漏洞 Vulnerability 西门子Desigo PX 6.00存在拒绝服务漏洞 https://cxsecurity.com/issue/WLB-2019110116 WordPress Social Photo Gallery 1.0存在远程代码执行漏洞 https://cxsecurity.com/issue/WLB-2019110112 安全工具 Security Tools 免费的恶意IP工具：Honey Feeds https://marcoramilli.com/honey-feeds/ 安全报告 Security Report Buran勒索软件 https://www.mcafee.com/blogs/other-blogs/other-blogs/mcafee-labs/buran-ransomware-the-evolution-of-vegalocker/ LoLBins分析 https://blog.talosintelligence.com/2019/11/hunting-for-lolbins.html TA2101组织攻击活动分析 https://www.proofpoint.com/us/threat-insight/post/ta2101-plays-government-imposter-distribute-malware-german-italian-and-us 安全资讯 Security Information TA505集团针对欧洲的系统集成商 https://www.peerlyst.com/posts/ta505-group-is-aiming-at-system-integrator-companies-in-europe-soc-prime US-CERT警告Medtronic设备存在严重漏洞 https://nakedsecurity.sophos.com/2019/11/13/us-cert-warns-of-critical-flaws-in-medtronic-equipment/ 安全研究 Security Research PowerShell静态分析（Part I） https://www.freebuf.com/articles/network/218399.html YARA寻找代码重用：以“Dridex”恶意软件家族为例 https://www.sentinelone.com/blog/yara-hunting-for-code-reuse-doppelpaymer-ransomware-dridex-families/ 网络设备也是端点 https://medium.com/@c2defense/man-in-the-network-network-devices-are-endpoints-too-d5bd4a279e37 恶意软件 Malware Sednit组织最新研发的恶意软件组件 https://www.freebuf.com/articles/network/216434.html