漏洞 Vulnerability CVE-2021-34746: Cisco NFV 软件认证不当漏洞安全更新 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nfvis-g2DMVVh CVE-2021-40143: Nexus3 HTTP头注入漏洞安全更新 https://support.sonatype.com/hc/en-us/articles/4405941762579-CVE-2021-40143-Nexus-Repository-3-HTTP-Header-Injection-2021-09-01 安全事件 Security Incident 泄露的包含 Guntrader 客户详细信息的数据文件已被共享 https://heimdalsecurity.com/blog/the-leaked-data-file-containing-details-about-the-guntrader-customers-has-been-shared/ DuPage 医疗集团患者的数据被泄露 https://heimdalsecurity.com/blog/patients-at-dupage-medical-group-may-have-had-their-data-compromised-following-a-cyberattack/ 70 万法国人的 Covid 测试结果在线泄露 https://heimdalsecurity.com/blog/700k-french-individuals-had-their-covid-test-results-leaked-online/ 攻击者试图利用最近修补的 Atlassian Confluence CVE-2021-26084 RCE https://securityaffairs.co/wordpress/121760/hacking/confluence-cve-2021-26084-rce.html Autodesk 透露它是俄罗斯 SolarWinds 黑客的目标 https://www.bleepingcomputer.com/news/security/autodesk-reveals-it-was-targeted-by-russian-solarwinds-hackers/ 中国追踪到 Mozi 物联网僵尸网络攻击背后的黑客 https://thehackernews.com/2021/09/chinese-authorities-arrest-hackers.html 印度尼西亚政府的新冠病毒检测程序泄漏130万用户信息 https://www.hackread.com/indonesian-govts-covid-19-test-trace-app-data-leak/ 卡巴斯基实验室报告了自动窃取资金的 Android 病毒 https://www.ehackingnews.com/2021/09/kaspersky-lab-has-reported-about.html