360-CERT每日安全简报
Daily Security Briefing
2020-10-27 星期二
安全工具 Security Tools
mitre推出捍卫机器学习系统的Adversarial ML Threat Matrix开放框架
https://github.com/mitre/advmlthreatmatrix
安全事件 Security Incident
Nitro PDF 数据泄露事件,影响包括包括Apple,Chase,花旗银行,Google和Microsoft在内的多个厂商
https://securityaffairs.co/wordpress/110025/data-breach/nitro-pdf-data-breach.html?utm_source=rss&utm_medium=rss&utm_campaign=nitro-pdf-data-breach
恶意软件 Malware
Gacrux:基于C语言编写的可自定义PE加载的恶意软件
https://krabsonsecurity.com/2020/10/24/gacrux-a-basic-c-malware-with-a-custom-pe-loader/
安全资讯 Security Information
Linux 5.10将淘汰set_fs函数
https://www.zdnet.com/article/linux-5-10-finally-ditches-decades-old-tool-that-caused-security-bugs/
安全研究 Security Research
详细介绍两个VMWARE WORKSTATION TOCTOU漏洞
https://www.zerodayinitiative.com/blog/2020/10/22/detailing-two-vmware-workstation-toctou-vulnerabilities
BCEL ClassLoader去哪了
https://www.leavesongs.com/PENETRATION/where-is-bcel-classloader.html
Exp开发者聚焦:PlayBit的故事
https://research.checkpoint.com/2020/graphology-of-an-exploit-playbit/
北非狐(APT-C-44)攻击活动揭露
https://mp.weixin.qq.com/s/gWOIRNPLVqX761LW8x-S5g
NICER协议深入探讨:远程桌面(RDP)的互联网暴露情况
https://blog.rapid7.com/2020/10/23/nicer-protocol-deep-dive-internet-exposure-of-remote-desktop-rdp/
KashmirBlack僵尸网犯罪活动第一部分
https://www.imperva.com/blog/crimeops-of-the-kashmirblack-botnet-part-i/
KashmirBlack僵尸网犯罪活动第二部分
https://www.imperva.com/blog/crimeops-of-the-kashmirblack-botnet-part-ii/
We are greeting further cooperation with all parts of security services. If you are interested or have other technical questions relating to cybersecurity, please contact the following:

RSS:daily feed

Email:cert@360.cn

Twitter:@360CERT

or visit cert.360.cn