每日安全动态推送(5-24)

文章预览

Tencent Security Xuanwu Lab Daily News •  How Malware Can Bypass Transparency Consent and Control (CVE-2023-40424): https://blog.kandji.io/malware-bypass-tcc    ・   介绍了macOS Malware 如何利用CVE-2023-40424漏洞  –  SecTodayBot •  MindShaRE: Decapping Chips for Electromagnetic Fault Injection (EMFI): https://www.zerodayinitiative.com/blog/2024/5/23/mindshare-decapping-chips-for-electromagnetic-fault-injection-emfi    ・   通过电磁故障注入（EMFI）攻击目标设备，然后介绍了解封装（decapping）的新方法，以尝试攻击并提取软件。   –  SecTodayBot •  PoC Releases for Unauthorized RCE Flaw (CVE-2024-29269) Threatens 40K+ Telesquare Routers: https://securityonline.info/poc-releases-for-unauthorized-rce-flaw-cve-2024-29269-threatens-40k-telesquare-routers/    ・   披露了韩国 Telesquare 公司的 TLR-2005KSH LTE 路由器存在 CVE-2024-29269 漏洞，该漏洞允许攻击者远程执行系统命令，可能导 ………………………………