2月11日每日安全热点 - 黑客称CDPR多款游戏源代码已泄露

Inspired by 360CERT

漏洞 Vulnerability

恶意软件 Malware

安全研究 Security Research

CVE-2021-1722分析

https://streetfight.medium.com/analysis-of-cve-2021-1722-684d61a20041

 

DNS数据泄露指南

https://hinty.io/devforth/dns-exfiltration-of-data-step-by-step-simple-guide/

 

CVE-2019-1068分析

https://0xsaiyajin.github.io/vulnerability-research/2021/02/06/discovering-an-undisclosed-stack-overflow-vulnerability-in-mssql-server-cve-2019-1068.html

 

Intel Graphics Stack安全研究

https://igor-blue.github.io/2021/02/10/graphics-part1.html

 

安全工具 Security Tools

Frida 14.2发布

https://frida.re/news/2021/02/10/frida-14-2-released/

 

安全资讯 Security Information

微软再系统更新拟封死Zerologon漏洞利用

https://www.bleepingcomputer.com/news/security/microsoft-now-forces-secure-rpc-to-block-windows-zerologon-attacks/

 

黑客称CDPR多款游戏源代码已泄露

https://www.bleepingcomputer.com/news/security/hackers-auction-alleged-stolen-cyberpunk-2077-witcher-source-code/

 

SIM交换攻击部分黑客落网

https://www.bleepingcomputer.com/news/security/sim-hijackers-arrested-after-stealing-millions-from-us-celebrities/

安全事件 Security Incident

法国保险公司MNH遭Ransomexx勒索软件攻击

https://www.bleepingcomputer.com/news/security/french-mnh-health-insurance-company-hit-by-ransomexx-ransomware/

 

USCG指示使用Solarwinds的单位进行排查

https://www.bleepingcomputer.com/news/security/us-coast-guard-orders-maritime-facilities-to-report-solarwinds-breaches/