漏洞 Vulnerability CVE-2020-14980：Sophos安全邮件应用Android 3.9.4版本SSL证书问题 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14980 CVE-2020-9483：Skywalking SQL注入漏洞及应对方案 https://www.freebuf.com/vuls/240897.html 安全工具 Security Tools 移动安全（一）|Android设备root及神器Xposed框架安装 https://www.secpulse.com/archives/134061.html 安全事件 Security Incident BlueLeaks数据泄露美国超24年警察数据 https://www.bleepingcomputer.com/news/security/blueleaks-data-dump-exposes-over-24-years-of-police-records/ 恶意软件 Malware 新型挖矿病毒借助“海啸”僵尸网络发动DDOS攻击 https://www.freebuf.com/articles/terminal/238438.html Nephilim勒索软件利用Citrix网关进行攻击 https://www.databreachtoday.com/nephilim-ransomware-gang-tied-to-citrix-gateway-hacks-a-14480 鹰眼回归：APT30的新旧后门分析 https://otx.alienvault.com/pulse/5ef0d9bbc2ccb385fbce0485 安全资讯 Security Information Immuta公司宣布与数据和AI公司Databricks增强平台集成 https://www.helpnetsecurity.com/2020/06/23/immuta-for-databricks/ 美国政府将从9月1日开始在新的.gov网站上实施HTTPS https://www.bleepingcomputer.com/news/security/us-govt-to-enforce-https-on-new-gov-sites-starting-september-1/