2月16日每日安全热点 - 等保测评2.0:Windows安全审计

 

【恶意软件】

1.2020年1月的全球威胁指数报告:新冠病毒主题垃圾邮件传播Emotet恶意软件
https://mp.weixin.qq.com/s/sZG4KizDLPpdb4U4XSQJIw


【安全研究】

1.渗透痕迹分析随笔
https://www.freebuf.com/articles/others-articles/226423.html

2.使用RIDL逃逸Chrome沙盒
https://googleprojectzero.blogspot.com/2020/02/escaping-chrome-sandbox-with-ridl.html

3. CVE-2020-0601的深入技术分析
https://blog.trendmicro.com/trendlabs-security-intelligence/an-in-depth-technical-analysis-of-curveball-cve-2020-0601/

4.利用屏幕亮度从非联网计算机中窃取数据
https://thehackernews.com/2020/02/hacking-air-gapped-computers.html

5. 受SweynTooth漏洞影响的Bluetooth LE设备
https://www.zdnet.com/article/unknown-number-of-bluetooth-le-devices-impacted-by-sweyntooth-vulnerabilities/


【安全工具】

1.Lsassy:如何远程从lsaas中提取用户凭证
https://www.freebuf.com/sectool/226170.html


【安全资讯】

1.等保测评2.0:Windows安全审计
https://mp.weixin.qq.com/s/cY0ACfSfcgo89VPun0xiSA

2.WordPress GDPR Cookie插件中的漏洞使700K网站存在风险
https://latesthackingnews.com/2020/02/15/vulnerability-in-wordpress-gdpr-cookie-consent-plugin-risks-700k-websites/

3.PhotoSquared应用程序泄露了100,000个用户的照片和家庭住址
https://www.hackread.com/photosquared-leaks-photos-home-addresses-of-users/

4.网传思科准备收购网络安全公司FireEye,思科相关人士否认
https://mp.weixin.qq.com/s/NqWvYfKZ_mc2GioPV3z3PQ


 

(完)