ÕÐƸÍøÕ¾Laddersй¶1300ÍòÇóÖ°ÕßÐÅÏ¢ £»CitrixÔâºÚ¿ÍÈëÇÖ £»´÷¶ûSupportAssist RCE·ì϶

°ä²¼¹¦·ò 2019-05-03

¡¾Êý¾Ýй¶¡¿


ÃÀ¹úÕÐƸÍøÕ¾LaddersÒâ±íй¶½ü1300ÍòÇóÖ°ÕßµÄÓ×ÎÒ×ÊÁÏ
https://cyware.com/news/job-portal-ladders-exposed-profiles-of-13-million-job-seekers-thanks-to-an-unprotected-aws-elasticsearch-database-1b7d7474
ÃÀ¹úÒ½Áƹ«Ë¾SkyMedÒâ±íй¶½ü13.7ÍòÓû§µÄPIIÐÅÏ¢

https://www.bleepingcomputer.com/news/security/database-exposes-medical-info-pii-data-of-137k-people-in-us/


¡¾¹¥»÷ÊÂÎñ¡¿


CitrixÈ·ÈÏÔâºÚ¿ÍÈëÇÖ£¬²¿ÃÅÔ±¹¤µÄÃô¸ÐÊý¾Ý±»ÇÔ

https://www.bleepingcomputer.com/news/security/citrix-confirms-hackers-stole-sensitive-employee-personal-information/


¡¾°²È«·ì϶¡¿


´÷¶ûÍÆËã»úԤװÖÃÈí¼þSupportAssist´æÔÚRCE·ì϶

https://cyware.com/news/dell-computers-found-vulnerable-to-remote-code-execution-rce-attacks-540dea40


¡¾ÀÕË÷Èí¼þ¡¿


×êÑÐÍŶӰ䲼ÀÕË÷Èí¼þZQµÄÃâ·Ñ½âÃܹ¤¾ß
https://securityaffairs.co/wordpress/84768/malware/zq-ransomware-decryptor.html