2月5日每日安全热点 - StormShield遭黑客攻击防火墙源代码恐已泄露

Inspired by 360CERT

漏洞 Vulnerability

Chrome修复在野利用0day漏洞

https://www.bleepingcomputer.com/news/security/google-fixes-chrome-zero-day-actively-exploited-in-the-wild/

 

安全研究 Security Research

我与ISIS的恩怨情仇

https://www.ibrascript.com/my-affair-with-isis-death-threats-de-anonymization-and-phishing-links/

 

Rust攻击研究

https://academy.kerkour.com/black-hat-rust

 

Facebook Gameroom安全研究

https://spaceraccoon.dev/applying-offensive-reverse-engineering-to-facebook-gameroom

 

AFL Fuzzing

https://sayfer.io/blog/fuzzing-part-2-fuzzing-with-afl/

 

安全资讯 Security Information

Oxfam Australia调查可能的数据泄露事件

https://www.bleepingcomputer.com/news/security/oxfam-australia-investigates-data-breach-after-database-sold-online/

 

安全报告 Security Report

针对安全人员的钓鱼攻击中又被发现使用IE 0day漏洞

https://www.bleepingcomputer.com/news/security/hacking-group-also-used-an-ie-zero-day-against-security-researchers/

 

安全事件 Security Incident

StormShield遭黑客攻击防火墙源代码恐已泄露

https://www.bleepingcomputer.com/news/security/hackers-steal-stormshield-firewall-source-code-in-data-breach/

 

Plex Media服务器被利用进行DDoS攻击

https://www.bleepingcomputer.com/news/security/plex-media-servers-actively-abused-to-amplify-ddos-attacks/

 

安全客 Security Geek

CVE-2019-8605 FROM UAF TO TFP0

https://www.anquanke.com/post/id/230893