¡¶Î¬ËûÃü¡·ÖðÈÕÇå¾²¼òѶ20181111

Ðû²¼Ê±¼ä 2018-11-11
¡¾Çå¾²Îó²î¡¿


Ñо¿Ö°Ô±·¢Ã÷RubyÓïÑÔÒ²±£´æ·´ÐòÁл¯ÎÊÌâ

https://www.zdnet.com/article/deserialization-issues-also-affect-ruby-not-just-java-php-and-net/


¡¾ÍþвÇ鱨¡¿


Ñо¿ÍŶӷ¢Ã÷±¾ÖÜEmotetµÄÀ¬»øÓʼþ»î¶¯¼¤Ôö

https://www.welivesecurity.com/2018/11/09/emotet-launches-major-new-spam-campaign/


Ñо¿ÍŶÓÅû¶Ö÷ҪʹÓÃInPageÎó²îÃé×¼°Í»ù˹̹µÄ¶ñÒâ¹¥»÷»î¶¯

https://cloudblogs.microsoft.com/microsoftsecure/2018/11/08/attack-uses-malicious-inpage-document-and-outdated-vlc-media-player-to-give-attackers-backdoor-access-to-targets/


¡¾¶ñÒâÈí¼þ¡¿


Ñо¿ÍŶӷ¢Ã÷жñÒâÍÚ¿óÈí¼þLinux.KORKERDS¿ÉʹÓÃRootkitÒþ²ØÀú³Ì

https://www.bleepingcomputer.com/news/security/linux-cryptominers-are-now-using-rootkits-to-stay-hidden/


¡¾Îó²î²¹¶¡¡¿


VMwareÐÞ¸´½üÆÚGeekPwn2018ÉÏÅû¶µÄÐéÄâ»úÌÓÒÝÎó²î

https://securityaffairs.co/wordpress/77858/hacking/vmware-critical-vm-escape-flaw.html



ÉùÃ÷£º±¾×ÊѶÓɼøºÚµ£±£ÍøάËûÃüÇ徲С×é·­ÒëºÍÕûÀí