360CERT - 每日安全简报 (2020-02-28)

<<Previous Next>>

漏洞 Vulnerability

CVE-2019-15126: Wi-Fi流量信息泄漏漏洞通告

https://cert.360.cn/warning/detail?id=7657570cbc76f54064fd8721af455972

安全研究 Security Research

Firefox Pwn 0x00

https://www.anquanke.com/post/id/198939

记一次曲折而又有趣的渗透

https://www.secpulse.com/archives/123988.html

Java “后反序列化漏洞” 利用思路

https://paper.seebug.org/1133/

CheckPoint发了一个检测虚拟机的工具

https://research.checkpoint.com/2020/cpr-evasion-encyclopedia-the-check-point-evasion-repository/

手把手教你如何将学校饭卡复制到小米手环NFC版上

https://www.freebuf.com/articles/terminal/227717.html

卡巴斯基跟踪的Roaming Mantis(漫步螳螂)活动第五部分

https://securelist.com/roaming-mantis-part-v/96250/

安全资讯 Security Information

微软Edge现在允许你屏蔽可能不需要的程序

https://www.bleepingcomputer.com/news/security/microsoft-edge-now-lets-you-block-potentially-unwanted-programs/

Cisco正在修复新的CVE-2019-15126 Kr00k WiFi漏洞

https://www.bleepingcomputer.com/news/security/cisco-working-on-patches-for-new-kr00k-wifi-vulnerability/

华为高管和美国国防部官员在RSA大会上就禁令展开争论

https://www.anquanke.com/post/id/199815

FBI表示过去6年里受害者向勒索软件运营商支付了超过1.4亿美元

https://www.bleepingcomputer.com/news/security/fbi-says-140-million-paid-to-ransomware-offers-defense-tips/

HackerOne去年发放超过8200万美元的赏金，联邦政府参与度大幅上涨

https://www.freebuf.com/news/228590.html

恶意软件 Malware

Cerberus Android恶意软件可以绕过2FA远程解锁设备

https://www.bleepingcomputer.com/news/security/cerberus-android-malware-can-bypass-2fa-unlock-devices-remotely/

随着冠状病毒的传播COVID-19主题的恶意软件也在传播

https://www.bleepingcomputer.com/news/security/as-coronavirus-spreads-so-does-covid-19-themed-malware/

<<Previous Next>>