安全事件 Security Incident 疑似国家支持的攻击者利用macOS漏洞发起水坑攻击 https://blog.google/threat-analysis-group/analyzing-watering-hole-campaign-using-macos-exploits/ 朝鲜APT组织利用CVE-2021-40444漏洞发起攻击 https://blog.alyac.co.kr/4262?category=957259 SideCopy组织近期利用中印时事新闻的攻击事件分析 https://mp.weixin.qq.com/s/iZuB1IAtNm5DxrrUIJqyoA TrickBot与Shatak网络钓鱼者合作进行Conti勒索软件攻击 https://www.bleepingcomputer.com/news/security/trickbot-teams-up-with-shatak-phishers-for-conti-ransomware-attacks/ Lazarus黑客用木马程序IDA Pro攻击研究人员 https://www.bleepingcomputer.com/news/security/lazarus-hackers-target-researchers-with-trojanized-ida-pro/ HPE称黑客使用被盗的访问密钥入侵了Aruba Central https://www.bleepingcomputer.com/news/security/hpe-says-hackers-breached-aruba-central-using-stolen-access-key/ Telnyx是最新遭受DDoS攻击的VoIP提供商 https://www.bleepingcomputer.com/news/security/telnyx-is-the-latest-voip-provider-hit-with-ddos-attacks/ Void Balaur黑客出售被盗邮箱和私人数据 https://www.bleepingcomputer.com/news/security/void-balaur-hackers-for-hire-sell-stolen-mailboxes-and-private-data/ 谷歌Play上的“Smart TV remote”Android应用程序是恶意软件 https://www.bleepingcomputer.com/news/security/careful-smart-tv-remote-android-app-on-google-play-is-malware/