证券简称:天融信   证券代码:002212
安全通告
首页 > 技术支持 > 安全通告

每日攻防资讯简报[Apr.1th]

发布时间:2021-04-01查看次数:226
分享到

0x00工具

1.多功能cobaltstrike插件

https://github.com/wafinfo/cobaltstrike

0x01恶意代码

1.TA453在凭据网络钓鱼活动中将美国和以色列的医学研究人员作为目标

https://www.proofpoint.com/us/blog/threat-insight/badblood-ta453-targets-us-and-israeli-medical-research-personnel-credential

2.伪造的jQuery文件通过恶意软件感染WordPress网站

https://www.bleepingcomputer.com/news/security/fake-jquery-files-infect-wordpress-sites-with-malware/

3.攻击者使用游戏的Mod和作弊系统来部署窃密软件

https://blog.talosintelligence.com/2021/03/cheating-cheater-how-adversaries-are.html

0x02技术

1.移动手机隐私: 衡量iOS和Android发送给Apple和Google的数据。结果显示:Android向Google发送的数据比iOS向Apple发送的数据多20倍

https://www.scss.tcd.ie/doug.leith/apple_google.pdf

2.DLL代理劫持教程,与75个可利用的MS Teams Dll

https://milosilo.com/hacking/microsoft-teams-proxy-dll-hijacking/

3.对Apache HTTP进行模糊测试,Part2:构建自定义ASAN拦截器,以便在实现自定义内存池时捕获内存错误

https://securitylab.github.com/research/fuzzing-apache-2/

4.如何拦截Java胖客户端的相互认证的TLS通信

https://offsec.almond.consulting/java-tls-intercept.html

5.从老式IBM ES / 9000大型机中拆卸逻辑芯片

http://www.righto.com/2021/03/logic-chip-teardown-from-vintage-ibm.html

6.凭据网络钓鱼:主题和策略

https://www.menlosecurity.com/blog/credential-phishing-themes-and-tactics

7.武器化XSS的技巧

https://www.trustedsec.com/blog/tricks-for-weaponizing-xss/

8.利用配置错误的OAuth来接管帐户

https://infosecwriteups.com/exploiting-misconfigured-oauth-to-takeover-accounts-225a367bca43

9.利用sql注入错误来“跳转”到其他漏洞

https://infosecwriteups.com/jumping-from-sql-injection-to-rce-ea354e5d4f94

10.识别损坏的访问控制的有效和高效的方法

https://threat.tevora.com/finding-broken-access-controls/

11.通过JTAG接口利用嵌入式Linux设备

https://techspective.net/2021/03/30/exploiting-embedded-linux-devices-through-the-jtag-interface/

12.2020年的金融网络威胁报告,提供了整个财务威胁领域的最新趋势和关键事件的概述

https://securelist.com/financial-cyberthreats-in-2020/101638/

13.Reality Check for your Defenses

https://www.mcafee.com/blogs/other-blogs/mcafee-labs/mcafee-defenders-blog-reality-check-for-your-defenses/

14.我现在拥有Coinhive域,然后使用内容安全策略来对抗加密劫持和做善事

https://www.troyhunt.com/i-now-own-the-coinhive-domain-heres-how-im-fighting-cryptojacking-and-doing-good-things-with-content-security-policies/