漏洞 Vulnerability CVE-2019-0604 SharePoint远程执行代码（RCE）漏洞 https://www.inputzero.io/2020/02/sharepoint-rce.html Cisco更新17个漏洞补丁 https://tools.cisco.com/security/center/publicationListing.x 安全报告 Security Report Winnti组织针对东南亚博彩行业，PlugX、HyperBro和自定义后门 https://documents.trendmicro.com/assets/white_papers/wp-uncovering-DRBcontrol.pdf 安全事件 Security Incident 1060万米高梅酒店用户隐私数据泄露 https://www.zdnet.com/article/exclusive-details-of-10-6-million-of-mgm-hotel-guests-posted-on-a-hacking-forum/ 安全资讯 Security Information 美CISA警告称，勒索软件攻击天然气行业 https://www.us-cert.gov/ncas/alerts/aa20-049a PHPUnit的CVE-2017-9841（RCE）被攻击者广泛使用 https://www.imperva.com/blog/the-resurrection-of-phpunit-rce-vulnerability/ 安全研究 Security Research 2020年的网络安全：从安全代码到深度防御 https://www.freebuf.com/articles/network/227162.html AZORult恶意软件通过伪ProtonVPN安装程序来感染受害者 https://securelist.com/azorult-spreads-as-a-fake-protonvpn-installer/96261/ 构造关联用户搜索的LNK文件研究 https://www.fireeye.com/blog/threat-research/2020/02/the-missing-lnk-correlating-user-search-lnk-files.html 针对电子商务的组织Magecart研发新的工具 https://marcoramilli.com/2020/02/19/uncovering-new-magecart-implant-attacking-ecommerce/ CVE-2020-0601 检测规则 https://github.com/telsy-cyberops/research/blob/master/CVE-2020-0601/CVE-2020-0601.yar 利用Focaccia-Board入侵IoT设备技术研究 https://securityaffairs.co/wordpress/98052/hacking/hacking-iot-focaccia-board.html