[SECHebdo] 11 novembre 2020

Nous venons de tourner un nouveau SECHebdo en live sur Youtube. Comme d’habitude, si vous avez raté l’enregistrement, vous pouvez le retrouver sur notre chaîne Youtube (vidéo ci-dessus) ou bien au format podcast audio: Au sommaire de cette émission : Todo (00:01:30) Notre discord : http://discord.comptoirsecu.fr A bientôt pour d’autres émissions/podcasts! Liste des sources : Botconf & Grehack https Tickets : Botconf 2020 - Billetweb GreHack 2020 Drama youtube-dl Microsoft GitHub Disables youtube-dl Open Source Project GitHub - github/dmca at 416da574ec0df3388f652e44f7fe71b1e3a4701f Mandiant, Cobalt Strike, Ransomware, encore… Unhappy Hour Special: KEGTAP and SINGLEMALT With a Ransomware Chaser | FireEye Inc PDF Document 2020 l’année du ransomware Laptop maker Compal hit by ransomware, $17 million demanded Data-Exfiltrating Ransomware Gangs Pedal False Promises Hackers have only just wet their whistle. Expect more ransomware and data breaches in 2021. - TechRepublic Q3 Ransomware Demands rise: Maze Sunsets and Ryuk Returns Targeted ransomware: it’s not just about encrypting your data! | Securelist RansomExx ransomware also encrypts Linux systems CornerVulns Bitdefender: UPX Unpacking Featuring Ten Memory Corruptions | landave’s blog Extraordinary Vulnerabilities Discovered in TCL Android TVs, Now World’s 3rd Largest TV Manufacturer. - Sick Codes - Linux, NetSec, VPS, Arch, Debian, CentOS Tweaks & Tips! Intel, Please Stop Assisting Me Oracle Critical Patch Update Advisory - October 2020 ACOS/aGalaxy GUI RCE Vulnerability – CVE-2020-24384 – A10 Support PLATYPUS: With Great Power comes Great Leakage INTEL-SA-00389 XSA-351 - Xen Security Advisories AMD Product Security | AMD NVIDIA Product Security | NVIDIA search WDC-20008 Replay Attack Vulnerabilities in RPMB Protocol Applications | Western Digital PDF Document INTEL-SA-00391 PDF Document HTB Academy Cyber Security Training : HTB Academy CVE Tiki Wiki CMS GitHub - S1lkys/CVE-2020-15906: Writeup of CVE-2020-15906