每日安全资讯-2020.2.17

声明:本文所有内容仅用于学习和研究目的,且不能违反《网络安全法》、《刑法》等相关要求,尤其禁止传播,或用于非善良目的。您查看本文,即视为遵守以上约定,否则责任自负。

今日导读:Fox Kitten –广泛开展的以攻击V_P_N服务器为目标的伊朗间谍活动、SonicWall SRA和SMA漏洞、SQL Server Reporting Services(SSRS)中的RCE漏洞分析、Apache Dubbo反序列化漏洞、Bad Binder - Finding an Android In The Wild 0-day等。

【病毒区】
1、Fox Kitten – Widespread Iranian Espionage-Offensive Campaign(hacking VPN servers:Pulse Secure,Fortinet,Palo Alto Networks,Citrix)
2、LokiBot Impersonates Popular Game Launcher and Drops Compiled C# Code File
3、Hamas Android Malware On IDF Soldiers-This is How it Happened
4、Analysis of APT34 DNS Tunneling Malware:PoisonFrog Part 1
5、Analysis of APT34 DNS Tunneling Malware:Glimpse Part 2

【漏洞分析区】
6、SonicWall SRA and SMA vulnerabilties
7、CVE-2020-0618: RCE in SQL Server Reporting Services (SSRS)
8、Javascript Injection in six Android mail clients
9、CVE-2019-18683: Exploiting a Linux kernel vulnerability in the V4L2 subsystem
10、CVE-2020-0668 - A Trivial Privilege Escalation Bug in Windows Service Tracing
11、An In-Depth Technical Analysis of CurveBall (CVE-2020-0601)
12、Escaping the Chrome Sandbox with RIDL
13、CVE-2019-17564 : Apache Dubbo反序列化漏洞
14、RocketMQ路径穿越漏洞的发现到利用的过程

【技术分享区】
15、ss协议漏洞的复现和利用
16、Evading WinDefender ATP credential-theft: kernel version
17、Flask RCE Debug Mode
18、Statically Reverse Engineering Shellcode Techniques: Stage 1
19、Java sink整理
20、Introducing the O365-Attack-Toolkit
21、Bad Binder - Finding an Android In The Wild 0-day
22、Shodan Pentesting Guide - Delving deep into Shodan’s mine
23、2020 State of Malware Report
24、SecWiki周刊(2020/02/10-2020/02/16)

1