漏洞 Vulnerability CVE-2021-44832：Apache Log4j远程代码执行漏洞 https://logging.apache.org/log4j/2.x/security.html CVE-2021-45232：Apache APISIX Dashboard 未授权访问漏洞 https://lists.apache.org/thread/979qbl6vlm8269fopfyygnxofgqyn6k5 安全事件 Security Incident 网络钓鱼者试图窃取CoinSpot用户的2FA代码 https://www.databreachtoday.com/phishers-attempt-to-steal-2fa-code-coinspot-users-a-18205 物流巨头D.W. Morgan价值100 GB的客户数据被披露 https://www.hackread.com/logistics-giant-d-w-morgan-exposed-clients-data/ 新型Android银行恶意软件在巴西Itaú Unibanco银行传播 https://securityaffairs.co/wordpress/126040/malware/android-banking-malware-brazil.html 新一波ech0raix勒索软件攻击的目标是QNAP 的NAS设备 https://securityaffairs.co/wordpress/126081/malware/ech0raix-ransomware-targeting-qnap-nas.html Shutterfly遭到了Conti勒索软件攻击 https://www.zdnet.com/article/shutterfly-reports-ransomware-incident/ 几名波兰政客被NSO Group间谍软件攻击 https://www.zdnet.com/article/nso-spyware-used-to-hack-polish-politicians-wife-of-khashoggi-un-war-crimes-investigator-and-more/