漏洞 Vulnerability CVE-2019-1915：多款 Cisco Unified Communications 产品跨站脚本漏洞 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20191002-cucm-csrf Metasploit Pro 自带旧的 java 运行库，存在223个漏洞 https://seclists.org/fulldisclosure/2019/Oct/1 安全工具 Security Tools PowerShellRunBox：一款调试分析恶意 powershell 脚本的工具 https://darungrim.com/research/2019-10-01-analyzing-powershell-threats-using-powershell-debugging.html 恶意软件 Malware Virus Bulletin 2019:日本安全研究员针对 APT17 和 Bronze Butler 威胁组织的分析 https://threatpost.com/virus-bulletin-japanese-attacks-apt-strategygy/148859/ 新一轮的 wordpress 蠕虫感染潮分析 https://blog.sucuri.net/2019/10/a-new-wave-of-buggy-wordpress-infections.html Macfee 针对 Sodinokibi aka REvil 勒索软件即服务的研究分析 https://securingtomorrow.mcafee.com/other-blogs/mcafee-labs/mcafee-atr-analyzes-sodinokibi-aka-revil-ransomware-as-a-service-the-all-stars/ Linux/AirDropBot：新的 IOT 恶意软件 https://securityaffairs.co/wordpress/91905/malware/linux-airdropbot-malware.html Virus Bulletin 2019：Geost Android 僵尸网络追踪介绍 https://threatpost.com/virus-bulletin-geost-android-botnet/148864/ 更多的攻击者在使用 OpenDocument 格式绕过杀软检测 https://threatpost.com/hackers-turn-to-opendocument/148817/ 安全事件 Security Incident 游戏巨头 Zynga 数据泄露：2.18亿条记录被盗 https://www.hackread.com/gaming-giant-zynga-data-breach-218-million-accounts-stolen/ 数据库泄露：2千万条的俄罗斯公民税收记录被泄露，可以在线访问 https://www.comparitech.com/blog/vpn-privacy/russian-tax-records-exposed-online/ 安全资讯 Security Information 前北约地堡的防弹网络托管服务数据中心被关闭 https://www.bleepingcomputer.com/news/security/bulletproof-hosting-service-in-former-nato-bunker-goes-down/ zendesk 安全公告：约有1万个2016年11月之前激活的账号被未授权访问 https://www.zendesk.com/blog/security-update-2019/ 谷歌密码管理器推出密码检查功能 https://www.bleepingcomputer.com/news/google/googles-password-manager-now-warns-about-compromised-accounts/ hackread 统计：Android 用户9月下载并安装 172 款恶意应用总计 3.35亿次 https://www.hackread.com/android-users-installed-172-malicious-apps-335m/ 安全研究 Security Research 将 WhatsApp 的 double-free 漏洞转换成远程代码执行漏洞 https://awakened1712.github.io/hacking/hacking-whatsapp-gif-rce/ Windows token 攻防战研究 https://posts.specterops.io/understanding-and-defending-against-access-token-theft-finding-alternatives-to-winlogon-exe-80696c8a73b