360-CERT每日安全简报
Daily Security Briefing
2020-01-03 星期五
漏洞 Vulnerability
CVE-2019-20197:Nagios XI远程命令执行漏洞
https://code610.blogspot.com/2019/12/postauth-rce-in-latest-nagiosxi.html
D-Link路由器存在未认证远程命令执行漏洞和信息披露LAN侧安全漏洞:CVE-2019-17621,CVE-2019-20213
https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10147
Ruckus Wi-Fi路由器存在多个远程命令注入/SSRF/缓冲区溢出等严重漏洞:CVE-2019-19834,CVE-2019-19843等
https://www.ruckuswireless.com/security/299/view/pdf
思科数据中心网络管理器存在多个身份验证绕过漏洞:CVE-2019-15975,CVE-2019-15976,CVE-2019-15977
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20200102-dcnm-auth-bypass
恶意软件 Malware
对2019全年的Mac恶意软件的全面分析
https://objective-see.com/blog/blog_0x53.html
安全工具 Security Tools
AVCLASS++-一个大规模的恶意软件标记工具
https://www.kitploit.com/2020/01/avclass-yet-another-massive-malware.html
安全报告 Security Report
APT29分析报告
https://www.freebuf.com/articles/network/222558.html
安全事件 Security Incident
Wyze Labs公司泄露所有在2019年12月26日之前创建帐户的Wyze用户的数据
https://www.securityweek.com/unprotected-database-leaks-data-wyze-users
安全资讯 Security Information
全球外汇巨头Travelex在“软件病毒”攻击后迫使其IT系统脱机
https://www.itnews.com.au/news/travelex-offline-after-software-virus-attack-536094
Poloniex在Twitter上发现数据泄露强制重置密码
https://www.bleepingcomputer.com/news/security/poloniex-forces-password-reset-after-data-leak-found-online/
Sextortion电子邮件诈骗者改善了绕过垃圾邮件过滤器的策略
https://cyware.com/news/sextortion-email-scammers-improve-their-tactics-to-bypass-spam-filters-a3a8148f
新墨西哥医院在数字成像服务器上发现恶意软件感染
https://healthitsecurity.com/news/new-mexico-hospital-finds-malware-infection-on-digital-imaging-server
2020年将会流行哪些“低科技”攻击?
https://www.secrss.com/articles/16364
安全研究 Security Research
使用radare2修补二进制文件
https://rderik.com/blog/using-radare2-to-patch-a-binary/
JAVA反序列化-FastJson组件分析
https://xz.aliyun.com/t/7027
在Tesla Model S上实现Wi-Fi协议栈漏洞的利用
https://mp.weixin.qq.com/s/rULdN3wVKyR3GlGBhunpoQ
S&P2020-Savior:漏洞导向的混合模糊测试技术
https://mp.weixin.qq.com/s/hW8ned6DIRJ7mx1657dVew
We are greeting further cooperation with all parts of security services. If you are interested or have other technical questions relating to cybersecurity, please contact the following:

RSS:daily feed

Email:cert@360.cn

Twitter:@360CERT

or visit cert.360.cn