1月21日每日安全热点 - 7700万Nitro PDF用户数据泄露

360安全客 安全资讯 31000 4

Powered by 360CERT

漏洞 Vulnerability

思科修复SDWAN缓冲区溢出漏洞

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-bufovulns-B5NrSHbj

 

乱拍键盘导致的锁定绕过漏洞

https://github.com/linuxmint/cinnamon-screensaver/issues/354

 

安全工具 Security Tools

CISA云取证团队用于检测威胁的工具

https://github.com/cisagov/Sparrow/

 

安全资讯 Security Information

Fireeye发布工具检测Solarwinds

https://securityaffairs.co/wordpress/113643/apt/fireeye-solarwinds-auditing-tool.html

 

俄Livecoin遭攻击后无法恢复停止运营

https://securityaffairs.co/wordpress/113650/digital-id/livecoin-halted-operations.html

 

安全报告 Security Report

微软分享Solarwinds行动中用到的逃避检测策略

https://www.microsoft.com/security/blog/2021/01/20/deep-dive-into-the-solorigate-second-stage-activation-from-sunburst-to-teardrop-and-raindrop/

 

安全事件 Security Incident

7700万Nitro PDF用户数据泄露

https://www.bleepingcomputer.com/news/security/hacker-leaks-full-database-of-77-million-nitro-pdf-user-records/

 

Pixlr近200万数据泄露

https://www.bleepingcomputer.com/news/security/hacker-posts-19-million-pixlr-user-records-for-free-on-forum/

 

安全客 Security Geek

白名单,被谁绕过了?

https://www.anquanke.com/post/id/228916

 

emp3r0r – Linux下的进程注入和持久化

https://www.anquanke.com/post/id/229096

(完)