漏洞 Vulnerability CVE-2020-0022：Android中存在严重的蓝牙漏洞 https://insinuator.net/2020/02/critical-bluetooth-vulnerability-in-android-cve-2020-0022/ 安全工具 Security Tools Re2Pcap：从原始HTTP请求或响应创建PCAP文件 https://www.kitploit.com/2020/02/re2pcap-create-pcap-file-from-raw-http.html 安全资讯 Security Information Emotet病毒利用wifi蠕虫模入侵附近的Wi-Fi网络以传播给新受害者 https://www.bleepingcomputer.com/news/security/emotet-hacks-nearby-wi-fi-networks-to-spread-to-new-victims/ 暗网黑客出售了近50w印度人的支付卡数据 https://www.hackread.com/dark-web-hackers-selling-indian-payment-card-data/ 伊朗APT组织使用虚假的采访对公众人物进行钓鱼 https://threatpost.com/charming-kitten-uses-fake-interview-requests-to-target-public-figures/152628/ 安全研究 Security Research 思路共享：如何处理加密的路由器固件 https://www.zerodayinitiative.com/blog/2020/2/6/mindshare-dealing-with-encrypted-router-firmware 配置错误的docker注册将会使docker面临严重的安全威胁 https://www.bleepingcomputer.com/news/security/misconfigured-docker-registries-expose-orgs-to-critical-risks/ 利用Unicode大小写转换来攻击Django应用 https://0xsha.io/posts/the-fall-of-mighty-django-exploiting-unicode-case-transformations CVE-2019-1215：ws2ifsl UAF分析 https://labs.bluefrostsecurity.de/blog/2020/01/07/cve-2019-1215-analysis-of-a-use-after-free-in-ws2ifsl/ CVE-2019-1181/CVE-2019-1182:Windows 7到Windows中的Dejablue漏洞分析 https://www.coresecurity.com/blog/dejablue-vulnerabilities-windows-7-windows-10-cve-2019-1181-and-cve-2019-1182 Confluence CVE-2019-3394 CVE-2019-3396 CVE-2019-3398分析 https://mp.weixin.qq.com/s/zIWB_dsBrIjR7UNNqjhkuA