每日安全动态推送(01-19)

Tencent Security Xuanwu Lab Daily News

• Vulnerable AWS Lambda function – Initial access in cloud attacks:
https://sysdig.com/blog/exploit-mitigate-aws-lambdas-mitre/

   ・ Vulnerable AWS Lambda function – Initial access in cloud attacks – Jett

• Vulnerability Spotlight: RCE in Ajax.NET Professional:
https://mogwailabs.de/en/blog/2022/01/vulnerability-spotlight-rce-in-ajax.net-professional/

   ・ ASP.NET Ajax 框架 Ajax.NET Professional 被发现 RCE 漏洞 – Jett

• CVE-2022-21661: Exposing Database Info via WordPress SQL Injection:
https://www.zerodayinitiative.com/blog/2022/1/18/cve-2021-21661-exposing-database-info-via-wordpress-sql-injection

   ・ WordPress WP_Query SQL 注入漏洞（CVE-2022-21661）的分析 – Jett

• Zooming in on Zero-click Exploits:
https://googleprojectzero.blogspot.com//2022/01/zooming-in-on-zero-click-exploits.html

   ・ Project Zero Natalie Silvanovich 对 Zoom 的安全研究 “Zooming in on Zero-click Exploits” – Jett

• SeeYouCM-Thief: Exploiting common misconfigurations in Cisco phone systems:
https://www.trustedsec.com/blog/seeyoucm-thief-exploiting-common-misconfigurations-in-cisco-phone-systems/

   ・ SeeYouCM Thief – 思科电话系统的常见错误配置问题以及对应的安全影响 – Jett

• [Tools] Building a Bootable USB drive with UEFI Shell (x64):
https://chipsec.github.io/installation/USB%20with%20UEFI%20Shell.html

   ・ Building a Bootable USB drive with UEFI Shell (x64). – lanying37

• [IoT] A Beginner’s guide into Router Hacking and Firmware Emulation:
https://secnigma.wordpress.com/a-beginners-guide-into-router-hacking-and-firmware-emulation/

   ・ A Beginner’s guide into Router Hacking and Firmware Emulation  – Jett

• [Malware] Analysis of Destructive Malware (WhisperGate) targeting Ukraine:
https://medium.com/s2wblog/analysis-of-destructive-malware-whispergate-targeting-ukraine-9d5d158f19f3

   ・ 定向攻击乌克兰的 WhisperGate 恶意样本分析 – Jett

• LDAP Relay Scan:
https://github.com/zyn3rgy/LdapRelayScan

   ・ 扫描域控是否存在 NTLM Reply 问题的工具 – Jett

• [Crypto] Telenot Complex: Insecure AES Key Generation:
https://x41-dsec.de/lab/blog/telenot-complex-insecure-keygen/

   ・ Telenot Complex: Insecure AES Key Generation  – Jett

• New Ransomware Spotted: White Rabbit and Its Evasion Tactics:
https://www.trendmicro.com/en_us/research/22/a/new-ransomware-spotted-white-rabbit-and-its-evasion-tactics.html

   ・ 趋势科技对 White Rabbit 勒索软件家族的分析 – Jett

• python受限的任意代码执行与黑魔法:
https://tttang.com/archive/1397/

   ・ python受限的任意代码执行与黑魔法攻略. – lanying37

* 查看或搜索历史推送内容请访问：
https://sec.today

* 新浪微博账号：腾讯玄武实验室
https://weibo.com/xuanwulab

原文始发于微信公众号（腾讯玄武实验室）：每日安全动态推送(01-19)