360-CERT每日安全简报
Daily Security Briefing
2019-12-15 星期天
漏洞 Vulnerability
威胁全球发电厂的代码执行漏洞,涉及产品西门子的SPPA-T3000
https://threatpost.com/critical-remote-code-execution-global-power-plants/151087/
华为智能手机(Y9,Honor 8X,Honor 9 Lite,Honor 9i,Y6 Pro)中存在不正确的身份验证漏洞
https://nvd.nist.gov/vuln/detail/CVE-2019-5252
Npm(Node.js程序包管理器)文件遍历和文件覆盖漏洞
https://blog.npmjs.org/post/189618601100/binary-planting-with-the-npm-cli
Git9个漏洞,及时更新最新版本
https://lore.kernel.org/git/xmqqr21cqcn9.fsf@gitster-ct.c.googlers.com/T/#u
安全报告 Security Report
某APT组织对全球电信供应商的攻击活动曝光。
https://www.microsoft.com/security/blog/2019/12/12/gallium-targeting-global-telecom/
针对全球政府的钓鱼活动,未知组织
https://www.anomali.com/resources/whitepapers/phishing-campaign-targets-login-credentials-of-multiple-us-international-government-procurement-services
2019第三季度威胁报告
https://www.freebuf.com/articles/network/220575.html
安全事件 Security Incident
罗马尼亚的网络犯罪团伙通过加密挖矿恶意软件感染了超过40万台计算机
https://finance.yahoo.com/news/romanian-cybergang-infects-over-400-100025512.html
安全资讯 Security Information
十几个俄罗斯重要企业领导的Te'legram账户被入侵,攻击者可能使用了SS7的漏洞
https://www.securitylab.ru/news/503097.php
Dropbox和LinkedIn是网络钓鱼攻击的最大目标
https://www.businessinsider.in/tech/news/microsoft-dropbox-and-linkedin-are-the-biggest-targets-for-phishing-attacks/articleshow/72492998.cms
伊朗FIN6组织制作网络病毒窃取信用卡信息
https://www.jpost.com/Jpost-Tech/Israeli-researchers-find-new-computer-viruses-that-can-steal-credit-cards-610708
安全研究 Security Research
Waterbear攻击回归,使用API​​ hook来逃避安全产品检测
https://blog.trendmicro.com/trendlabs-security-intelligence/waterbear-is-back-uses-api-hooking-to-evade-security-product-detection/
挖洞经验 | 利用graph.facebook.com中的反射型XSS实现Facebook账户劫持
https://www.freebuf.com/vuls/222260.html
We are greeting further cooperation with all parts of security services. If you are interested or have other technical questions relating to cybersecurity, please contact the following:

RSS:daily feed

Email:cert@360.cn

Twitter:@360CERT

or visit cert.360.cn