12月24日安全热点 - 斯诺登团队应用/Fancy Bear APT

 

资讯类

斯诺登团队新应用，可让手机成为小型监控设备

https://www.bleepingcomputer.com/news/technology/snowden-team-launches-app-that-turns-your-phone-into-mini-surveillance-station/

 

Globeimposter勒索软件通过邮件方式分发

http://securityaffairs.co/wordpress/67071/malware/globeimposter-ransomware-malspam-campaign.html

 

Fancy Bear APT组织使用更强的武器来发动攻击

http://securityaffairs.co/wordpress/67029/apt/fancy-bear-apt-backdoor.html

 

技术类

互联网中的BGP黑洞

https://conferences.sigcomm.org/imc/2017/papers/imc17-final90.pdf

 

Loapi——由静至动

https://www.joesecurity.org/blog/8190306932398442157

 

路由器与僵尸网络不得不说的故事

https://research.checkpoint.com/good-zero-day-skiddie/

 

CVE-2017-1000112与其他内核的可能性

http://ricklarabee.blogspot.com/2017/12/adapting-poc-for-cve-2017-1000112-to.html

 

Audiocodes MP264实验测试

http://www.batterystapl.es/2017/12/experimenting-with-audiocodes-mp264.html

 

XAttacker：Web漏洞扫描与自动利用

https://github.com/Moham3dRiahi/XAttacker

 

CVE-2017-7344 Windows登录提权

https://securite.intrinsec.com/2017/12/22/cve-2017-7344-fortinet-forticlient-windows-privilege-escalation-at-logon/

 

将密码破解与深度学习结合

https://github.com/brannondorsey/PassGAN

 

CVE-2017-17878 Valve Steam Link密码漏洞

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17878

 

Spring Engine SSTI RCE

https://hawkinsecurity.com/2017/12/13/rce-via-spring-engine-ssti/

 

Fancy Bear APT报告

https://www.welivesecurity.com/2017/12/21/sednit-update-fancy-bear-spent-year/