AcronisÐû²¼ÔõÑùÓ¦¶ÔCOVID-19µÄÓ°ÏìµÄ±¨¸æ£»£»£»ºÚ¿ÍʹÓÃiOSÖеÄÁãµã»÷0day¹¥»÷Al JazeeraÔ±¹¤

Ðû²¼Ê±¼ä 2020-12-21
1.AcronisÐû²¼ÔõÑùÓ¦¶ÔCOVID-19µÄÓ°ÏìµÄ±¨¸æ


1.jpg


AcronisÐû²¼ÁËÔõÑùÓ¦¶ÔCOVID-19µÄÓ°ÏìµÄ±¨¸æ¡£¡£ ¡£¡£AcronisÔÚ2020Äê6ÔÂÖÁ7ÔÂʱ´ú¶ÔÈ«Çò3400¼Ò¹«Ë¾ºÍÔ¶³Ì¹¤È˾ÙÐÐÁËÊӲ죬£¬£¬ £¬£¬£¬ÒÔÑо¿×éÖ¯ÔõÑù˳ӦCOVID-19¶ÔÆäITÔËÓªºÍÍøÂçÇå¾²Ì¬ÊÆµÄÓ°Ïì¡£¡£ ¡£¡£±¨¸æÏÔʾ£¬£¬£¬ £¬£¬£¬31%µÄ¹«Ë¾ÌìÌì¶¼»áÔâµ½ÍøÂç¹¥»÷£¬£¬£¬ £¬£¬£¬69£¥µÄÔ¶³ÌÊÂÇéÕßÐèÒªÒÀÀµZoom¡¢Cisco WebexµÈ¹¤¾ß¾ÙÐÐЭ×÷£¬£¬£¬ £¬£¬£¬¶ø39£¥µÄ¹«Ë¾ÔâÊÜÁËÊÓÆµ¾Û»á¹¥»÷¡£¡£ ¡£¡£±ðµÄ£¬£¬£¬ £¬£¬£¬Ö»ÓÐ2£¥µÄ¹«Ë¾ÔÚÆÀ¹ÀÍøÂçÇå¾²½â¾ö¼Æ»®Ê±Ë¼Á¿Ê¹ÓÃURL¹ýÂË¡£¡£ ¡£¡£


Ô­ÎÄÁ´½Ó£º

https://www.acronis.com/en-us/blog/posts/acronis-cyber-readiness-report-pandemic-reveals-cybersecurity-gaps-need-new-solutions


2.CheckmarxÐû²¼2021ÄêÈí¼þÇå¾²ÐÔµÄÕ¹Íû±¨¸æ


2.jpg


CheckmarxÐû²¼ÁË2021ÄêÈí¼þÇå¾²ÐÔµÄÕ¹Íû±¨¸æ¡£¡£ ¡£¡£±¨¸æÕ¹Íû£¬£¬£¬ £¬£¬£¬2021ÄêÆóÒµ½«×¨×¢ÓÚÖ§³ÖÔÆÅÌË㣬£¬£¬ £¬£¬£¬²¢»áÔÚÕâÖÖг£Ì¬ÏÂÖØÐÂÍýÏë×éÖ¯ÊÂÇéÁ÷³Ì¡£¡£ ¡£¡£ÔÚÕâÖÖÇéÐÎÏ£¬£¬£¬ £¬£¬£¬Èí¼þÇå¾²ÖÁ¹ØÖ÷Òª¡£¡£ ¡£¡£Checkmarx³Æ£¬£¬£¬ £¬£¬£¬µ½2021Ä꣬£¬£¬ £¬£¬£¬ÓÃÓÚÓ¦ÓóÌÐòÇå¾²µÄ¹¤¾ß±ØÐ輯³Éµ½¹¤¾ßÁ´ÖУ¬£¬£¬ £¬£¬£¬ÊÂÇéËÙÂÊÒª¿ìµÃ¶à£¬£¬£¬ £¬£¬£¬¿ÉÀ©Õ¹µ½ÔÆÇéÐΣ¬£¬£¬ £¬£¬£¬²¢ÒÔ¿ª·¢ÕßÄܹ»Ã÷È·²¢Ê¹ÓõÄÃûÌÃÌṩ¿ÉÖ´Ðеķ¢Ã÷£¬£¬£¬ £¬£¬£¬ÒÔ±ã¿ìËÙÐÞ¸´¡£¡£ ¡£¡£


Ô­ÎÄÁ´½Ó£º

https://www.checkmarx.com/blog/2021-software-security-predictions-our-experts-weigh-in


3.FBIºÍInterpolµ·»ÙÐÅÓÿ¨ÉúÒâÊг¡Joker¡¯s Stash


3.jpg


FBIºÍ¹ú¼ÊÐ̾¯×éÖ¯InterpolÏàÖú£¬£¬£¬ £¬£¬£¬¹Ø±ÕÁËJoker¡¯s StashµÄ²¿·ÖЧÀÍÆ÷£¬£¬£¬ £¬£¬£¬µ·»ÙÁËÈ«Çò×î´óµÄÐÅÓÿ¨ÉúÒâÊг¡¡£¡£ ¡£¡£µ«×¨¼ÒÖÒÑԳƣ¬£¬£¬ £¬£¬£¬ÕâÒ»´ÎÐж¯¿ÉÄÜÖ»»á¶Ô¸ÃÍÅ»ïµÄ»î¶¯±¬·¢ÔÝʱӰÏì¡£¡£ ¡£¡£¸Ãƽ̨×Ô2014Äê10ÔÂ7ÈÕÆð¾ÍÒ»Ö±»îÔ¾£¬£¬£¬ £¬£¬£¬Ö÷Òª³öÊÛ±»µÁÖ§¸¶¿¨ÐÅÏ¢¡£¡£ ¡£¡£Joker¡¯s Stash¹ÙÍøÐû²¼ÉùÃ÷³Æ£¬£¬£¬ £¬£¬£¬¾¯·½¹Ø±ÕÁËÆä²¿·ÖЧÀÍÆ÷£¬£¬£¬ £¬£¬£¬jstash.bazar¡¢jstash.lib¡¢jstash.emcºÍjstash.coinµÈÕ¾µãÊܵ½Ó°Ïì¡£¡£ ¡£¡£ÒԺ󣬣¬£¬ £¬£¬£¬¸Ã×éÖ¯Ðû²¼ÕâЩÓòÃû½«ÔÚ¼¸ÌìÄÚÖØÐÂÉÏÏß¡£¡£ ¡£¡£


Ô­ÎÄÁ´½Ó£º

https://securityaffairs.co/wordpress/112441/cyber-crime/jokers-stash-servers-shut-down.html    


4.5GµÄHTTP/2ЭÒé±£´æ¿Éµ¼Ö¾ܾøÐ§À͵ÈÎó²î


4.jpg


Positive TechnologiesµÄÇå¾²Ö°Ô±³ÆÓÉÓÚ½¹µãЭÒéÖкã¾Ã±£´æµÄÎó²î£¬£¬£¬ £¬£¬£¬µ¼ÖÂһЩ5GÍøÂçÃæÁÙ±»¹¥»÷µÄΣº¦¡£¡£ ¡£¡£ÕâЩÎó²î±£´æÓÚHTTP/2ЭÒ飬£¬£¬ £¬£¬£¬ÀýÈçЭÒéÖаüÀ¨µÄvulns¿É±»ºÚ¿ÍÓÃÀ´Ã°³äµ±ºÎÍøÂçЧÀÍ£¬£¬£¬ £¬£¬£¬À´É¾³ýÖ÷ÒªµÄÍøÂ繦ЧÉèÖÃÎļþ¡£¡£ ¡£¡£±ðµÄ£¬£¬£¬ £¬£¬£¬ÓÃÓÚ½¨ÉèÓû§ÅþÁ¬µÄPFCPÒ²±£´æÒ»Ð©Ç±ÔڵľܾøÐ§ÀÍÎó²îµÈ£¬£¬£¬ £¬£¬£¬¿ÉÇжÏÓû§»á¼û»¥ÁªÍøµÄÁ÷Á¿²¢½«ÆäÖØ¶¨Ïòµ½¹¥»÷Õߣ¬£¬£¬ £¬£¬£¬´Ó¶øÏÂÐÐÓû§Êý¾Ý¡£¡£ ¡£¡£


Ô­ÎÄÁ´½Ó£º

https://www.theregister.com/2020/12/18/5g_security_enisa_positive_technologies/


5.Cyberpunk2077Ðû²¼¸üУ¬£¬£¬ £¬£¬£¬×ܼÆÐÞ¸´60¶à¸öÎó²î


5.jpg


CD Projekt RedÐû²¼ÁËCyberpunk 2077Ðû²¼¸üУ¬£¬£¬ £¬£¬£¬×ܼÆÐÞ¸´60¶à¸öÎó²î¡£¡£ ¡£¡£´Ë´ÎÐÞ¸´µÄÎó²îÖ÷Òª°üÀ¨Ê¹Ãü¹ýʧ¡¢ÊÓ¾õ¹ÊÕÏ¡¢UI¹ýʧµÈ£¬£¬£¬ £¬£¬£¬±ðµÄ£¬£¬£¬ £¬£¬£¬CD Projekt»¹Ìá³öÁ˶àÏîÎȹÌÐÔˢУ¬£¬£¬ £¬£¬£¬°üÀ¨Íß½âÐÞ¸´µÈ¡£¡£ ¡£¡£×îºó£¬£¬£¬ £¬£¬£¬CD ProjektÔÊÐí»®·ÖÔÚ´ÎÄêµÄ1ÔºÍ2Ô£¬£¬£¬ £¬£¬£¬½«»áÐû²¼Á½¸öÖ÷ÒªµÄ²¹¶¡³ÌÐò¡£¡£ ¡£¡£


Ô­ÎÄÁ´½Ó£º

https://www.videogameschronicle.com/news/cyberpunks-latest-big-patch-is-out-with-over-60-fixes/


6.ºÚ¿ÍʹÓÃiOSÖеÄÁãµã»÷0day¹¥»÷Al JazeeraÔ±¹¤


6.jpg


¶àÂ×¶à´óѧµÄÑо¿Ö°Ô±·¢Ã÷£¬£¬£¬ £¬£¬£¬ºÚ¿ÍʹÓÃiOS iMessageÓ¦ÓÃÖеÄÁãµã»÷0day¹¥»÷Al JazeeraÔ±¹¤¡£¡£ ¡£¡£´Ë´Î¹¥»÷»î¶¯ÊÇÃûΪKismetµÄ¹¥»÷Á´µÄÒ»²¿·Ö£¬£¬£¬ £¬£¬£¬ÓÉÌØ¹¤Èí¼þ¹©Ó¦ÉÌNSO group¿ª·¢²¢ÏúÊÛ¡£¡£ ¡£¡£¾ÝϤ£¬£¬£¬ £¬£¬£¬Kismet¿ÉʹÓÃ×îа汾µÄiPhone£¬£¬£¬ £¬£¬£¬Òѱ»Âô¸øÁËÖÁÉÙËĸö×éÖ¯£¬£¬£¬ £¬£¬£¬²¢ÓÚ2020Äê7ÔºÍ8Ô±»ÓÃÀ´¹¥»÷ÁË36ÃûAl JazeeraµÄÔ±¹¤¡£¡£ ¡£¡£ÏÖÔÚÒÑÈ·ÈÏÁËÁ½ÃûÀ´×ÔÉ³ÌØ°¢À­²®ºÍ°¢ÁªÇõµÄÁ½Î»Âò¼ÒMonarchyºÍSneaky Kestrel¡£¡£ ¡£¡£


Ô­ÎÄÁ´½Ó£º

https://www.zdnet.com/article/zero-click-ios-zero-day-found-deployed-against-al-jazeera-employees/