¡¶Î¬ËûÃü¡·ÖðÈÕ°²È«¼òѶ20180817

°ä²¼¹¦·ò 2018-08-17

¡¾Íþвµý±¨¡¿×êÑÐÈËÔ±·¢ÏÖÖØÒªÇÔÈ¡Office 365Í´´¦µÄPhishPoint¹¥»÷»î¶¯


ÔÆ°²È«¹«Ë¾AvananµÄ×êÑÐÈËÔ±·¢ÏÖÖØÒªÓÃÓÚÇÔÈ¡Office 365Óû§Í´´¦µÄPhishPoint¹¥»÷»î¶¯¡£¡£¡£¡£¡£¡£PhishPointÊÇÒ»ÖÖеÄÀûÓÃSharePointµÄÍøÂç´¹µö¹¥»÷£¬£¬ £¬£¬£¬£¬ÆäÔÚ´ÓǰÁ½ÖÜÄÚԼĪӰÏìÁË10%µÄOffice 365Óû§¡£¡£¡£¡£¡£¡£¹¥»÷ÕßÔÚ´¹µöÓʼþÖÐÔ̺¬Ò»¸öSharePointÎĵµµÄÁ´½Ó£¬£¬ £¬£¬£¬£¬¶ø¸ÃSharePointÎĵµÉϵĽӼûÎĵµ°´Å¥ÏÖʵÉÏÊǽ«Óû§³Á¶¨ÏòÖÁ´¹µöÍøÒ³µÄ³¬Á´½Ó¡£¡£¡£¡£¡£¡£ÕâÖÖ¹¥»÷Äܹ»ÈƹýOffice 365µÄ¸ß¼¶Íþв·À»¤£¨ATP£©»úÔì¡£¡£¡£¡£¡£¡£

 

Ô­ÎÄÁ´½Ó£ºhttps://thehackernews.com/2018/08/microsoft-office365-phishing.html


¡¾Íþвµý±¨¡¿Firefox²å¼þWeb SecurityÍøÂçÓû§µÄÊý¾Ý£¬£¬ £¬£¬£¬£¬³¬¹ý22ÍòÓû§ÊÜÓ°Ïì


×êÑÐÈËÔ±·¢ÏÖÊ¢ÐеÄFirefox²å¼þWeb SecurityÔÚ°ÂÃØµØ¼Í¼Óû§µÄº¹Çàä¯ÀÀ¼Í¼£¬£¬ £¬£¬£¬£¬Õâ¿ÉÄÜÎ¥·´ÁËMozillaµÄ²å¼þ¿ª·¢Ö¸ÄÏ¡£¡£¡£¡£¡£¡£¸Ã²å¼þÖØÒªÓÃÓÚÔ®ÊÖÓû§·À»¤¶ñÒâÈí¼þ¼°´¹µöÍøÕ¾µÄÍþв£¬£¬ £¬£¬£¬£¬ÆäÏÂÔØ´ÎÊý´ï222746´Î¡£¡£¡£¡£¡£¡£×êÑÐÈËÔ±·¢ÏÖ¶ÔÓÚÓû§½Ó¼ûµÄÿһ¸öÍøÒ³£¬£¬ £¬£¬£¬£¬¸Ã²å¼þ¶¼½«Ïòhttp://136.243.163.73·¢ËÍÒ»¸öPOSTÒªÇ󣬣¬ £¬£¬£¬£¬ÆäÖмͼÁËÓû§½Ó¼ûµÄURLÒÔ¼°´ÓÄÄÒ»¸ö¾ÉURLÌø×ªµ½ÐÂURL¡£¡£¡£¡£¡£¡£

 

Ô­ÎÄÁ´½Ó£ºhttps://www.bleepingcomputer.com/news/security/firefox-add-on-with-220-000-installs-caught-collecting-users-browsing-history/


¡¾¹¥»÷ÊÂÎñ¡¿InstagramÒÉÔâ¶íÂÞ˹ºÚ¿Í¹¥»÷£¬£¬ £¬£¬£¬£¬Êý°ÙÃûÓû§µÄÕË»§±»Ëø¶¨


InstagramÔâµ½ÁËÒÉËÆÀ´×Ô¶íÂÞ˹µÄºÚ¿Í¹¥»÷»î¶¯µÄ½ø¹¥£¬£¬ £¬£¬£¬£¬´ÓǰһÖÜÄÚÊý°ÙÃûÓû§±»Ëø¶¨ÔÚËûÃǵÄÕË»§Ö®±í¡£¡£¡£¡£¡£¡£Æ¾¾ÝÊܺ¦ÕßµÄ˵·¨£¬£¬ £¬£¬£¬£¬ËûÃǵÄÕË»§µÄÃû³Æ¡¢Ó×ÎÒ×ÊÁÏͼƬ¡¢ÃÜÂë¡¢¹ØÁªµç×ÓÓʼþµØÖ·ÉõÖÁ¹ØÁªµÄFacebookÕË»§¶¼±»¸ü¸Ä¡£¡£¡£¡£¡£¡£Ä¿Ç°»¹²»ÖªÂ·¹¥»÷Õß¼òÖ±Ç×Éí·Ý£¬£¬ £¬£¬£¬£¬µ«¹¥»÷ÕßʹÓÃÀ´×Ô¶íÂÞ˹µç×ÓÓʼþÌṩÉÌmail.ruµÄµç×ÓÓʼþµØÖ·£¬£¬ £¬£¬£¬£¬Õâ¿ÉÄÜÒâζÕßÊǶíÂÞ˹ºÚ¿ÍËùΪ£¬£¬ £¬£¬£¬£¬µ«Ò²ÓпÉÄÜÊǹ¥»÷ÕßµÄÓÐÒâÎ󵼡£¡£¡£¡£¡£¡£

 

Ô­ÎÄÁ´½Ó£ºhttps://thehackernews.com/2018/08/hack-instagram-accounts.html


¡¾·ì϶²¹¶¡¡¿SAP°ä²¼2018Äê8Ô°²È«¸üУ¬£¬ £¬£¬£¬£¬¹²½¨¸´27¸ö·ì϶


±¾ÖܶþSAP°ä²¼2018Äê8Եݲȫ¸üУ¬£¬ £¬£¬£¬£¬ÆäÖÐÔ̺¬27¸ö·ì϶²¹¶¡£¡£¡£¡£¡£¡£¬£¬ £¬£¬£¬£¬µ«²¢²»Ô̺¬ÈκθßΣ·ì϶¡£¡£¡£¡£¡£¡£½ÏÑϳÁµÄ·ì϶Ô̺¬BusinessObjectsÖеÄSQL×¢Èë·ì϶£¨CVE-2018-2447£©¡¢Business Intelligenceƽ̨ÖеĿɵ¼ÖÂËÁÒâºÅÁîÖ´Ðеķì϶£¨CVE-2015-5237£©ÒÔ¼°SAP SRM MDM Catalog ÖеĶÌȱÊÚȨ²é³­·ì϶£¨CVE-2018-2449£©¡£¡£¡£¡£¡£¡£¹¥»÷Õß¿ÉÀûÓ÷ì϶£¨CVE-2018-2449£©ÔÚûÓÐÊÚȨµÄÇé¿öϽӼû·þÎñ£¬£¬ £¬£¬£¬£¬Õâ¿ÉÄܵ¼ÖÂÐÅϢй¶»òÌáȨ¹¥»÷µÈ¡£¡£¡£¡£¡£¡£

 

Ô­ÎÄÁ´½Ó£ºhttps://www.securityweek.com/sap-releases-august-2018-security-updates


¡¾·ì϶²¹¶¡¡¿LinuxÄں˿ª·¢ÍŶӰ䲼°²È«¸üУ¬£¬ £¬£¬£¬£¬½¨¸´Á½¸öÒ×±»DDoS¹¥»÷ÀûÓõķì϶


ÕâÁ½¸ö·ì϶ÊÇSegmentSmack£¨CVE-2018-5390£©ºÍFragmentSmack£¨CVE-2018-5391£©£¬£¬ £¬£¬£¬£¬¹¥»÷ÕßÄܹ»Í¨¹ý¶ñÒâµÄTCPºÍIPÊý¾ÝÁ÷±ðÀëÀûÓÃÕâÁ½¸ö·ì϶£¬£¬ £¬£¬£¬£¬´¥·¢×ÊÔ´ºÄ¾¡£¡£¡£¡£¡£¡£¨Ôö³¤CPUºÍRAMµÄʹÓ㩹¥»÷¡£¡£¡£¡£¡£¡£ÕâÁ½¸ö·ì϶Äܹ»±»Ô¶³ÌÀûÓ㬣¬ £¬£¬£¬£¬ÕâÒâζ×ÅËüÃǼ«¶ÈÊʺÏÓÃÓÚDoS»òDDoS¹¥»÷¡£¡£¡£¡£¡£¡£Debian¡¢Red Hat¡¢UbuntuµÈÖØÒªµÄLinux¿¯ÐаæÒÔ¼°Androidϵͳ¶¼ÒѾ­°ä²¼ÁËÓйظüС£¡£¡£¡£¡£¡£

 

Ô­ÎÄÁ´½Ó£ºhttps://www.bleepingcomputer.com/news/linux/two-ddos-friendly-bugs-fixed-in-linux-kernel/


¡¾·ÖÎö»ã±¨¡¿×êÑÐÍŶӰ䲼2017ÄêÆóÒµÐÅϢϵͳµÄ°²È«ÆÀ¹À»ã±¨


¿¨°Í˹»ù³¢ÊÔÊÒ°ä²¼ÁË2017ÄêÆóÒµÐÅϢϵͳµÄ°²È«ÆÀ¹À»ã±¨¡£¡£¡£¡£¡£¡£2017Ä꣬£¬ £¬£¬£¬£¬¿¨°Í˹»ù³¢ÊÔÊÒΪȫÇò¶à¸öÐÐÒµµÄ¹«Ë¾ÌṩÁËÊýÊ®¸öÍøÂ簲ȫÆÀ¹ÀÏîÄ¿£¬£¬ £¬£¬£¬£¬Ô̺¬µ±¾Ö»ú¹¹¡¢½ðÈÚ»ú¹¹¡¢µçÐŹ«Ë¾¡¢IT¹«Ë¾¡¢Ôì×÷¹«Ë¾ÒÔ¼°ÄÜÔ´¹«Ë¾µÈ¡£¡£¡£¡£¡£¡£Õë¶ÔÿһÖÖÌṩµÄ·þÎñÀàÐÍ£¨±í²¿ÉøÈë²âÊÔ¡¢ÄÚ²¿ÉøÈë²âÊÔºÍwebÀûÓð²È«ÆÀ¹À£©£¬£¬ £¬£¬£¬£¬ÌṩÁË·ì϶¼ì²âÁ˾ֺÍͳ¼ÆÊý¾Ý¡£¡£¡£¡£¡£¡£ÔÚËùÓеķÖÎö¶ÔÏóÖУ¬£¬ £¬£¬£¬£¬43%µÄÆóÒµÕë¶Ô±í²¿¹¥»÷Õߵı£»£»£»£»£» £»¤ÆÀ¼¶ÎªµÍ»ò¼«¶ÈµÍ£¬£¬ £¬£¬£¬£¬93%µÄÆóÒµÕë¶ÔÄÚ²¿¹¥»÷Õߵı£»£»£»£»£» £»¤ÆÀ¼¶ÎªµÍ»ò¼«¶ÈµÍ¡£¡£¡£¡£¡£¡£

 

Ô­ÎÄÁ´½Ó£ºhttps://media.kasperskycontenthub.com/wpcontent/uploads/sites/43/2018/08/16093216/Security_assessment_of_corporate_information_systems_2017_ENG_web.pdf