漏洞 Vulnerability
CVE-2020-2654:IBM MQ消息队列拒绝访问漏洞
https://www.ibm.com/blogs/psirt/security-bulletin-ibm-mq-appliance-is-affected-by-a-denial-of-service-vulnerability-cve-2020-2654/
CVE-2020-7016:Kibana 6.8.11之前版本拒绝访问漏洞
https://twitter.com/CVEnew/status/1287821345070501893
CVE-2020-8558:Kubernetes安全漏洞
https://unit42.paloaltonetworks.com/cve-2020-8558/
安全工具 Security Tools
TrustJack – Windows中劫持DLL的另一个PoC
http://feedproxy.google.com/~r/PentestTools/~3/DzvS1ceHIKQ/trustjack-yet-another-poc-for-hijacking.html
安全事件 Security Incident
QNAP NAS恶意软件Qsnatch感染超过6万台设备
https://go.theregister.com/feed/www.theregister.com/2020/07/27/qnap_attack_warning/
Cloudflare数据泄漏:导致将近300万个站点的真实IP地址暴露
https://www.hackread.com/cloudflare-data-leak-expose-ip-addresses-ukraine/
美国网络安全与基础设施安全局警告:F5 BIG-IP系统正在被黑客大规模利用
http://feedproxy.google.com/~r/Securityweek/~3/I6Zau8m1Kns/cisa-says-hackers-exploited-big-ip-vulnerability-attacks-us-government
恶意软件 Malware
具备勒索功能的Webshell样本分析
https://blog.trendmicro.com/trendlabs-security-intelligence/ensiko-a-webshell-with-ransomware-capabilities/?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+Anti-MalwareBlog+%28Trendlabs+Security+Intelligence+Blog%29
安全研究 Security Research
CSCG 2020CTF逆向题解(基础篇)
https://0x00sec.org/t/cscg-2020-reversing-intro-challenges-writeup-easy-level/20096/10
分析AVAST SecureLine VPN任意文件创建漏洞
https://www.anquanke.com/post/id/211502
版权声明
本站原创文章转载请注明文章出处及链接,谢谢合作!
评论