12月22日安全热点 - VMWare发布安全更新/NHash大钱小恶

 

资讯类

VMWare发布安全更新，修复其产品中近期发现的四个漏洞

http://securityaffairs.co/wordpress/66997/security/vmware-code-execution-flaws.html

 

密币惊人的吸引力：“前”勒索软件Venuslocker现已转行挖矿

https://www.bleepingcomputer.com/news/security/venuslocker-ransomware-gang-switches-to-monero-mining/

 

新出现的勒索软件File-Locker针对韩国用户发起攻击，每次勒索至少5万元（50美金）

https://www.bleepingcomputer.com/news/security/file-locker-ransomware-targets-korean-victims-and-asks-for-50k-won/

 

技术类

使用RIPR模拟定制加密货币

https://blog.silentsignal.eu/2017/12/21/emulating-custom-crytography-with-ripr/

 

数据泄露缓解与修复 Part 4：赏金计划

https://www.troyhunt.com/fixing-data-breaches-part-4-bug-bounties/

 

Applocker用例学习：不安全性 Part 2

https://oddvar.moe/2017/12/21/applocker-case-study-how-insecure-is-it-really-part-2/

 

Undocumented PECOFF

https://media.blackhat.com/bh-us-11/Vuksan/BH_US_11_VuksanPericin_PECOFF_WP.pdf

 

开源的云端行为监控

https://github.com/capsule8/capsule8/

 

基于用例的使用Applocker加强Windows安全性 Part 2

https://oddvar.moe/2017/12/21/harden-windows-with-applocker-based-on-case-study-part-2/

 

年度漏洞回顾之四：VMWare漏洞

https://www.zerodayinitiative.com/blog/2017/12/21/vmwares-launch-escape-system

 

错误配置的rsync协议将会导致数据泄露问题出现

https://medium.com/@woj_ciech/couple-words-about-rsync-protocol-based-on-breach-of-2k-emails-from-czech-university-5e1cfafe50a9

 

NHash——大钱小恶

https://securelist.com/nhash-petty-pranks-with-big-finances/83506/

 

Responder -> MultiRelay -> Mimikatz -> Crackmapexec ->Windows PWNage

https://gameofpwnz.com/?p=684

 

圣诞将至：智能设备礼物所引发的思考

http://www.bbc.com/news/technology-42361279

 

利用radare2与r2pipe以图形化的方式创建ROP链

https://github.com/jpenalbae/rarop

 

俄罗斯与美国社交安全战数据分析

https://www.nbcnews.com/tech/social-media/russian-trolls-went-attack-during-key-election-moments-n827176