美国Broadvoice因数据库配置错误泄露3.5亿客户记录;近日NPM开发团队删除NodeJS库中多个恶意App

发布时间 2020-10-18

【攻击事件】


GOOGLE披露其2017年曾遭到2.54 T DDoS攻击

https://www.zdnet.com/article/google-says-it-mitigated-a-2-54-tbps-ddos-attack-in-2017-largest-known-to-date/


【威胁情报】


近日NPM开发团队删除NodeJS库中多个恶意App

https://www.bleepingcomputer.com/news/security/npm-nukes-nodejs-malware-opening-windows-linux-reverse-shells/


【漏洞补丁】


MicroSoft发布Windows codes和Visual Studio的安全更新

https://www.bleepingcomputer.com/news/security/microsoft-issues-out-of-band-windows-security-updates-for-rce-bugs/


Adobe发布带外更新,修复Magento中多个严重漏洞

https://www.zdnet.com/article/adobe-patches-magento-bugs-that-lead-to-code-execution-customer-list-tampering/


【数据泄露】


美国Broadvoice因数据库配置错误泄露3.5亿客户记录

https://www.infosecurity-magazine.com/news/broadvoice-leaks-350-million/