漏洞 Vulnerability CVE-2020-2654：IBM MQ消息队列拒绝访问漏洞 https://www.ibm.com/blogs/psirt/security-bulletin-ibm-mq-appliance-is-affected-by-a-denial-of-service-vulnerability-cve-2020-2654/ CVE-2020-7016：Kibana 6.8.11之前版本拒绝访问漏洞 https://twitter.com/CVEnew/status/1287821345070501893 CVE-2020-8558：Kubernetes安全漏洞 https://unit42.paloaltonetworks.com/cve-2020-8558/ 安全工具 Security Tools TrustJack – Windows中劫持DLL的另一个PoC http://feedproxy.google.com/~r/PentestTools/~3/DzvS1ceHIKQ/trustjack-yet-another-poc-for-hijacking.html 安全事件 Security Incident QNAP NAS恶意软件Qsnatch感染超过6万台设备 https://go.theregister.com/feed/www.theregister.com/2020/07/27/qnap_attack_warning/ Cloudflare数据泄漏：导致将近300万个站点的真实IP地址暴露 https://www.hackread.com/cloudflare-data-leak-expose-ip-addresses-ukraine/ 美国网络安全与基础设施安全局警告：F5 BIG-IP系统正在被黑客大规模利用 http://feedproxy.google.com/~r/Securityweek/~3/I6Zau8m1Kns/cisa-says-hackers-exploited-big-ip-vulnerability-attacks-us-government 恶意软件 Malware 具备勒索功能的Webshell样本分析 https://blog.trendmicro.com/trendlabs-security-intelligence/ensiko-a-webshell-with-ransomware-capabilities/?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+Anti-MalwareBlog+%28Trendlabs+Security+Intelligence+Blog%29 安全研究 Security Research CSCG 2020CTF逆向题解(基础篇) https://0x00sec.org/t/cscg-2020-reversing-intro-challenges-writeup-easy-level/20096/10 分析AVAST SecureLine VPN任意文件创建漏洞 https://www.anquanke.com/post/id/211502