6月21日-每日安全知识热点

阅读量    22547 |

分享到: QQ空间 新浪微博 微信 QQ facebook twitter

http://p0.qhimg.com/t01f7ef32da341925d2.jpg

技术类:

CVE-2016-2177 openssl: 可能的整形溢出漏洞

https://bugzilla.redhat.com/show_bug.cgi?id=1341705


介绍GPU密码破解,以LinkedIN密码破解为例

https://www.trustedsec.com/june-2016/introduction-gpu-password-cracking-owning-linkedin-password-dump/


发现浏览器扩展捕捉恶意行为

https://labs.opendns.com/2016/06/16/finding-browser-extensions-find-evil/


实践和理论证明ANTLR和Roslyn源码解析

http://blog.ptsecurity.com/2016/06/theory-and-practice-of-source-code.html


利用linux内核中的递归

https://googleprojectzero.blogspot.com/2016/06/exploiting-recursion-in-linux-kernel_20.html


Alfresco Activiti的安全漏洞可导致远程代码执行

http://remoteawesomethoughts.blogspot.de/2016/06/alfresco-activiti.html


在取证中了解Windows的关键组建及其相关性

http://resources.infosecinstitute.com/understanding-critical-windows-artifacts-and-their-relevance-during-investigation/


fireeye报告:中国将重启网络间谍活动

https://www.fireeye.com/content/dam/fireeye-www/current-threats/pdfs/rpt-china-espionage.pdf


恶意软件使用google talk拨打恶意电话

https://blog.malwarebytes.com/cybercrime/mobile/2016/06/google-talk-used-to-make-malicious-phone-calls-android-trojan-pawost/


Windows Kernel ATMFD.DLL NamedEscape 0x250C pool corruption        

https://bugs.chromium.org/p/project-zero/issues/detail?id=785#c_ts1466427097


docker发布windows版

https://docs.docker.com/docker-for-mac/


安全tor浏览器对抗去匿名化的exploit

https://www.ics.uci.edu/~perl/pets16_selfrando.pdf


Cerber恶意欺诈软件针对美国,土耳其和英国

http://blog.checkpoint.com/2016/06/20/cerber-ransomware-targets-u-s-turkey-and-the-uk-in-two-waves/


ios模拟器

https://github.com/PoomSmart/SimulatorHooker


TSD 2016会议ppt

https://www.insinuator.net/2016/04/tsd-2016-follow-up/


资讯类:

宏基通知客户在线购物网站数据泄露

https://www.grahamcluley.com/2016/06/acer-customer-data-breach/


中国构建世界最快的超算,没有使用美国的芯片

https://hardware.slashdot.org/story/16/06/20/1357251/china-builds-worlds-fastest-supercomputer-without-us-chips?utm_content=buffer3cb50&utm_medium=social&utm_source=twitter.com&utm_campaign=buffer


超过176,000 Unique 被黑的服务账号在xDedic地下市场售卖

http://www.securityweek.com/over-176000-unique-hacked-servers-sold-xdedic-marketplace?utm_source=dlvr.it&utm_medium=twitter


新的恶意软件推出”银行木马即服务“

http://news.softpedia.com/news/new-malware-mangit-surfaces-as-banking-trojan-as-a-service-505458.shtml


T-Mobile员工涉嫌偷取和贩卖客户数据

http://news.softpedia.com/news/t-mobile-employee-stole-and-tried-to-sell-customer-data-505440.shtml


数据泄露消息:

megabot.us/Hotfile.pw/yfile.net网站源码和数据库泄露

分享到: QQ空间 新浪微博 微信 QQ facebook twitter
|推荐阅读
|发表评论
|评论列表
加载更多