【知识】11月22日 - 每日安全知识热点

http://p6.qhimg.com/t017313015b51e6034e.png

热点概要:向黑客势力低头!Uber被曝出破财消灾、安卓手机关闭定位后依然会被谷歌收集定位数据、区块链网站安全又遭挑战,Tether被黑,大量令牌泄露、2017 OWASP Top10正式发布、Gold SAML——新攻击技术、Atom之从Markdown到RCE、SGX-Bomb:对抗勒索软件、与Lazarus组织有关联的安卓恶意软件出现。

 

 

 

 

资讯类:

 

 

 

 

 

 

 

向黑客势力低头!Uber被曝出破财消灾

https://www.bloomberg.com/news/articles/2017-11-21/uber-concealed-cyberattack-that-exposed-57-million-people-s-data

 

安卓手机关闭定位后依然会被谷歌收集定位数据

https://thehackernews.com/2017/11/android-location-tracking.html

 

区块链网站安全又遭挑战,Tether被黑,大量令牌泄露

https://thehackernews.com/2017/11/tether-bitcoin-hacked.html

 

2017 OWASP Top10正式发布

http://securityaffairs.co/wordpress/65844/hacking/2017-owasp-top-10-final.html

 

 

 

技术类:

 

 

 

 

 

 

 

 

OSINT应用之轮船安全

https://www.pentestpartners.com/security-blog/osint-from-ship-satcoms/

 

Gold SAML——新攻击技术

https://www.cyberark.com/threat-research-blog/golden-saml-newly-discovered-attack-technique-forges-authentication-cloud-apps/

 

Atom之从Markdown到RCE

https://statuscode.ch/2017/11/from-markdown-to-rce-in-atom/

 

使用Linux和Go取代x86固件

https://lwn.net/SubscriberLink/738649/81007748bf15c1e5/

 

识别Empire Http监听器

https://www.tenable.com/blog/identifying-empire-http-listeners

 

数据泄露的5个阶段

https://www.troyhunt.com/the-5-stages-of-data-breach-grief/

 

OWASP Juice Shop——OWASP测试靶场

https://github.com/bkimminich/juice-shop

 

针对远程桌面协议的RDP安全工具

https://www.darknet.org.uk/2017/11/rdpy-rdp-security-tool-hacking-remote-desktop-protocol/

 

 

NTFS文件系统漏洞

 

https://bugs.chromium.org/p/project-zero/issues/detail?id=1325

 

模糊测试的艺术与应用实例

https://sec-consult.com/en/blog/2017/11/the-art-of-fuzzing-slides-and-demos/index.html

 

Wiko手机被曝收集用户数据

http://www.frandroid.com/marques/wiko/471870_wiko-sts-collecte-donnees-personnelles

 

SGX-Bomb:在勒索软件攻击时锁定处理器

https://sslab.gtisc.gatech.edu/assets/papers/2017/jang:sgx-bomb.pdf

 

2017 Flare-On Challenge Writeup

https://securedorg.github.io/flareon4/

 

与Lazarus组织有关联的安卓恶意软件出现

https://securingtomorrow.mcafee.com/mcafee-labs/android-malware-appears-linked-to-lazarus-cybercrime-group/

 

Office 365高级威胁防御与近期Office漏洞利用攻击的对抗

https://cloudblogs.microsoft.com/microsoftsecure/2017/11/21/office-365-advanced-threat-protection-defense-for-corporate-networks-against-recent-office-exploit-attacks/

 

CVE-2017-11853 内核ASLR绕过漏洞

https://bugs.chromium.org/p/project-zero/issues/detail?id=1362

(完)