360-CERT每日安全简报
Daily Security Briefing
2020-08-10 星期一
漏洞 Vulnerability
一个字节的差错导致Cisco防火墙路由器远程代码执行
https://blogs.360.cn/post/yi-ge-zi-jie-cha-cuo-dao-zhi-Cisco-fang-huo-qiang-lu-you-qi-yuan-cheng-dai-ma-zhi-xing.html
TeamViewer可通过浏览特定URL来破解用户密码(CVE-2020-13699)
https://www.helpnetsecurity.com/2020/08/06/cve-2020-13699/
安全工具 Security Tools
Juicy Potato:红队常用的Windows平台提权工具
https://github.com/ohpe/juicy-potato
在Linux上使用REMnux进行恶意软件分析相关技巧
https://zeltser.com/remnux-malware-analysis-tips/
安全报告 Security Report
2020年第二季度APT趋势报告
https://mp.weixin.qq.com/s/3Fk5tEqhwWjcp7QzOmMQww
卡巴斯基发布第二季度网络钓鱼报告
https://securelist.com/spam-and-phishing-in-q2-2020/97987/
安全事件 Security Incident
佳能遭受了勒索软件攻击
https://www.bleepingcomputer.com/news/security/canon-confirms-ransomware-attack-in-internal-memo/
安全研究 Security Research
如何使用趋势科技的Rootkit Remover安装Rootkit
https://billdemirkapi.me/How-to-use-Trend-Micro-Rootkit-Remover-to-Install-a-Rootkit/
游戏安全之借刀(句柄)杀人(自己)
https://bbs.pediy.com/thread-252710.htm
WMI ——重写版
https://mp.weixin.qq.com/s/3zhFNSIqL2x2WzjqcWgwbg
We are greeting further cooperation with all parts of security services. If you are interested or have other technical questions relating to cybersecurity, please contact the following:

RSS:daily feed

Email:cert@360.cn

Twitter:@360CERT

or visit cert.360.cn