12月4日安全热点 - TIO Network数据泄露/RSA SDK漏洞修复

360安全客 安全知识 61817 4

资讯类

Paypal下属TIO Network遭遇重大数据泄露事件,影响超过160万顾客。目前TIO Network已暂停运营,并开启审查。不过在此事件中Paypal用户并没有受到波及。
http://securityaffairs.co/wordpress/66309/data-breach/paypal-tio-networks-data-breach.html

 

美国国土安全部泄露备忘录指控DJI从事间谍活动

https://www.csoonline.com/article/3239726/security/leaked-dhs-memo-accused-drone-maker-dji-of-spying-for-china.html

 

戴尔等供应商开始在笔记本电脑等设备中禁用Intel ME,最近它身上出现的安全漏洞令各家公司都很失望,Purism和System76率先做出回应。

https://www.bleepingcomputer.com/news/hardware/dell-other-vendors-start-shipping-laptops-with-intel-me-firmware-disabled/

 

RSA在它授权发布的SDK中发现了重大Bug,如果你用它来编写你的程序,那你就成功继承了这个严重的问题!RSA已经就此发布了更新补丁。

https://www.theregister.co.uk/2017/12/03/rsa_auhentication_bugs/

 

技术类

通过使用Access的方式钓鱼
http://www.rvrsh3ll.net/blog/phishing/phishing-for-access/

 

Haveibeenpwned网站创始人讲述网站点滴并评估未来数据泄露状况

https://www.troyhunt.com/introducing-have-i-been-pwned/

 

利用Powershell在管理组增加用户时获得通知

https://sid-500.com/2017/11/28/powershell-notify-me-when-someone-is-added-to-the-administrator-group/

 

安全研究员发现可通过UNC路径绕过Windows Defender控制目录

https://bugs.chromium.org/p/project-zero/issues/detail?id=1418

 

保护RDP:Windows中的SSH隧道

https://blog.netnerds.net/2017/12/updated-ssh-tunneling-for-windows-people-protecting-remote-desktop/

 

WordPress插件Content Cards现XSS漏洞可令攻击者使用Opengraph数据插入JS代码

https://nvd.nist.gov/vuln/detail/CVE-2017-17096

 

新的浏览器挖矿技术可在浏览器窗口关闭情况下持续挖矿

https://blog.malwarebytes.com/cybercrime/2017/11/persistent-drive-by-cryptomining-coming-to-a-browser-near-you/

 

理解与检测Win API Hooks

https://userpc.net/2017/12/03/understanding-detecting-inline-hooks-winapi-hooks-ring3/

 

定位双因子验证

https://darkangle.net/2017/11/30/localized-two-factor-authentication-using-u2f/

 

Mirai僵尸网络回顾详析

https://www.elie.net/blog/security/inside-mirai-the-infamous-iot-botnet-a-retrospective-analysis

 

亚马逊S3桶模拟器

https://github.com/bbb31/slurp

 

比特币安全之窃取与保护

https://magoo.github.io/Blockchain-Graveyard/

 

比特币真的去中心化吗

https://medium.com/@homakov/stop-calling-bitcoin-decentralized-cb703d69dc27

 

通过证书传输日志挖掘有趣的亚马逊S3桶

https://github.com/eth0izzle/bucket-stream

 

BSidesCPT 2017 RFcat Challenge

https://gist.github.com/leonjza/341b850f131e7078508ce2cb7ec23cdc

(完)