360-CERT每日安全简报
Daily Security Briefing
2020-01-09 星期四
漏洞 Vulnerability
CVE-2019-1215:ws2ifsl中UAF漏洞分析
https://labs.bluefrostsecurity.de/blog/2020/01/07/cve-2019-1215-analysis-of-a-use-after-free-in-ws2ifsl/
安全研究人员演示了如何通过发送短信来破解任意TikTok帐户
https://research.checkpoint.com/2020/tik-or-tok-is-tiktok-secure-enough/
CVE-2020-1786:涉及某些华为手机的不充分认证漏洞
https://www.huawei.com/cn/psirt/security-advisories/huawei-sa-20200108-01-smartphone-cn
CVE-2020-1810:部分华为产品中的弱算法漏洞
https://www.huawei.com/cn/psirt/security-advisories/huawei-sa-20200108-01-rsa-cn
Android 发布 2020 年 1 月份的补丁公告,修复 Media 框架的一个严重漏洞
https://threatpost.com/google-fixes-critical-android-rce-flaw/151605/
CVE-2019-19781:Citrix路径遍历风险提示
https://cert.360.cn/warning/detail?id=c642f88345f3ae47efdcd32d8770a43e
安全研究 Security Research
HITBCyberWeek 议题公开——Youtube
https://www.youtube.com/playlist?list=PLmv8T5-GONwSkE-EJ6FChd_AW2Lz58OEp
通过在内存中执行PE绕过AV
https://blog.dylan.codes/bypassing-av-via/
利用选择前缀冲突攻击SHA-1——paper
https://eprint.iacr.org/2020/014.pdf
最新的Linux IO接口(io_uring)介绍——paper
https://kernel.dk/io_uring.pdf
Apache2的一个后门模块项目
https://github.com/VladRico/apache2_BackdoorMod
Windows下利用AppInit_DLLs进行持久化攻击
https://pentestlab.blog/2020/01/07/persistence-appinit-dlls/
安全资讯 Security Information
Project Zero 2020年漏洞披露方案修正,报告 90 天之后就强制披露细节
https://googleprojectzero.blogspot.com/2020/01/policy-and-disclosure-2020-edition.html
Gartner:2020年十大战略技术趋势(下篇)
https://www.freebuf.com/articles/paper/223963.html
恶意软件 Malware
追踪分析LiquorBot僵尸网络
https://labs.bitdefender.com/2020/01/hold-my-beer-mirai-spinoff-named-liquorbot-incorporates-cryptomining/
全勤矿工systemdMiner最新变种利用暗网代理下载恶意模块
https://mp.weixin.qq.com/s/DGo6h8KgCmTDsaeURiaAag
卡巴发布APT组织Lazarus 针对加密货币的攻击行动——AppleJeus
https://securelist.com/operation-applejeus-sequel/95596/
We are greeting further cooperation with all parts of security services. If you are interested or have other technical questions relating to cybersecurity, please contact the following:

RSS:daily feed

Email:cert@360.cn

Twitter:@360CERT

or visit cert.360.cn