360-CERT每日安全简报
Daily Security Briefing
2021-04-22 星期四
<<Previous
Next>>
漏洞
Vulnerability
2021-04 补丁日: Oracle多个产品漏洞安全风险通告
https://cert.360.cn/warning/detail?id=98f05143045b67c016ef9e8462fcc6d5
CVE-2021-22893:Pulse Connect 远程代码执行漏洞
https://cert.360.cn/warning/detail?id=e7541fff89b81dea5d4d770f46e5310b
CVE-2021-20023:SONICWALL Email Security Appliances认证后任意文件读取漏洞
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0010
安全事件
Security Incident
因广达电脑遭遇勒索病毒攻击,导致其合作商苹果被勒索
https://www.bleepingcomputer.com/news/security/revil-gang-tries-to-extort-apple-threatens-to-sell-stolen-blueprints/
透明部落利用新冠疫苗热点对印度医疗行业的定向攻击活动分析
https://mp.weixin.qq.com/s/ELYDvdMiiy4FZ3KpmAddZQ
Check Your Pulse: Suspected APT Actors Leverage Authentication Bypass Techniques and Pulse Secure Zero-Day
https://www.fireeye.com/blog/threat-research/2021/04/suspected-apt-actors-leverage-bypass-techniques-pulse-secure-zero-day.html
Carbanak and FIN7 Attack Techniques
https://www.trendmicro.com/en_us/research/21/d/carbanak-and-fin7-attack-techniques.html
Geico数据泄露暴露客户驾照号码
https://www.bleepingcomputer.com/news/security/geico-data-breach-exposed-customers-drivers-license-numbers/
美国国家安全局发布俄罗斯黑客利用的5大漏洞
https://gbhackers.com/nsa-released-top-5-vulnerabilities-that-exploited-by-russian-hackers/
<<Previous
Next>>