漏洞 Vulnerability PowerDNS Recursor 4.3.1, 4.2.2. and 4.1.16修复了多个漏洞 https://blog.powerdns.com/2020/05/19/powerdns-recursor-4-3-1-4-2-2-and-4-1-16-released/ CVE-2020-1955：Apache CouchDB Remote Privilege Escalation https://seclists.org/oss-sec/2020/q2/130 2005年发现的qmail中的漏洞因为被认为不可利用一直没有修复，Qualys现在实现了利用 https://www.qualys.com/2020/05/19/cve-2005-1513/remote-code-execution-qmail.txt 安全工具 Security Tools frida 12.9发布了 https://frida.re/news/2020/05/19/frida-12-9-released/ Windows Terminal 1.0发布了 https://devblogs.microsoft.com/commandline/windows-terminal-1-0/ 一个electron写的Frida&Monaco的wrapper https://github.com/FuzzySecurity/Fermion 安全报告 Security Report Verizon发布了2020数据泄露调查报告 https://securelist.com/verizons-2020-dbir/97026/ 安全资讯 Security Information chrome开始启用增强的安全浏览保护 https://security.googleblog.com/2020/05/enhanced-safe-browsing-protection-now.html 微软警告使用合法RAT的大规模钓鱼攻击 https://www.bleepingcomputer.com/news/security/microsoft-warns-of-massive-phishing-attack-pushing-legit-rat/ 恶意软件 Malware TrickBot BazarLoader深入分析 https://cybersecurity.att.com/blogs/labs-research/trickbot-bazarloader-in-depth talos发现的android设备上的恶意程序WolfRAT https://blog.talosintelligence.com/2020/05/the-wolf-is-back.html