Drupal发布安全更新,修复任意PHP代码执行漏洞;79款Netgear路由器存在0day

发布时间 2020-06-20

【安全漏洞】


Drupal发布安全更新,修复任意PHP代码执行漏洞

https://securityaffairs.co/wordpress/104930/hacking/drupal-critical-code-execution-issue.html?utm_source=rss&utm_medium=rss&utm_campaign=drupal-critical-code-execution-issue


79款Netgear路由器存在0day,面临完全接管风险

https://www.bleepingcomputer.com/news/security/79-netgear-router-models-risk-full-takeover-due-to-unpatched-bug/


Webex Meetings存在漏洞,可被用来窃取身份验证令牌

https://www.bleepingcomputer.com/news/security/new-cisco-webex-meetings-flaw-lets-attackers-steal-auth-tokens/


【威胁情报】


澳大利亚总理宣布该国正在遭受持续且严重的网络攻击

https://www.theregister.com/2020/06/19/australia_state_cyberattack/


【恶意软件】


银行木马IcedID回归升级,新增隐写术和COVID-19主题

https://threatpost.com/icedid-banker-adding-steganography-covid-19-theme/156718/