安全工具 Security Tools Shelly：基于Python的简单后门管理器 https://github.com/tegal1337/Shelly 安全资讯 Security Information 俄罗斯政府称断网测试成功 https://www.zdnet.com/article/russia-successfully-disconnected-from-the-internet/ FBI发布LockerGoga和MegaCortex勒索软件警报 https://www.bleepingcomputer.com/news/security/fbi-issues-alert-for-lockergoga-and-megacortex-ransomware/ 以全球政府采购站点为目标的凭证收集运动 https://www.trendmicro.com/vinfo/us/security/news/cybercrime-and-digital-threats/credential-harvesting-campaign-targets-government-procurement-sites-worldwide?utm_source=trendmicroresearch&utm_medium=smk&utm_campaign=1219_credential-harvesting 全球有80000家公司面临CVE-2019-19781漏洞风险 https://securityaffairs.co/wordpress/95548/hacking/cve-2019-19781citrix-flaw.html 安全研究 Security Research 入侵DarkRat恶意软件的控制面板 https://fr3d.hk/blog/darkrat-hacking-a-malware-control-panel 一种使用CMOS兼容指纹硅芯片的完美保密密码协议 https://www.nature.com/articles/s41467-019-13740-y 探讨渗透测试工具的错误选择 https://pylos.co/2019/12/24/the-false-choice-of-penetration-testing-tools/ 探讨物联网设备安全性如何限制物联网增长 https://www.valuewalk.com/2019/12/iot-app-development/ 通过沙盒逃逸和内核R/W导致RCE的iOS越狱漏洞 https://www.anquanke.com/post/id/195619 恶意软件 Malware POS恶意软件分析 https://norfolkinfosec.com/pos-malware-used-at-fuel-pumps/ 安全报告 Security Report 针对WordPress网站的攻击和技术一瞥 https://blog.trendmicro.com/trendlabs-security-intelligence/looking-into-attacks-and-techniques-used-against-wordpress-sites/ REFINED KITTEN组织简述 https://www.crowdstrike.com/blog/who-is-refined-kitten/