\u1ee5ng\u201d, c\u1ea3nh b\u00e1o cho bi\u1ebft.<\/p>\n<p>M\u1edbi \u0111\u00e2y, CISA c\u0169ng c\u1ea3nh b\u00e1o v\u1ec1 l\u1ed7 h\u1ed5ng\u00a0<a href=\"https:\/\/antoanthongtin.vn\/tin\/cisco-va-cac-lo-hong-dos-va-leo-thang-dac-quyen-nghiem-trong\">leo thang \u0111\u1eb7c quy\u1ec1n<\/a>\u00a0trong Windows Task Host \u0111ang b\u1ecb khai th\u00e1c tr\u00ean th\u1ef1c t\u1ebf, \u0111\u1ed3ng th\u1eddi khuy\u1ebfn c\u00e1o c\u00e1c c\u01a1 quan li\u00ean bang c\u1ea7n b\u1ea3o m\u1eadt thi\u1ebft b\u1ecb c\u1ee7a h\u1ecd c\u00e0ng s\u1edbm c\u00e0ng t\u1ed1t, v\u00ec n\u00f3 c\u00f3 th\u1ec3 cho ph\u00e9p k\u1ebb t\u1ea5n c\u00f4ng gi\u00e0nh \u0111\u01b0\u1ee3c \u0111\u1eb7c quy\u1ec1n SYSTEM tr\u00ean c\u00e1c thi\u1ebft b\u1ecb d\u1ec5 b\u1ecb t\u1ed5n th\u01b0\u01a1ng.<\/p>\n<\/article>\n","protected":false},"excerpt":{"rendered":"<p>\u00a0H\u1ed3ng \u0110\u1ea1t H\u01a1n 1.300 m\u00e1y ch\u1ee7 Microsoft SharePoint ti\u1ebfp x\u00fac tr\u00ean Internet v\u1eabn ch\u01b0a \u0111\u01b0\u1ee3c v\u00e1 l\u1ed7i b\u1ea3o m\u1eadt li\u00ean quan \u0111\u1ebfn l\u1ed7 h\u1ed5ng Spoofing, m\u1ed9t l\u1ed7 h\u1ed5ng \u0111\u01b0\u1ee3c khai th\u00e1c t\u1eeb ng\u00e0y \u0111\u1ea7u ti\u00ean v\u00e0 v\u1eabn \u0111ang b\u1ecb l\u1ee3i d\u1ee5ng trong c\u00e1c cu\u1ed9c t\u1ea5n c\u00f4ng hi\u1ec7n t\u1ea1i. \u0110\u01b0\u1ee3c theo d\u00f5i v\u1edbi m\u00e3 \u0111\u1ecbnh danh [&hellip;]<\/p>\n","protected":false},"author":20,"featured_media":47789,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"tdm_status":"","tdm_grid_status":"","footnotes":""},"categories":[3,24,35],"tags":[],"class_list":["post-47788","post","type-post","status-publish","format-standard","has-post-thumbnail","category-canh-bao-khuyen-nghi","category-tin-noi-bat","category-tin-tuc-su-kien"],"amp_enabled":true,"_links":{"self":[{"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/posts\/47788","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/users\/20"}],"replies":[{"embeddable":true,"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/comments?post=47788"}],"version-history":[{"count":1,"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/posts\/47788\/revisions"}],"predecessor-version":[{"id":47790,"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/posts\/47788\/revisions\/47790"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/media\/47789"}],"wp:attachment":[{"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/media?parent=47788"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/categories?post=47788"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/tags?post=47788"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}