¡¶Î¬ËûÃü¡·ÖðÈÕÇå¾²¼òѶ20181113
Ðû²¼Ê±¼ä 2018-11-13
51¸ö¹ú¼Ò¡¢224¼Ò¹«Ë¾ÒÔ¼°92¸ö·ÇÓªÀû×éÖ¯ÔÚ·¨¹úÕþ¸®µÄÍÆ¶¯ÏÂÇ©ÊðÁËÕâÏî¡¶°ÍÀèÍøÂç¿Õ¼äÐÅÈκÍÇå¾²½¨Òé¡·ÐÒ飬£¬£¬£¬£¬£¬£¬°üÀ¨Î¢Èí¡¢¹È¸è¡¢FacebookºÍÈýÐǵȶà¼Ò¿Æ¼¼¾ÞÍ·¡£¡£¡£Õâ·Ý½¨ÒéÊéÖ÷ÒªÊÇΪÁËÓ¦¶ÔÒÑÍù¼¸Äê·ºÆðµÄÍøÂçÕ½£¬£¬£¬£¬£¬£¬£¬µ«ÃÀ¹ú¡¢¶íÂÞ˹¡¢Ó¢¹ú¡¢ÒÁÀÊ¡¢ÒÔÉ«ÁС¢³¯ÏÊÒÔ¼°ÎÒ¹ú¶¼Ã»ÓÐÊðÃû¡£¡£¡£
ÔÎÄÁ´½Ó£º
https://www.zdnet.com/article/us-russia-china-dont-sign-macrons-cyber-pact/2¡¢ÐÂAPIÅú×¢Win 10»ò½«ÂÊÏÈÖ§³ÖWiFi¼ÓÃܱê×¼WPA3

ËäȻ΢Èí¹Ù·½ÉÐδÕýʽÐû²¼ÔÚWin 10ÖÐÖ§³ÖWPA3£¬£¬£¬£¬£¬£¬£¬µ«ÐÂÐû²¼µÄWin 10°æ±¾18272µÄSDKÖÐÒýÈëµÄÐÂAPIËÆºõÅú×¢Win 10¼´½«ÍƳö¶ÔWPA3µÄÖ§³Ö¡£¡£¡£WPA3ÊÇÏÂÒ»´úWiFIÇå¾²ÐÒ飬£¬£¬£¬£¬£¬£¬Ö¼ÔÚʹ¹¥»÷Õ߸üÄÑÆÆ½âWiFiÃÜÂë¡£¡£¡£ÐµÄAPI»òÅúע΢ÈíÕýÔÚÆð¾¢ÖÂÁ¦ÓÚÔÚWin 10µÄÎȹ̰æÖÐÖ§³ÖWPA3ÐÒé¡£¡£¡£
ÔÎÄÁ´½Ó£º
https://thehackernews.com/2018/11/windows-10-wpa3-wifi-security.html3¡¢CloudflareµÄDNSЧÀÍ1.1.1.1Éϰ¶Android¼°iOS¶Ë

CloudflareÐû³Æ×îÏÈÏòÒÆ¶¯Óû§ÌṩDNSЧÀÍ1.1.1.1¡£¡£¡£ÔÚÕâ֮ǰÓû§Ò²¿ÉÒÔÔÚÒÆ¶¯×°±¸ÉÏͨ¹ýÊÖ¶¯ÐÞ¸ÄDNSЧÀÍÆ÷À´Ê¹ÓÃ1.1.1.1ЧÀÍ£¬£¬£¬£¬£¬£¬£¬µ«¸Ã¹«Ë¾ÍƳöÁËÊÊÓÃÓÚiOSºÍAndroidµÄÐÂapp£¬£¬£¬£¬£¬£¬£¬Ê¹µÃÈκÎÈ˶¼¿ÉÒÔÔ½·¢ÇáËɵØÊ¹ÓøÃÃâ·ÑЧÀÍ¡£¡£¡£¸ÃappµÄAndroid°æ±¾ÐèÒªÉêÇëÊÖ»úÂó¿Ë·çȨÏÞ²¢ÇÒÐèÒª»á¼ûÕÕÆ¬ºÍUSB´æ´¢£¬£¬£¬£¬£¬£¬£¬Cloudflare³ÆÕâЩȨÏÞÊÇÐëÒªµÄ£¬£¬£¬£¬£¬£¬£¬²¢ÇÒ½öÓÃÓÚÌìÉú¹ýʧ±¨¸æ¡£¡£¡£
ÔÎÄÁ´½Ó£º
https://www.bleepingcomputer.com/news/security/cloudflare-brings-its-1111-dns-service-to-android-and-ios-mobile-devices/4¡¢¿¨°Í˹»ùÐû²¼2018ÄêQ3 ITÍþвÑݱäµÄͳ¼ÆÆÊÎö

¿¨°Í˹»ùʵÑéÊÒÐû²¼2018ÄêµÚÈý¼¾¶ÈµÄITÍþвÑݱäͳ¼ÆÆÊÎö±¨¸æ£¬£¬£¬£¬£¬£¬£¬±¨¸æÖØµã¹Ø×¢ÁËÒÆ¶¯Íþв¡¢ÎïÁªÍø×°±¸ÃæÁٵĹ¥»÷¡¢½ðÈÚÐÐÒµµÄΣº¦¡¢¼ÓÃÜÀà¶ñÒâÈí¼þ¡¢¶ñÒâÍÚ¿óÈí¼þ¡¢Í¨¹ýÍøÂç×ÊÔ´ÌᳫµÄ¹¥»÷ÒÔ¼°ÍâµØÍþв°Ë¸ö·½Ãæ¡£¡£¡£µÚÈý¼¾¶È¿¨°Í˹»ùʵÑéÊÒ¹²¼ì²âµ½Ô¼130Íò¸öÒÆ¶¯¶ñÒâ×°Öðü£¬£¬£¬£¬£¬£¬£¬±ÈÉÏÒ»¼¾¶ÈÔöÌíÁËÔ¼44Íò¡£¡£¡£
ÔÎÄÁ´½Ó£º
https://securelist.com/it-threat-evolution-q3-2018-statistics/88689/5¡¢Ñо¿Ö°Ô±·¢Ã÷WordPressÖеÄGDPRºÏ¹æ²å¼þ±£´æÑÏÖØÎó²î
WordfenceµÄÑо¿Ö°Ô±·¢Ã÷WordPress GDPR Compliance²å¼þ±£´æÒ»¸öÑÏÖØµÄÇå¾²Îó²î£¬£¬£¬£¬£¬£¬£¬Î´¾Éí·ÝÑéÖ¤µÄ¹¥»÷Õß¿ÉʹÓøÃÎó²îÔÚʹÓøòå¼þµÄÍøÕ¾ÉÏÌí¼ÓеÄÖÎÀíÔ±ÕË»§²¢½ÓÊÜÍøÕ¾¡£¡£¡£¾Ýͳ¼Æ¹²ÓÐÁè¼Ý10Íò¸öÍøÕ¾Ê¹ÓÃÁ˸òå¼þ¡£¡£¡£¹¥»÷Õß»¹¿ÉÄÜ»áʹÓÃÕâЩÒ×Êܹ¥»÷µÄÍøÕ¾¾ÙÐÐÆäËü²»·¨»î¶¯£¬£¬£¬£¬£¬£¬£¬°üÀ¨ÍøÂç´¹ÂÚ»òÀ¬»øÓʼþµÈ¡£¡£¡£¿£¿£¿£¿£¿£¿£¿ª·¢ÍŶÓÒÑÔڸòå¼þµÄа汾1.4.3ÖÐÐÞ¸´Á˸ÃÎó²î¡£¡£¡£
ÔÎÄÁ´½Ó£º
https://securityaffairs.co/wordpress/77919/hacking/gdpr-compliance-plugin-flaw.html
6¡¢Ñо¿Ö°Ô±ÖÒÑÔ³ÆAdobe ColdFusionÎó²îÔÚÒ°Íâ±»Æð¾¢Ê¹ÓÃ

VolexityµÄÑо¿Ö°Ô±ÖÒÑÔ³ÆAdobe ColdFusionÖеÄÎó²îÕýÔÚÒ°Íâ±»Æð¾¢Ê¹Óᣡ£¡£¸ÃÎó²î£¨CVE-2018-15961£©ÊÇÒ»¸öÎļþÉÏ´«Îó²î£¬£¬£¬£¬£¬£¬£¬ÀÖ³ÉʹÓøÃÎó²î¿Éµ¼ÖÂí§Òâ´úÂëÖ´ÐС£¡£¡£AdobeÔÚ9Ô·ÝÐû²¼Ç徲ͨ¸æÐÞ¸´Á˸ÃÎó²î£¬£¬£¬£¬£¬£¬£¬µ«ÏÔÈ»ÉÐÓÐÐí¶àЧÀÍÆ÷ûÓÐ×°Öøò¹¶¡¡£¡£¡£Ñо¿Ö°Ô±·¢Ã÷Ò»¸öAPT×éÖ¯ÕýÔÚÆð¾¢Ê¹ÓøÃÎó²îÈëÇÖÒ×Êܹ¥»÷µÄЧÀÍÆ÷¡£¡£¡£
ÔÎÄÁ´½Ó£º
https://securityaffairs.co/wordpress/77901/hacking/cve-2018-15961-coldfusion-flaw.htmlÉùÃ÷£º±¾×ÊѶÓɼøºÚµ£±£ÍøÎ¬ËûÃüÇ徲С×é·ÒëºÍÕûÀí