360-CERT每日安全简报
Daily Security Briefing
2020-03-02 星期一
漏洞 Vulnerability
CVE-2020-10487:Tomcat ajp 文件读取漏洞
https://0day.today/exploit/34028
安全工具 Security Tools
智能SSRF扫描器
https://www.kitploit.com/2020/02/extended-ssrf-search-smart-ssrf-scanner.html
安全报告 Security Report
以冠状病毒为主题的网络钓鱼分析
https://www.kaspersky.com/blog/coronavirus-phishing/32395/
安全资讯 Security Information
黑客关闭了卢旺达政府数据中心
https://www.developingtelecoms.com/telecom-technology/data-centres-networks/9270-hackers-shut-down-rwandan-government-data-centre.html
英国将部署能够打击恐怖组织的专业网络部队
https://www.theguardian.com/technology/2020/feb/27/uk-to-launch-specialist-cyber-force-able-to-target-terror-groups
前NSA黑客将在野Mac恶意软件重新打包供自己使用
https://arstechnica.com/information-technology/2020/02/why-write-your-own-mac-malware-when-you-can-rip-off-a-competitors-a-how-to/
英国称俄罗斯去年对格鲁吉亚进行了一次大规模的网络攻击
https://www.bbc.com/news/technology-51576445
安全研究 Security Research
IDOR的奇怪案例
https://medium.com/@aseem.shrey/attention-to-details-a-curious-case-of-multiple-idors-5a4417ba8848
以三只小猪谈网络安全
https://www.kaspersky.com/blog/three-little-pigs/33796/
恶意软件 Malware
CVE-2020-0674样本
https://www.virustotal.com/gui/file/1ad754caa89e08bb10ce538257879d0775bddd8a74b8ff14aaa3d92a2c35b543/detection
APT33 .NET POWERTON变体
https://blog.telsy.com/meeting-powerband-the-apt33-net-powerton-variant/
We are greeting further cooperation with all parts of security services. If you are interested or have other technical questions relating to cybersecurity, please contact the following:

RSS:daily feed

Email:cert@360.cn

Twitter:@360CERT

or visit cert.360.cn