英国每日电讯报ES配置错误泄露10TB数据;研发团队修复Apache中路径遍历漏洞

发布时间 2021-10-08

【安全运维】


英国每日电讯报Elasticsearch配置错误泄露10TB数据


https://securityaffairs.co/wordpress/123020/data-breach/the-telegraph-data-leak.html


【漏洞补丁】


研发团队修复Apache中路径遍历漏洞(CVE-2021-41773)


https://www.bleepingcomputer.com/news/security/apache-fixes-actively-exploited-zero-day-vulnerability-patch-now/


Google发布10月份Android更新,修复50多个漏洞


https://www.securityweek.com/google-patches-over-50-serious-vulnerabilities-android


【威胁情报】


Sophos发现利用Python脚本加密虚拟机的攻击活动


https://www.bleepingcomputer.com/news/security/ransomware-gang-encrypts-vmware-esxi-servers-with-python-script/


【分析报告】


BlackBerry发布有关APT41的攻击活动的分析报告


https://blogs.blackberry.com/en/2021/10/drawing-a-dragon-connecting-the-dots-to-find-apt41