腾讯玄武实验室安全动态推送
Tencent Xuanwu Lab Security Daily News
-
[ Conference ] “Breaking BHAD: Abusing Belkin Home Automation Devices” heap overflow, SQL injection, & code injection 0-days #BHEU http://ow.ly/EcWg303Oem0
" BlackHat Europe 会议将于 11 月 3 ~ 4 号在伦敦举办,会议的大部分议题已经公布了: https://www.blackhat.com/eu-16/briefings.html "
-
[ iOS ] A Peek Under the Hood of iOS Malware Paper: https://webdiis.unizar.es/~ricardo/files/papers/GR-WMA-16.pdf Samples: https://webdiis.unizar.es/~ricardo/software-tools/supplementary-research-material/ios-malware-samples/ (by @ RicardoJRdez)
" 对 2009-2015 年间的 36 个 iOS 恶意软件家族的分析,Paper ︰ https://t.co/k7VvPCb1OB 样本︰ https://t.co/xKlLu9GE0B "
-
[ iOS ] .@ Apple Patches #Trident Vulnerabilities in #OSX, #Safari: https://threatpost.com/apple-patches-trident-vulnerabilities-in-os-x-safari/120336/ via @ threatpost
" 前两周 iOS 被曝了 3 个漏洞,之后 iOS 9.3.5 版本发布,修复了这些漏洞。这两天苹果也为 OS X 和 Safari 发布了针对这些漏洞的补丁更新: https://t.co/21adneBw7J 通过 @threatpost"
-
[ iOS ] Analysis and PoC of the iOS & OSX PEGASUS kernel exploit by @ i0n1c (great example of deserialization use-after-free) http://sektioneins.de/en/blog/16-09-02-pegasus-ios-kernel-vulnerability-explained.html
" PEGASUS iOS 内核漏洞的分析(CVE-2016-4656,附 PoC): https://t.co/xteEFdDxa8"
-
[ Linux ] Counter-measures against stack buffer overflows in GNU/Linux operating systems http://ac.els-cdn.com/S1877050916303039/1-s2.0-S1877050916303039-main.pdf?_tid=f21d2dc4-70f5-11e6-99a0-00000aab0f27&acdnat=1472811411_8134597dca7b9d6ace3dd5b3f1032110
" GNU/Linux 操作系统针对栈缓冲区溢出漏洞的对策,Paper: https://t.co/KfEFlMBBLj"
-
[ Malware ] Our analysis of TorrentLocker crypto-ransomware evolution http://www.welivesecurity.com/2016/09/01/torrentlocker-crypto-ransomware-still-active-using-tactics/ #malware #ransomware #filecoder #cybercrime
" TorrentLocker 加密勒索软件依然在活着: https://t.co/V48NXYjbnl "
-
[ Malware ] Ursnif malware: Deep Technical Dive: http://www.seculert.com/blogs/ursnif-deep-technical-dive https://t.co/Oe5p8NcWDQ
"Ursnif 恶意软件技术分析,Ursnif 可以从浏览器和 Outlook 偷数据︰ https://t.co/vIKXbsMODW https://t.co/Oe5p8NcWDQ"
-
[ Others ] How the JVM compares your strings using the craziest x86 instruction you've never heard of http://jcdav.is/2016/09/01/How-the-JVM-compares-your-strings/ (new blog post)
" Java 虚拟机 JVM 是如何比较字符串的: https://t.co/54N4iFURQa "
-
[ Pentest ] DyMerge - Dynamic Dictionary Merger http://bit.ly/2cvwodZ #github #hacking #hackers #pentest #infosec #cyber https://t.co/HEGvbw2CtB
"DyMerge - 动态字典合并工具: https://t.co/RWDWdVUoI9 "
-
[ Windows ] This is cool. MS is starting to document process mitigation options Group Policy settings. https://technet.microsoft.com/en-us/itpro/windows/keep-secure/override-mitigation-options-for-app-related-security-policies So is EMET dead on Win10?
" 利用组策略改写进程缓解选项,强化 APP 相关的安全配置: https://t.co/LcwQKGL2ZH "
-
[ Windows ] Didn't know there was such a project. Destroy Windows 10 Spying - https://github.com/Nummer/Destroy-Windows-10-Spying
" Destroy Windows 10 Spying - 禁用 Windows 10 与隐私、监控相关的模块和服务: https://t.co/oUxf0g6Eky"
