Tencent Security Xuanwu Lab Daily News

• Tech Minds: Testing the NooElec FlyCatcher RTL-SDR ADS-B+UAT Raspberry Pi Hat:
https://www.rtl-sdr.com/tech-minds-testing-the-nooelec-flycatcher-rtl-sdr-ads-buat-raspberry-pi-hat/

   ・ 介绍了一种新的针对Raspberry Pi的技术——'FlyCatcher' RTL-SDR ADS-B hat，该技术可用于测试和监视无线电信号。 – SecTodayBot

• Security Analysis of the EU’s Digital Wallet:
https://www.schneier.com/blog/archives/2024/06/security-analysis-of-the-eus-digital-wallet.html

   ・ 讨论了如何在1970年代的CPU上实现现代安全性，以及需要在网络安全方面进行不同思考。 – SecTodayBot

• Stealthy Shellcode Injection: Bypassing Memory Protections with Windows Forking:
https://meterpreter.org/stealthy-shellcode-injection-bypassing-memory-protections-with-windows-forking/

   ・ 介绍了一种新的绕过内存保护并注入恶意shellcode的技术，该技术可用于绕过内存保护并注入恶意代码 – SecTodayBot

• The Windows Registry Adventure #3: Learning resources:
https://googleprojectzero.blogspot.com/2024/06/the-windows-registry-adventure-3.html

   ・ 讨论了漏洞研究和Windows注册表，突出了对漏洞挖掘的重要性和使用Microsoft Learn等安全工具进行研究的实践方法。 – SecTodayBot

• Microsoft Unveils New AI Jailbreak That Allows Execution Of Malicious Instructions:
https://cybersecuritynews.com/microsoft-ai-jailbreak-skeleton-key/

   ・ 一种名为Skeleton Key的新的AI越狱技术，可以绕过各种生成式AI模型中的负责任AI防护栏。这种新的攻击类型称为直接提示注入，可以理想地打败建立这些AI模型的所有安全预防措施。 – SecTodayBot

• ELFieScanner: Advanced process memory threat detection on Linux:
https://meterpreter.org/elfiescanner-advanced-process-memory-threat-detection-on-linux/

   ・ 一种用于Linux系统的高级进程内存扫描工具，能够检测威胁行为和开源用户态rootkit中使用的恶意技术。 – SecTodayBot

• 40 vulnerabilities in Toshiba Multi-Function Printers:
https://pierrekim.github.io/blog/2024-06-27-toshiba-mfp-40-vulnerabilities.html

   ・ 关于东芝多功能打印机(MFP)的40个详细漏洞信息 – SecTodayBot

• SpyMax – A New Android RAT Targeting Telegram Users:
https://securityonline.info/spymax-a-new-android-rat-targeting-telegram-users/

   ・ 一种新的针对Telegram用户的Android远程管理工具（RAT），它通过伪装成合法的Telegram应用来诱骗用户安装恶意软件 – SecTodayBot

• Saftellite:
https://github.com/seemoo-lab/satellite-messenger

   ・ 一款用于iOS的卫星信使工具 – SecTodayBot

• Indirector: High-Precision Branch Target Injection Attacks Exploiting the Indirect Branch Predictor:
https://seclists.org/oss-sec/2024/q2/308

   ・ 一种利用高端英特尔CPU中的IBP进行的新的Spectre V2攻击方法，揭示了IBP和BTB的细节结构和功能，并提出了针对英特尔CPU运行操作系统的缓解建议。 – SecTodayBot

• IPPrint C2: PoC for using MS Windows printers for persistence / C2 via Internet Printing:
https://meterpreter.org/ipprint-c2-poc-for-using-ms-windows-printers-for-persistence-c2-via-internet-printing/

   ・ 使用Microsoft Windows打印机实现持久性/命令和控制的概念验证，通过Internet打印 – SecTodayBot

* 查看或搜索历史推送内容请访问：
https://sec.today

* 新浪微博账号： 腾讯玄武实验室
https://weibo.com/xuanwulab