漏洞 Vulnerability 三菱电机 MC Works64多个漏洞安全更新 https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2021-017_en.pdf 台达电子DIALink安全更新 https://us-cert.cisa.gov/ics/advisories/icsa-21-294-02 安全事件 Security Incident EvilCorp团伙再度更名其勒索软件名以逃避美国制裁 https://www.bleepingcomputer.com/news/security/evil-corp-demands-40-million-in-new-macaw-ransomware-attacks/ FIN7冒充合法安全公司以渗透名义发起网络攻击 https://www.bleepingcomputer.com/news/security/hacking-gang-creates-fake-firm-to-hire-pentesters-for-ransomware-attacks/ 黑客为5000万莫斯科司机提供销售数据 https://securityaffairs.co/wordpress/123711/data-breach/moscow-drivers-data-leak.html 流行的NPM库被劫持安装密码窃取者和挖矿软件 https://www.bleepingcomputer.com/news/security/popular-npm-library-hijacked-to-install-password-stealers-miners/ UpdateAgent恶意软件变体模拟合法的macOS软件 https://www.hackread.com/updateagent-malware-variant-macos-software/ FIN7建立虚假的Pentesting公司网站招聘人才 https://www.databreachtoday.com/fin7-sets-up-fake-pentesting-company-site-to-recruit-talent-a-17783 据称Gigabyte被AvosLocker勒索软件击中 https://threatpost.com/gigabyte-avoslocker-ransomware-gang/175642/ SCUF游戏商店遭黑客攻击，盗取32000名顾客的信用卡信息 https://www.bleepingcomputer.com/news/security/scuf-gaming-store-hacked-to-steal-credit-card-info-of-32-000-customers/ 数据分析公司披露了200万Instagram和TikTok用户的数据 https://www.hackread.com/data-analytics-firm-expose-instagram-tiktok-users-data/ Evil Corp 要求新的勒索软件Macaw Locker攻击获利4000万美元 https://www.bleepingcomputer.com/news/security/evil-corp-demands-40-million-in-new-macaw-ransomware-attacks/ 牙科联盟报告供应商漏洞影响17万 https://www.databreachtoday.com/dental-alliance-reports-vendor-breach-affecting-170k-a-17775 新的MultiloginBot网络钓鱼活动 https://www.zscaler.com/blogs/security-research/new-multiloginbot-phishing-campaign