腾讯玄武实验室安全动态推送
Tencent Xuanwu Lab Security Daily News
-
[ Attack ] Chinese Threat Intel Start-up Finds DarkHotel Exploiting Chinese Telecom http://www.darkreading.com/threat-intelligence/chinese-threat-intel-start-up-finds-darkhotel-exploiting-chinese-telecom/d/d-id/1324496 @ sarapeters
"据国内威胁情报公司 ThreatBook(微步在线)透露, DarkHotel 攻击组织正在攻击中国和朝鲜的电信运营商, 而且至少已经攻陷了一个: https://t.co/eMnv0GwVe3 "
-
[ Attack ] Take a trip to the various cybercriminal underground economies all over the world: http://bit.ly/1OLuSKl #DeepWeb
"TrendMicro 的<暗网与网络犯罪调查报告>, 探寻地下网络经济: https://t.co/3Vpk3lXPHB "
-
[ Backdoor ] The return of HackingTeam with new implants for OS X - Securelist http://bit.ly/1TnZY2P some detail on the HT OSX implant
"HackingTeam 带着新后门回来了, 来自 Kaspersky 的分析: https://t.co/yZLd1YyLeC "
-
[ Defend ] Google's DLP for Gmail Adds Optical Character Recognition | http://SecurityWeek.Com http://ow.ly/YXQiB
"Google 为 Gmail DLP 防御加入了光学字符识别特性: https://t.co/73Ity5M10n https://t.co/NyMdsTpqyu"
-
[ Linux ] We've released the PS4 kexec-style code to load the Linux kernel from Orbis OS. https://github.com/fail0verflow/ps4-kexec (exploit not included)
"作者实现了一个 PS4 Orbis OS kexec 系统调用,通过这个系统调用可以直接在 FreeBSD 中引导 Linux 内核: https://t.co/kEaCRRmNTE "
-
[ Mac OS X ] RSA Slides: "Let’s Play Doctor: Practical OS X Malware Detection & Analysis" [PDF] https://www.synack.com/wp-content/uploads/2016/03/RSA_OSX_Malware.pdf #Synack #RSAC #OSXMalware
" 大家一起当医生 - OS X 恶意软件检测与分析实战, 来自 Synack 在 RSA 会议的演讲(PDF): https://t.co/QiwONyq5Jz "
-
[ MalwareAnalysis ] Imminent Monitor 4 RAT Analysis – Further Into The RAT https://itsjack.cc/blog/2016/03/imminent-monitor-4-rat-analysis-further-into-the-rat/
"Imminent Monitor 4 远控工具分析, Blog: https://t.co/pVsuyTbZvU"
-
[ MalwareAnalysis ] The Turbo Campaign, Featuring #Derusbi for 64-bit Linux: https://www.fidelissecurity.com/sites/default/files/TA_Fidelis_Turbo_1602%283%29.pdf (PDF) H/T @ shu_tom #malware
" 著名远控家族 Derusbi 在 Turbo 攻击行动中首次使用了一个 64 位 Linux 样本, 这个样本有很多特殊性, 来自 Fidelis Security 的分析报告(PDF): https://t.co/nTA1mvxZ2H "
-
[ MalwareAnalysis ] New Malware ‘Rover’ Targets Indian Ambassador to Afghanistan http://researchcenter.paloaltonetworks.com/2016/02/new-malware-rover-targets-indian-ambassador-to-afghanistan/
"新恶意软件 'Rover' 通过邮件攻击印度驻阿富汗大使, 来自 Palo Alto 的分析: https://t.co/UpNEnhXq5u "
-
[ Others ] We have summarized all DTD/XXE attacks that we know in our "DTD Cheat Sheet" http://web-in-security.blogspot.de/2016/03/xxe-cheat-sheet.html Comments and new vectors are welcome!
"作者将所有的 DTD/XXE 攻击总结成了一份手册: https://t.co/DIL05MCHGO "
-
[ Others ] Microsoft Launches Windows 10 IoT Core Preview for Raspberry Pi 3 ~ http://www.newsfactor.com/mobile/?sid=100966&do=story
"为支持树莓派 3, 微软发布了一个 Windows 10 IoT Code Preview 更新: https://t.co/COY6eFCcXk"
-
[ Pentest ] .@ PyroTek3's "Unofficial Guide to Mimikatz & Command Reference" updated https://adsecurity.org/?p=2696 https://t.co/twHUBnAGV2
"Mimikatz 非官方参考手册更新,本次更新涵盖了 Mimikatz v2.1 Alpha 版本的新模块和新特性: https://t.co/fPwS8X2idV https://t.co/twHUBnAGV2"
-
[ Tools ] New blog post from NetSPI: Java Deserialization Attacks with Burp http://ift.tt/1Si2EgT
" 来自 NetSPI 公司的 Eric Gruber 为 Burp 写了一个 Java 序列化攻击扩展, Blog: https://t.co/f4yK7sLoXR Github: https://github.com/NetSPI/Burp-Extensions/releases "
-
[ Web Security ] Finding a XSS in Microsoft OAuth Interface, a major risk for the security of the users' account http://ownsecurity.blogspot.com/2016/03/finding-xss-in-microsoft-oauth.html #infosec #bugbounty
"微软 OAuth 接口 XSS, Blog: https://t.co/tc3hBtsrXL "
-
[ Web Security ] Widespread XSS Vulnerabilities in Ad Network Code Affecting Top Tier Publishers, Retailers http://randywestergren.com/widespread-xss-vulnerabilities-ad-network-code-affecting-top-tier-publishers-retailers/
"嵌入第三方广告代码的同时,也可能嵌入了 XSS - 由于当前广告行业的碎片化比较严重,使广告网络的代码也比较混乱。作者分析几个案例,这几个案例影响一些顶级的出版商、零售商: https://t.co/KWnaLVRvGf"
