漏洞 Vulnerability CVE-2021-39239: Apache Jena 外部实体注入漏洞安全更新 CVE-2021-39239: Apache Jena: XML External Entity (XXE) vulnerability – Pony Mail CVE-2021-39214: mitmproxy HTTP 请求走私漏洞安全更新 Lacking Protection against HTTP Request Smuggling in mitmproxy · Advisory · mitmproxy/mitmproxy 安全事件 Security Incident 疑似APT-C-36盲眼鹰攻击活动披露 https://mp.weixin.qq.com/s/PEi2aaprbO3h3FMw_7Es_A 警报 (AA21-259A) APT 攻击者利用 ManageEngine ADSelfService Plus 中新发现的漏洞 https://us-cert.cisa.gov/ncas/alerts/aa21-259a 匿名黑客入侵Epik https://securityaffairs.co/wordpress/122263/hacktivism/anonymous-hacked-epik-provider.html 存储在健身手环中的 16.17 GB 用户数据已暴露 https://www.ehackingnews.com/2021/09/1617-gb-of-user-data-stored-in-fitness.html