3月9日-每日安全知识热点

1.CVE-2016-1531：Exim 本地用户提权漏洞

http://exim.org/static/doc/CVE-2016-1531.txt

2.密码哈希：面对开发者的哈希基础知识和破解方法介绍 

http://ithare.com/password-hashing-why-and-how/

3.Citadel 0.0.1.1 介绍 

http://www.xylibox.com/2016/02/citadel-0011-atmos.html

4.BKPCTF 2016 ：Simple Calc writeup 

https://blahcat.github.io/2016/03/07/bkpctf-2016-simple-calc-writeup.html

5.PS>Attack介绍：一个便携的powershell控制端使渗透更简单 

http://blog.gdssecurity.com/labs/2016/3/8/introducing-psattack.html

6.Locky 恶意欺诈软件使用javascript下载者 

https://blogs.mcafee.com/mcafee-labs/locky-ransomware-rampage-javascript-downloader/

7.Wireshark Wtap_optionblock_free UAF漏洞poc 

https://packetstormsecurity.com/files/136110/GS20160307233508.tgz

8.你的智能手机的指纹读取器能够通过纸张和墨水被黑客攻破 

https://nakedsecurity.sophos.com/2016/03/08/your-smartphone-fingerprint-reader-could-be-hacked-using-paper-and-ink/

9.量子计算机使破解RSA加密更接近现实 

http://spectrum.ieee.org/tech-talk/computing/hardware/encryptionbusting-quantum-computer-practices-factoring-in-scalable-fiveatom-experiment

10.MS16-034：Windows内核模式的驱动导致权限提升 

https://technet.microsoft.com/en-us/library/security/MS16-034

11.MS16-025：windows 库加载漏洞导致远程代码执行 

https://technet.microsoft.com/en-us/library/security/MS16-02