AcronisÐû²¼ÔõÑùÓ¦¶ÔCOVID-19µÄÓ°ÏìµÄ±¨¸æ£»£»£»ºÚ¿ÍʹÓÃiOSÖеÄÁãµã»÷0day¹¥»÷Al JazeeraÔ±¹¤
Ðû²¼Ê±¼ä 2020-12-21AcronisÐû²¼ÁËÔõÑùÓ¦¶ÔCOVID-19µÄÓ°ÏìµÄ±¨¸æ¡£¡£¡£¡£AcronisÔÚ2020Äê6ÔÂÖÁ7ÔÂʱ´ú¶ÔÈ«Çò3400¼Ò¹«Ë¾ºÍÔ¶³Ì¹¤È˾ÙÐÐÁËÊӲ죬£¬£¬£¬£¬£¬ÒÔÑо¿×éÖ¯ÔõÑù˳ӦCOVID-19¶ÔÆäITÔËÓªºÍÍøÂçÇå¾²Ì¬ÊÆµÄÓ°Ïì¡£¡£¡£¡£±¨¸æÏÔʾ£¬£¬£¬£¬£¬£¬31%µÄ¹«Ë¾ÌìÌì¶¼»áÔâµ½ÍøÂç¹¥»÷£¬£¬£¬£¬£¬£¬69£¥µÄÔ¶³ÌÊÂÇéÕßÐèÒªÒÀÀµZoom¡¢Cisco WebexµÈ¹¤¾ß¾ÙÐÐÐ×÷£¬£¬£¬£¬£¬£¬¶ø39£¥µÄ¹«Ë¾ÔâÊÜÁËÊÓÆµ¾Û»á¹¥»÷¡£¡£¡£¡£±ðµÄ£¬£¬£¬£¬£¬£¬Ö»ÓÐ2£¥µÄ¹«Ë¾ÔÚÆÀ¹ÀÍøÂçÇå¾²½â¾ö¼Æ»®Ê±Ë¼Á¿Ê¹ÓÃURL¹ýÂË¡£¡£¡£¡£
ÔÎÄÁ´½Ó£º
https://www.acronis.com/en-us/blog/posts/acronis-cyber-readiness-report-pandemic-reveals-cybersecurity-gaps-need-new-solutions
2.CheckmarxÐû²¼2021ÄêÈí¼þÇå¾²ÐÔµÄÕ¹Íû±¨¸æ
CheckmarxÐû²¼ÁË2021ÄêÈí¼þÇå¾²ÐÔµÄÕ¹Íû±¨¸æ¡£¡£¡£¡£±¨¸æÕ¹Íû£¬£¬£¬£¬£¬£¬2021ÄêÆóÒµ½«×¨×¢ÓÚÖ§³ÖÔÆÅÌË㣬£¬£¬£¬£¬£¬²¢»áÔÚÕâÖÖг£Ì¬ÏÂÖØÐÂÍýÏë×éÖ¯ÊÂÇéÁ÷³Ì¡£¡£¡£¡£ÔÚÕâÖÖÇéÐÎÏ£¬£¬£¬£¬£¬£¬Èí¼þÇå¾²ÖÁ¹ØÖ÷Òª¡£¡£¡£¡£Checkmarx³Æ£¬£¬£¬£¬£¬£¬µ½2021Ä꣬£¬£¬£¬£¬£¬ÓÃÓÚÓ¦ÓóÌÐòÇå¾²µÄ¹¤¾ß±ØÐ輯³Éµ½¹¤¾ßÁ´ÖУ¬£¬£¬£¬£¬£¬ÊÂÇéËÙÂÊÒª¿ìµÃ¶à£¬£¬£¬£¬£¬£¬¿ÉÀ©Õ¹µ½ÔÆÇéÐΣ¬£¬£¬£¬£¬£¬²¢ÒÔ¿ª·¢ÕßÄܹ»Ã÷È·²¢Ê¹ÓõÄÃûÌÃÌṩ¿ÉÖ´Ðеķ¢Ã÷£¬£¬£¬£¬£¬£¬ÒÔ±ã¿ìËÙÐÞ¸´¡£¡£¡£¡£
ÔÎÄÁ´½Ó£º
https://www.checkmarx.com/blog/2021-software-security-predictions-our-experts-weigh-in
3.FBIºÍInterpolµ·»ÙÐÅÓÿ¨ÉúÒâÊг¡Joker¡¯s Stash
FBIºÍ¹ú¼ÊÐ̾¯×éÖ¯InterpolÏàÖú£¬£¬£¬£¬£¬£¬¹Ø±ÕÁËJoker¡¯s StashµÄ²¿·ÖЧÀÍÆ÷£¬£¬£¬£¬£¬£¬µ·»ÙÁËÈ«Çò×î´óµÄÐÅÓÿ¨ÉúÒâÊг¡¡£¡£¡£¡£µ«×¨¼ÒÖÒÑԳƣ¬£¬£¬£¬£¬£¬ÕâÒ»´ÎÐж¯¿ÉÄÜÖ»»á¶Ô¸ÃÍÅ»ïµÄ»î¶¯±¬·¢ÔÝʱӰÏì¡£¡£¡£¡£¸Ãƽ̨×Ô2014Äê10ÔÂ7ÈÕÆð¾ÍÒ»Ö±»îÔ¾£¬£¬£¬£¬£¬£¬Ö÷Òª³öÊÛ±»µÁÖ§¸¶¿¨ÐÅÏ¢¡£¡£¡£¡£Joker¡¯s Stash¹ÙÍøÐû²¼ÉùÃ÷³Æ£¬£¬£¬£¬£¬£¬¾¯·½¹Ø±ÕÁËÆä²¿·ÖЧÀÍÆ÷£¬£¬£¬£¬£¬£¬jstash.bazar¡¢jstash.lib¡¢jstash.emcºÍjstash.coinµÈÕ¾µãÊܵ½Ó°Ïì¡£¡£¡£¡£ÒԺ󣬣¬£¬£¬£¬£¬¸Ã×éÖ¯Ðû²¼ÕâЩÓòÃû½«ÔÚ¼¸ÌìÄÚÖØÐÂÉÏÏß¡£¡£¡£¡£
ÔÎÄÁ´½Ó£º
https://securityaffairs.co/wordpress/112441/cyber-crime/jokers-stash-servers-shut-down.html
4.5GµÄHTTP/2ÐÒé±£´æ¿Éµ¼Ö¾ܾøÐ§À͵ÈÎó²î
Positive TechnologiesµÄÇå¾²Ö°Ô±³ÆÓÉÓÚ½¹µãÐÒéÖкã¾Ã±£´æµÄÎó²î£¬£¬£¬£¬£¬£¬µ¼ÖÂһЩ5GÍøÂçÃæÁÙ±»¹¥»÷µÄΣº¦¡£¡£¡£¡£ÕâЩÎó²î±£´æÓÚHTTP/2ÐÒ飬£¬£¬£¬£¬£¬ÀýÈçÐÒéÖаüÀ¨µÄvulns¿É±»ºÚ¿ÍÓÃÀ´Ã°³äµ±ºÎÍøÂçЧÀÍ£¬£¬£¬£¬£¬£¬À´É¾³ýÖ÷ÒªµÄÍøÂ繦ЧÉèÖÃÎļþ¡£¡£¡£¡£±ðµÄ£¬£¬£¬£¬£¬£¬ÓÃÓÚ½¨ÉèÓû§ÅþÁ¬µÄPFCPÒ²±£´æÒ»Ð©Ç±ÔڵľܾøÐ§ÀÍÎó²îµÈ£¬£¬£¬£¬£¬£¬¿ÉÇжÏÓû§»á¼û»¥ÁªÍøµÄÁ÷Á¿²¢½«ÆäÖØ¶¨Ïòµ½¹¥»÷Õߣ¬£¬£¬£¬£¬£¬´Ó¶øÏÂÐÐÓû§Êý¾Ý¡£¡£¡£¡£
ÔÎÄÁ´½Ó£º
https://www.theregister.com/2020/12/18/5g_security_enisa_positive_technologies/
5.Cyberpunk2077Ðû²¼¸üУ¬£¬£¬£¬£¬£¬×ܼÆÐÞ¸´60¶à¸öÎó²î
CD Projekt RedÐû²¼ÁËCyberpunk 2077Ðû²¼¸üУ¬£¬£¬£¬£¬£¬×ܼÆÐÞ¸´60¶à¸öÎó²î¡£¡£¡£¡£´Ë´ÎÐÞ¸´µÄÎó²îÖ÷Òª°üÀ¨Ê¹Ãü¹ýʧ¡¢ÊÓ¾õ¹ÊÕÏ¡¢UI¹ýʧµÈ£¬£¬£¬£¬£¬£¬±ðµÄ£¬£¬£¬£¬£¬£¬CD Projekt»¹Ìá³öÁ˶àÏîÎȹÌÐÔˢУ¬£¬£¬£¬£¬£¬°üÀ¨Íß½âÐÞ¸´µÈ¡£¡£¡£¡£×îºó£¬£¬£¬£¬£¬£¬CD ProjektÔÊÐí»®·ÖÔÚ´ÎÄêµÄ1ÔºÍ2Ô£¬£¬£¬£¬£¬£¬½«»áÐû²¼Á½¸öÖ÷ÒªµÄ²¹¶¡³ÌÐò¡£¡£¡£¡£
ÔÎÄÁ´½Ó£º
https://www.videogameschronicle.com/news/cyberpunks-latest-big-patch-is-out-with-over-60-fixes/
6.ºÚ¿ÍʹÓÃiOSÖеÄÁãµã»÷0day¹¥»÷Al JazeeraÔ±¹¤
¶àÂ×¶à´óѧµÄÑо¿Ö°Ô±·¢Ã÷£¬£¬£¬£¬£¬£¬ºÚ¿ÍʹÓÃiOS iMessageÓ¦ÓÃÖеÄÁãµã»÷0day¹¥»÷Al JazeeraÔ±¹¤¡£¡£¡£¡£´Ë´Î¹¥»÷»î¶¯ÊÇÃûΪKismetµÄ¹¥»÷Á´µÄÒ»²¿·Ö£¬£¬£¬£¬£¬£¬ÓÉÌØ¹¤Èí¼þ¹©Ó¦ÉÌNSO group¿ª·¢²¢ÏúÊÛ¡£¡£¡£¡£¾ÝϤ£¬£¬£¬£¬£¬£¬Kismet¿ÉʹÓÃ×îа汾µÄiPhone£¬£¬£¬£¬£¬£¬Òѱ»Âô¸øÁËÖÁÉÙËĸö×éÖ¯£¬£¬£¬£¬£¬£¬²¢ÓÚ2020Äê7ÔºÍ8Ô±»ÓÃÀ´¹¥»÷ÁË36ÃûAl JazeeraµÄÔ±¹¤¡£¡£¡£¡£ÏÖÔÚÒÑÈ·ÈÏÁËÁ½ÃûÀ´×ÔÉ³ÌØ°¢À²®ºÍ°¢ÁªÇõµÄÁ½Î»Âò¼ÒMonarchyºÍSneaky Kestrel¡£¡£¡£¡£
ÔÎÄÁ´½Ó£º
https://www.zdnet.com/article/zero-click-ios-zero-day-found-deployed-against-al-jazeera-employees/