漏洞 Vulnerability CVE-2020-5366：Dell EMC iDRAC94.20.20.20版本前路径穿越漏洞 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-5366 安全资讯 Security Information 霍尼韦尔：USB恶意软件的兴起可能会导致ICS严重中断 http://feedproxy.google.com/~r/Securityweek/~3/p9FiTJllivg/honeywell-sees-rise-usb-borne-malware-can-cause-major-ics-disruption Evilnum黑客使用与FIN6，Cobalt相同的恶意软件供应商 https://www.bleepingcomputer.com/news/security/evilnum-hackers-use-the-same-malware-supplier-as-fin6-cobalt/ 安全事件 Security Incident 微软警告针对云应用程序用户的OAuth攻击 https://threatpost.com/microsoft-warns-oauth-attacks-cloud-app/157331/ 6月下旬针对Cloudflare发起的巨大的DDoS攻击事件 https://www.darkreading.com/attacks-breaches/huge-ddos-attack-launched-against-cloudflare-in-late-june/d/d-id/1338323?_mc=rss_x_drr_edt_aud_dr_x_x-rss-simple 安全研究 Security Research MITRE ATT&CK 知识体系7月更新 https://www.tripwire.com/state-of-security/mitre-framework/mitre-attck-update-sub-techniques-july-2020/ ProjectZero：如何在4小时或更短的时间内消灭0day漏洞 https://googleprojectzero.blogspot.com/2020/07/how-to-unc0ver-0-day-in-4-hours-or-less.html 如何在消除干扰的同时建立网络威胁情报系统 https://go.theregister.com/feed/www.theregister.com/2020/07/09/separating_good_data_from_clutter/