管家重拳打击艾莎门等不良视频
20181月第三周舆情周报:安卓恶意软件、新欺诈样本、重大缺陷、其他安全事项等网络抓包工具Wireshark再爆2个DoS破绽CVE-2018-5334/5
http://toutiao.secjia.com/cve-2018-5334
据说涉嫌恐怖FruitFlymacOS恶意软件作者被捕
https://www.virusbulletin.com/blog/2018/01/alleged-author-creepy-fruitfly-macos-malware-arrested/
西部数据NAS设备被曝存在硬编码后门和未授权文件上传的高风险缺陷
http://www.freebuf.com/news/160039.html
黑客挟制BlackWallet的DNS服务器窃取400000美元
https://www.bleepingcomputer.com/news/security/hackers-hijack-dns-server-of-blackwallet-to-steal-400-000/
MiraiOkiru历史上第一次瞄准僵尸网络ARC物联网设备
http://securityaffairs.co/wordpress/67742/malware/mirai-okiru-botnet.html
ARM缺陷靶场测试平台
http://blog.exploitlab.net/2018/01/dvar-damn-vulnerable-arm-router.html?m=1
拉丁美洲金融机构磁盘擦除KillDisk的新变种
https://blog.trendmicro.com/trendlabs-security-intelligence/new-killdisk-variant-hits-financial-organizations-in-latin-america/
印第安纳州的一家医院遭受了痛苦SamSam勒索软件攻击已经支付了合同5.5赎金1万美元
https://www.bleepingcomputer.com/news/security/hospital-pays-55k-ransomware-demand-despite-having-backups/
一款dropper木马通过KakaoTalk、facebook等待社交网络流传
https://securingtomorrow.mcafee.com/mcafee-labs/north-korean-defectors-journalists-targeted-using-social-networks-kakaotalk/#sf179371573
ISCBIND9爆出DoS破绽CVE-2017-3145BIND9.0所有版本都受到影响
http://toutiao.secjia.com/cve-2017-3145
加密硬币挖矿恶意软件RubyMiner来袭Linux和Windows尽快给服务器补丁
http://toutiao.secjia.com/rubyminer-cryptominer-malware
SkygofreeAndroid特工软件的背后可能是意大利IT公司
https://www.bleepingcomputer.com/news/security/italian-it-company-possibly-behind-new-skygofree-android-spyware/
TransmissionBitTorrent客户端所有版本随便文件写破绽CVE-2018-5702PoC已公然
http://toutiao.secjia.com/cve-2018-5702
Andromeda详细剖析
2017年度顽固木马盘点报告
https://blog.avast.com/andromeda-under-the-microscope
三个黑客行使MicrosoftOffice缺陷流传Zyklon恶意软件
https://thehackernews.com/2018/01/microsoft-office-malware.html
勒索软件关闭了格林菲尔德汉考克地区医院
https://www.scmagazine.com/ransomware-shuts-down-greenfields-hancock-regional-hospital/article/737081/
典当风暴准备攻击美国参议员、政治和奥运目的
https://www.scmagazine.com/pawn-storm-aims-at-political-targets/article/736975/
Monero采矿样本分析——32位程序注入64位历程
https://blog.malwarebytes.com/threat-analysis/2018/01/a-coin-miner-with-a-heavens-gate/
RubyMinerMoneroCryptominer仅在24影响全球的时间很小30%的网络
CheckPoint平安研究人员已经发现了一个叫做RubyMiner恶意软件家族瞄准全球网络服务器,试图行使其资源挖掘Monero加密硬币。
http://securityaffairs.co/wordpress/67865/malware/rubyminer-monero-cryptominer.html
Satori僵尸网络正在攻击以太坊采矿设备
https://www.bleepingcomputer.com/news/security/satori-botnet-is-now-attacking-ethereum-mining-rigs/
Malspam推动Gozi-ISFB
https://isc.sans.edu/diary/23245
Skygofree恶意软件显示了从未见过的监控效果
https://www.scmagazine.com/skygofree-malware-reminiscent-of-hacker-team/article/737303/
GhostTeam盗取安卓恶意软件Facebook凭证
https://www.bleepingcomputer.com/news/security/ghostteam-android-malware-can-steal-facebook-credentials/
Nexflix垃圾邮件攻击用户
http://www.informationsecuritybuzz.com/expert-comments/netflix-phishing-scam-targeting-users/
赛门铁克研究人员检测到古老的获奖垃圾邮件转向安卓
https://www.symantec.com/blogs/threat-intelligence/congratulations-you-won-scam-android
恶意工控软件Triton行使斯奈德装备0day破绽
http://www.securityweek.com/triton-malware-exploited-zero-day-schneider-electric-devices
Lookout公司公布DarkCaracal流动讲述
https://www.lookout.com/info/ds-dark-caracal-ty
SaTori不仅行使路由器、摄像头,IOT装备DDos,转向挖矿
https://arstechnica.com/information-technology/2018/01/in-the-wild-malware-preys-on-computers-dedicated-to-mining-cryptocurrency/
联想指纹识别软件曝光漏洞