CODESYS Web服务器缓冲区溢出误差(CVE-2020-10245);iOS包括未修复的VPN绕过误差

宣布时间 2020-03-28

【误差补丁】


CODESYS Web服务器缓冲区溢出误差(CVE-2020-10245)

https://threatpost.com/critical-codesys-bug-remote-code-execution/154213/


0patch宣布Windows Type 1字体0day的暂时修复补丁

https://www.bleepingcomputer.com/news/security/windows-font-parsing-zero-days-get-temporary-fix/


【威胁情报】


Silence和TA505攻击欧洲至少两家制药和制造业公司

https://www.bleepingcomputer.com/news/security/russian-speaking-hackers-attack-pharma-manufacturing-companies-in-europe/


网络包管公司Chubb成为勒索软件Maze的最新受害者

https://www.bleepingcomputer.com/news/security/chubb-cyber-insurer-allegedly-hit-by-maze-ransomware-attack/


【清静误差】


iOS包括未修复的VPN绕过误差,可袒露用户数据及IP

https://www.bleepingcomputer.com/news/security/unpatched-ios-bug-blocks-vpns-from-encrypting-all-traffic/