1月19日安全热点 - AMD CPU漏洞更新/GhostTeam恶意软件

资讯类

GhostTeam Android恶意软件可以窃取Facebook的证书

https://www.bleepingcomputer.com/news/security/ghostteam-android-malware-can-steal-facebook-credentials/

 

微软提供了 AMD 上的Meltdown & Spectre 更新

https://www.bleepingcomputer.com/news/microsoft/microsoft-resumes-meltdown-and-spectre-updates-for-amd-devices/

一些新的Chrome和Firefox扩展可能会导致浏览器劫持更难被阻止

https://blog.malwarebytes.com/threat-analysis/2018/01/new-chrome-and-firefox-extensions-block-their-removal-to-hijack-browsers/

 

黑客可能已经盗取了挪威一半人口的医疗数据

https://www.bleepingcomputer.com/news/security/hacker-might-have-stolen-the-healthcare-data-for-half-of-norway-s-population/

针对安卓设备的大规模监控活动出现

https://threatpost.com/sprawling-mobile-espionage-campaign-targets-android-devices/129524/

 

技术类

Linux堆开发介绍系列 – （BONUS）printf可能会泄漏！

https://sensepost.com/blog/2018/linux-heap-exploitation-intro-series-bonus-printf-might-be-leaking/

 

CubeCart 6.1.12 – 管理员身份验证绕过

https://blog.ripstech.com/2018/cubecart-admin-authentication-bypass/

 

使用Internet范围的扫描数据绕过CloudFlare

https://blog.christophetd.fr/bypassing-cloudflare-using-internet-wide-scan-data/

 

Necurs僵尸网络

http://blog.talosintelligence.com/2018/01/the-many-tentacles-of-necurs-botnet.html

 

Libc Realpath缓冲区下溢漏洞，可导致Linux本地提权

http://mp.weixin.qq.com/s/x69eDc8ke0wcUcwRdhsk4Q

 

MailChimp可能会泄漏您的电子邮件地址

https://shkspr.mobi/blog/2018/01/mailchimp-leaks-your-email-address/

 

Smiths Medical Medfusion 4000远程执行代码

https://github.com/sgayou/medfusion-4000-research/blob/master/doc/README.md

 

EvilURL v2.0 一个生成用于钓鱼攻击的 IDN域名的工具

https://www.kitploit.com/2018/01/evilurl-v20-unicode-domain-phishing.html