{"id":47825,"date":"2026-05-06T15:40:04","date_gmt":"2026-05-06T08:40:04","guid":{"rendered":"https:\/\/antoanthongtinhaiphong.gov.vn\/?p=47825"},"modified":"2026-05-13T15:40:47","modified_gmt":"2026-05-13T08:40:47","slug":"lo-hong-trong-moveit-automation-cho-phep-vuot-xac-thuc-chiem-quyen-he-thong","status":"publish","type":"post","link":"https:\/\/antoanthongtinhaiphong.gov.vn\/lo-hong-trong-moveit-automation-cho-phep-vuot-xac-thuc-chiem-quyen-he-thong\/","title":{"rendered":"L\u1ed7 h\u1ed5ng trong MOVEit Automation cho ph\u00e9p v\u01b0\u1ee3t x\u00e1c th\u1ef1c, chi\u1ebfm quy\u1ec1n h\u1ec7 th\u1ed1ng"},"content":{"rendered":"
M\u1ed9t c\u1ea3nh b\u00e1o an ninh m\u1edbi v\u1eeba \u0111\u01b0\u1ee3c ph\u00e1t \u0111i t\u1eeb Progress Software khi hai l\u1ed7 h\u1ed5ng trong n\u1ec1n t\u1ea3ng truy\u1ec1n t\u1ea3i file doanh nghi\u1ec7p MOVEit Automation \u0111\u01b0\u1ee3c c\u00f4ng b\u1ed1. Trong \u0111\u00f3, m\u1ed9t l\u1ed7 h\u1ed5ng c\u00f3 m\u1ee9c \u0111\u1ed9 nguy hi\u1ec3m g\u1ea7n nh\u01b0 t\u1ed1i \u0111a c\u00f3 th\u1ec3 cho ph\u00e9p k\u1ebb t\u1ea5n c\u00f4ng v\u01b0\u1ee3t qua c\u01a1 ch\u1ebf x\u00e1c th\u1ef1c v\u00e0 chi\u1ebfm quy\u1ec1n \u0111i\u1ec1u khi\u1ec3n h\u1ec7 th\u1ed1ng, \u0111\u1eb7t ra r\u1ee7i ro l\u1edbn \u0111\u1ed1i v\u1edbi c\u00e1c t\u1ed5 ch\u1ee9c \u0111ang s\u1eed d\u1ee5ng gi\u1ea3i ph\u00e1p n\u00e0y.<\/b>
\n\u200b<\/div>\n
\"1777969569594.png\"<\/a>\u200b<\/div>\n
\nV\u1ec1 b\u1ea3n ch\u1ea5t, MOVEit Automation l\u00e0 m\u1ed9t h\u1ec7 th\u1ed1ng Managed File Transfer (MFT) \u0111\u01b0\u1ee3c nhi\u1ec1u doanh nghi\u1ec7p s\u1eed d\u1ee5ng \u0111\u1ec3 t\u1ef1 \u0111\u1ed9ng h\u00f3a vi\u1ec7c trao \u0111\u1ed5i d\u1eef li\u1ec7u n\u1ed9i b\u1ed9 v\u00e0 v\u1edbi \u0111\u1ed1i t\u00e1c. Ch\u00ednh v\u00ec \u0111\u00f3ng vai tr\u00f2 trung t\u00e2m trong lu\u1ed3ng d\u1eef li\u1ec7u, b\u1ea5t k\u1ef3 l\u1ed7 h\u1ed5ng n\u00e0o trong n\u1ec1n t\u1ea3ng n\u00e0y \u0111\u1ec1u c\u00f3 th\u1ec3 t\u1ea1o ra t\u00e1c \u0111\u1ed9ng d\u00e2y chuy\u1ec1n \u0111\u1ebfn to\u00e0n b\u1ed9 h\u1ec7 th\u1ed1ng.<\/p>\n

Hai l\u1ed7 h\u1ed5ng \u0111\u01b0\u1ee3c x\u00e1c \u0111\u1ecbnh g\u1ed3m CVE-2026-4670 v\u1edbi \u0111i\u1ec3m CVSS 9,8 v\u00e0 CVE-2026-5174 v\u1edbi \u0111i\u1ec3m CVSS 7,7. L\u1ed7 h\u1ed5ng \u0111\u1ea7u ti\u00ean l\u00e0 l\u1ed7i bypass x\u00e1c th\u1ef1c, cho ph\u00e9p k\u1ebb t\u1ea5n c\u00f4ng truy c\u1eadp h\u1ec7 th\u1ed1ng m\u00e0 kh\u00f4ng c\u1ea7n \u0111\u0103ng nh\u1eadp h\u1ee3p l\u1ec7. L\u1ed7 h\u1ed5ng th\u1ee9 hai li\u00ean quan \u0111\u1ebfn ki\u1ec3m tra \u0111\u1ea7u v\u00e0o kh\u00f4ng \u0111\u1ea7y \u0111\u1ee7, c\u00f3 th\u1ec3 b\u1ecb l\u1ee3i d\u1ee5ng \u0111\u1ec3 leo thang \u0111\u1eb7c quy\u1ec1n sau khi \u0111\u00e3 c\u00f3 quy\u1ec1n truy c\u1eadp ban \u0111\u1ea7u.<\/p>\n

Nguy\u00ean nh\u00e2n c\u1ed1t l\u00f5i n\u1eb1m \u1edf c\u00e1ch h\u1ec7 th\u1ed1ng x\u1eed l\u00fd c\u00e1c y\u00eau c\u1ea7u g\u1eedi \u0111\u1ebfn th\u00f4ng qua c\u00e1c c\u1ed5ng giao ti\u1ebfp backend. Khi c\u01a1 ch\u1ebf x\u00e1c th\u1ef1c v\u00e0 ki\u1ec3m tra d\u1eef li\u1ec7u \u0111\u1ea7u v\u00e0o kh\u00f4ng \u0111\u01b0\u1ee3c tri\u1ec3n khai ch\u1eb7t ch\u1ebd, k\u1ebb t\u1ea5n c\u00f4ng c\u00f3 th\u1ec3 g\u1eedi c\u00e1c y\u00eau c\u1ea7u \u0111\u01b0\u1ee3c \u201cch\u1ebf t\u1ea1o\u201d \u0111\u1eb7c bi\u1ec7t \u0111\u1ec3 \u0111\u00e1nh l\u1eeba h\u1ec7 th\u1ed1ng.<\/p>\n

V\u1ec1 m\u1eb7t k\u1ef9 thu\u1eadt, k\u1ecbch b\u1ea3n khai th\u00e1c c\u00f3 th\u1ec3 di\u1ec5n ra theo chu\u1ed7i. Tr\u01b0\u1edbc h\u1ebft, attacker t\u1eadn d\u1ee5ng CVE-2026-4670 \u0111\u1ec3 v\u01b0\u1ee3t qua l\u1edbp x\u00e1c th\u1ef1c v\u00e0 truy c\u1eadp v\u00e0o h\u1ec7 th\u1ed1ng. Sau \u0111\u00f3, th\u00f4ng qua CVE-2026-5174, ch\u00fang c\u00f3 th\u1ec3 n\u00e2ng quy\u1ec1n l\u00ean m\u1ee9c qu\u1ea3n tr\u1ecb. Khi \u0111\u00e3 c\u00f3 quy\u1ec1n admin, k\u1ebb t\u1ea5n c\u00f4ng c\u00f3 th\u1ec3 ki\u1ec3m so\u00e1t ho\u00e0n to\u00e0n c\u00e1c lu\u1ed3ng truy\u1ec1n file, truy c\u1eadp d\u1eef li\u1ec7u nh\u1ea1y c\u1ea3m, ho\u1eb7c c\u00e0i c\u1eafm m\u00e3 \u0111\u1ed9c v\u00e0o h\u1ec7 th\u1ed1ng.<\/p>\n

R\u1ee7i ro c\u1ee7a vi\u1ec7c khai th\u00e1c hai l\u1ed7 h\u1ed5ng n\u00e0y kh\u00f4ng ch\u1ec9 d\u1eebng \u1edf vi\u1ec7c truy c\u1eadp tr\u00e1i ph\u00e9p. Do MOVEit Automation th\u01b0\u1eddng x\u1eed l\u00fd d\u1eef li\u1ec7u quan tr\u1ecdng nh\u01b0 t\u00e0i li\u1ec7u n\u1ed9i b\u1ed9, d\u1eef li\u1ec7u kh\u00e1ch h\u00e0ng, ho\u1eb7c file giao d\u1ecbch, vi\u1ec7c b\u1ecb x\u00e2m nh\u1eadp c\u00f3 th\u1ec3 d\u1eabn \u0111\u1ebfn r\u00f2 r\u1ec9 d\u1eef li\u1ec7u tr\u00ean di\u1ec7n r\u1ed9ng. Trong b\u1ed1i c\u1ea3nh c\u00e1c chi\u1ebfn d\u1ecbch t\u1ea5n c\u00f4ng chu\u1ed7i cung \u1ee9ng ng\u00e0y c\u00e0ng gia t\u0103ng, \u0111\u00e2y l\u00e0 m\u1ed9t \u0111i\u1ec3m y\u1ebfu \u0111\u1eb7c bi\u1ec7t nguy hi\u1ec3m.<\/p>\n

H\u1eadu qu\u1ea3 c\u00f3 th\u1ec3 bao g\u1ed3m m\u1ea5t d\u1eef li\u1ec7u, gi\u00e1n \u0111o\u1ea1n ho\u1ea1t \u0111\u1ed9ng, b\u1ecb m\u00e3 h\u00f3a d\u1eef li\u1ec7u b\u1edfi ransomware, ho\u1eb7c b\u1ecb l\u1ee3i d\u1ee5ng l\u00e0m b\u00e0n \u0111\u1ea1p t\u1ea5n c\u00f4ng sang c\u00e1c h\u1ec7 th\u1ed1ng kh\u00e1c. Th\u1ef1c t\u1ebf tr\u01b0\u1edbc \u0111\u00e2y, c\u00e1c l\u1ed7 h\u1ed5ng trong h\u1ec7 sinh th\u00e1i MOVEit t\u1eebng b\u1ecb c\u00e1c nh\u00f3m ransomware nh\u01b0 Cl0p khai th\u00e1c tr\u00ean di\u1ec7n r\u1ed9ng, cho th\u1ea5y m\u1ee9c \u0111\u1ed9 h\u1ea5p d\u1eabn c\u1ee7a m\u1ee5c ti\u00eau n\u00e0y \u0111\u1ed1i v\u1edbi t\u1ed9i ph\u1ea1m m\u1ea1ng.<\/p>\n

C\u00e1c phi\u00ean b\u1ea3n b\u1ecb \u1ea3nh h\u01b0\u1edfng bao g\u1ed3m nhi\u1ec1u nh\u00e1nh kh\u00e1c nhau c\u1ee7a MOVEit Automation, c\u1ee5 th\u1ec3 l\u00e0 c\u00e1c b\u1ea3n tr\u01b0\u1edbc 2025.1.5, 2025.0.9 v\u00e0 2024.1.8. Hi\u1ec7n t\u1ea1i, Progress Software \u0111\u00e3 ph\u00e1t h\u00e0nh b\u1ea3n v\u00e1 v\u00e0 kh\u00f4ng c\u00f3 gi\u1ea3i ph\u00e1p t\u1ea1m th\u1eddi n\u00e0o c\u00f3 th\u1ec3 thay th\u1ebf vi\u1ec7c c\u1eadp nh\u1eadt. Trong b\u1ed1i c\u1ea3nh ch\u01b0a ghi nh\u1eadn khai th\u00e1c th\u1ef1c t\u1ebf, \u0111\u00e2y l\u00e0 \u201ckho\u1ea3ng th\u1eddi gian v\u00e0ng\u201d \u0111\u1ec3 c\u00e1c t\u1ed5 ch\u1ee9c ch\u1ee7 \u0111\u1ed9ng ph\u00f2ng ng\u1eeba tr\u01b0\u1edbc khi l\u1ed7 h\u1ed5ng b\u1ecb weaponize r\u1ed9ng r\u00e3i.<\/p>\n

T\u1eeb g\u00f3c \u0111\u1ed9 chuy\u00ean gia an ninh m\u1ea1ng, c\u00e1c khuy\u1ebfn ngh\u1ecb quan tr\u1ecdng bao g\u1ed3m:<\/p>\n

    \n
  • C\u1eadp nh\u1eadt ngay l\u1eadp t\u1ee9c MOVEit Automation l\u00ean phi\u00ean b\u1ea3n \u0111\u00e3 \u0111\u01b0\u1ee3c v\u00e1 l\u1ed7i<\/li>\n
  • Ki\u1ec3m tra log h\u1ec7 th\u1ed1ng \u0111\u1ec3 ph\u00e1t hi\u1ec7n c\u00e1c truy c\u1eadp b\u1ea5t th\u01b0\u1eddng li\u00ean quan \u0111\u1ebfn backend command ports<\/li>\n
  • H\u1ea1n ch\u1ebf truy c\u1eadp \u0111\u1ebfn c\u00e1c c\u1ed5ng qu\u1ea3n tr\u1ecb, ch\u1ec9 cho ph\u00e9p t\u1eeb c\u00e1c IP tin c\u1eady<\/li>\n
  • Tri\u1ec3n khai c\u01a1 ch\u1ebf gi\u00e1m s\u00e1t v\u00e0 ph\u00e1t hi\u1ec7n x\u00e2m nh\u1eadp (IDS\/EDR) \u0111\u1ed1i v\u1edbi c\u00e1c ho\u1ea1t \u0111\u1ed9ng b\u1ea5t th\u01b0\u1eddng<\/li>\n
  • R\u00e0 so\u00e1t quy\u1ec1n truy c\u1eadp v\u00e0 ph\u00e2n quy\u1ec1n ch\u1eb7t ch\u1ebd trong h\u1ec7 th\u1ed1ng MFT<\/li>\n<\/ul>\n<\/div>\n","protected":false},"excerpt":{"rendered":"

    M\u1ed9t c\u1ea3nh b\u00e1o an ninh m\u1edbi v\u1eeba \u0111\u01b0\u1ee3c ph\u00e1t \u0111i t\u1eeb Progress Software khi hai l\u1ed7 h\u1ed5ng trong n\u1ec1n t\u1ea3ng truy\u1ec1n t\u1ea3i file doanh nghi\u1ec7p MOVEit Automation \u0111\u01b0\u1ee3c c\u00f4ng b\u1ed1. Trong \u0111\u00f3, m\u1ed9t l\u1ed7 h\u1ed5ng c\u00f3 m\u1ee9c \u0111\u1ed9 nguy hi\u1ec3m g\u1ea7n nh\u01b0 t\u1ed1i \u0111a c\u00f3 th\u1ec3 cho ph\u00e9p k\u1ebb t\u1ea5n c\u00f4ng v\u01b0\u1ee3t qua c\u01a1 ch\u1ebf […]<\/p>\n","protected":false},"author":20,"featured_media":47826,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"tdm_status":"","tdm_grid_status":"","footnotes":""},"categories":[3,24,35],"tags":[],"class_list":["post-47825","post","type-post","status-publish","format-standard","has-post-thumbnail","category-canh-bao-khuyen-nghi","category-tin-noi-bat","category-tin-tuc-su-kien"],"amp_enabled":true,"_links":{"self":[{"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/posts\/47825","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/users\/20"}],"replies":[{"embeddable":true,"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/comments?post=47825"}],"version-history":[{"count":1,"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/posts\/47825\/revisions"}],"predecessor-version":[{"id":47827,"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/posts\/47825\/revisions\/47827"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/media\/47826"}],"wp:attachment":[{"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/media?parent=47825"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/categories?post=47825"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/antoanthongtinhaiphong.gov.vn\/wp-json\/wp\/v2\/tags?post=47825"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}