360-CERT每日安全简报
Daily Security Briefing
2021-06-23 星期三
漏洞 Vulnerability
CVE-2021-24361: WordPress插件GeoDeirectory Location Manager未认证SQL注入漏洞
https://wpscan.com/vulnerability/5aff50fc-ac96-4076-a07c-bb145ae37025
CVE-2021-24370: WordPress插件Fancy Product Designer未认证文件上传漏洞
https://www.wordfence.com/blog/2021/06/critical-0-day-in-fancy-product-designer-under-active-attack/
安全事件 Security Incident
Hackers’ breathe on Fake Oximeter apps now!
https://labs.k7computing.com/?p=22430
Android FluBot enters Switzerland
https://securityblog.switch.ch/2021/06/19/android-flubot-enters-switzerland/
Ragnar Locker勒索团队公开ADATA 700G 敏感数据
https://www.bleepingcomputer.com/news/security/adata-suffers-700-gb-data-leak-in-ragnar-locker-ransomware-attack/
Molerats 黑客的最新活动针对中东政府
https://www.ehackingnews.com/2021/06/latest-campaign-by-molerats-hackers.html
We are greeting further cooperation with all parts of security services. If you are interested or have other technical questions relating to cybersecurity, please contact the following:

RSS:daily feed

Email:cert@360.cn

Twitter:@360CERT

or visit cert.360.cn