漏洞 Vulnerability Asterisk 命令执行漏洞 http://seclists.org/fulldisclosure/2019/Nov/19 CVE-2019-5071: Tenda AC9路由器命令执行漏洞 https://nvd.nist.gov/vuln/detail/CVE-2019-5071 恶意软件 Malware 针对运行Webmin的Linux服务器的新型Roboto僵尸网络 https://www.zdnet.com/article/new-roboto-botnet-emerges-targeting-linux-servers-running-webmin/ 安全工具 Security Tools Malicious，恶意流量检测系统 https://github.com/stamparm/maltrail/ 安全报告 Security Report 医疗设备PACS系统信息泄露研究报告 https://www.greenbone.net/wp-content/uploads/Greenbone_Security_Report_Unprotected_Patient_Data_a_Review.pdf 卡巴斯基2019安全公告，2020年的高级威胁预测 https://securelist.com/advanced-threat-predictions-for-2020/95055/ 安全事件 Security Incident CVE-2019-2215:安卓本地提权漏洞在野利用 https://googleprojectzero.blogspot.com/2019/11/bad-binder-android-in-wild-exploit.html 安全资讯 Security Information Google Play热门应用存在安全漏洞 https://www.zdnet.com/article/popular-apps-on-google-play-linked-to-old-remote-code-execution-bugs/ 安全研究 Security Research 楼宇管理系统(BMS)安全性研究 https://applied-risk.com/resources/i-own-your-building-management-system 从永恒之蓝看后渗透 https://www.freebuf.com/articles/system/219200.html