漏洞 Vulnerability Oracle 企业Linux内核安全更新 https://linux.oracle.com/errata/ELSA-2021-9220.html Microweber CMS 认证后远程代码执行 https://www.exploit-db.com/exploits/49856 MikroTik RouterOS 多个高危漏洞 https://cxsecurity.com/issue/WLB-2021050052 安全事件 Security Incident 疑似Lazarus组织利用大宇造船厂为相关诱饵的系列攻击活动分析 https://mp.weixin.qq.com/s/s6BhpnTDsbqxPF35_uS5iQ 美国调用紧急运输规则以保持燃料传输 https://www.zdnet.com/article/pipeline-ransomware-attack-us-invokes-emergency-transport-rules-to-keep-fuel-flowing/ 美国和澳大利亚警告Avaddon勒索软件攻击升级 https://www.bleepingcomputer.com/news/security/us-and-australia-warn-of-escalating-avaddon-ransomware-attacks/ 苹果对受到XcodeGhost攻击的用户保持沉默 https://www.hackread.com/apple-xcodeghost-malware-attack-against-users/ Colonial Pipeline计划在网络攻击后的一周内恢复运营 https://www.zdnet.com/article/colonial-pipeline-aims-to-restore-operations-by-end-of-the-week-after-cyberattack/