腾讯玄武实验室安全动态推送(Tencent Xuanwu Lab Security Daily News)

腾讯玄武实验室安全动态推送

Tencent Xuanwu Lab Security Daily News

2018/03/16

[ Android ] Google 对 2017 年 Android 安全的一个回顾： https://security.googleblog.com/2018/03/android-security-2017-year-in-review.html
[ Android ] 多个 Android DRM 服务存在内存溢出漏洞（CVE-2017-13253）： https://blog.zimperium.com/cve-2017-13253-buffer-overflow-multiple-android-drm-services/
[ Bug Bounty ] Microsoft 发布新漏洞悬赏项目： Speculative Execution Side Channel ： https://blogs.technet.microsoft.com/msrc/2018/03/14/speculative-execution-bounty-launch/
[ Challenges ] Pwn2Own 2018 第一天比赛结果： https://www.zerodayinitiative.com/blog/2018/3/14/pwn2own-2018-results-from-day-one Pwn2Own 2018 第二天比赛赛程： https://www.zerodayinitiative.com/blog/2018/3/15/pwn2own-2018-day-two-schedule
[ iOS ] Malwarebytes 对 GrayKey iPhone 解锁器的原理分析： https://blog.malwarebytes.com/security-world/2018/03/graykey-iphone-unlocker-poses-serious-security-concerns/
[ Linux ] Linux Heap Exploitation Intro Series: Set you free()： https://sensepost.com/blog/2018/linux-heap-exploitation-intro-series-set-you-free-part-1/
[ Others ] 使用 Webhooks 绕过支付： http://lightningsecurity.io/blog/bypassing-payments-using-webhooks/
[ Popular Software ] VPN Unlimited for MacOS 本地提权漏洞披露： https://github.com/VerSprite/research/blob/master/advisories/VS-2018-014.md
[ Programming ] 利用 Python 实现区块链的实用介绍： http://adilmoujahid.com/posts/2018/03/intro-blockchain-bitcoin-python/
[ Tools ] firefox_tunnel - 使用 Firefox 做隐藏通信隧道绕过防火墙限制的POC ： https://github.com/convisoappsec/firefox_tunnel
[ Tools ] Microsoft checkedc: C 的扩展，向 C 中加入了边界检查： https://github.com/Microsoft/checkedc
[ Windows ] 绕过 Windows Defender Attack Surface Reduction 规则： https://oddvar.moe/2018/03/15/windows-defender-attack-surface-reduction-rules-bypass/
[ Windows ] 活动目录安全配置指南： https://adsecurity.org/wp-content/uploads/2018/03/2018-Troopers-Metcalf-ActiveDirectorySecurityTheJourney-Final.pdf
[ Windows ] 如何在纯 C 中创建并使用 COM 组件： https://www.codeproject.com/Articles/13601/COM-in-plain-C
[ Windows ] Cobalt Strike PowerShell Payload 混淆以绕过 Windows Defender 防御： http://www.offensiveops.io/tools/cobalt-strike-bypassing-windows-defender-with-obfuscation/
[ Windows ] 利用已签名程序 dvdplay.exe 做启动项的技巧： http://www.hexacorn.com/blog/2018/03/15/beyond-good-ol-run-key-part-73/
[ WirelessSecurity ] Turning Broadcom Wi-Fi chips into SDRs： https://github.com/seemoo-lab/mobisys2018_nexmon_software_defined_radio

[ Data Breach ] 沃尔玛珠宝合作伙伴因 Amazon S3 配置失误泄漏露130万客户的个人资料： https://threatpost.com/walmart-jewelry-partner-exposes-personal-data-of-1-3m-customers/130486/
[ MalwareAnalysis ] 与伊朗相关的 TEMP.Zagros 组织在最新攻击活动使用了新技术： https://threatpost.com/iran-linked-group-temp-zagros-updates-tactics-techniques-in-latest-campaign/130447/
[ Popular Software ] Adobe ColdFusion 反序列化远程命令执行漏洞（CVE-2017-3066）环境与复现，来自 phithon别跟路人甲BB's weibo： https://m.weibo.cn/status/4217944643207972
[ Tools ] Powershell-RAT - 基于 Python 的后门程序，使用 Gmail 通过附件将数据泄露出去： https://github.com/Viralmaniar/Powershell-RAT
[ Virtualization ] VMware Workstation and Fusion 拒绝服务攻击漏洞披露（CVE-2018-6957）： https://www.vmware.com/security/advisories/VMSA-2018-0008.html
[ Windows ] CVE-2018-0886："MS-RDP 逻辑 RCE 漏洞" 初步解读： https://www.anquanke.com/post/id/101158
[ Windows ] 在 SYSVOL 中查找密码并利用组策略首选项： https://adsecurity.org/?p=2288

2018/03/16