漏洞 Vulnerability Slackware Linux httpd组件安全更新 http://www.slackware.com/security/viewer.php?l=slackware-security&y=2021&m=slackware-security.483439 FATEK 自动化通讯服务器缓冲区溢出漏洞安全通告 https://us-cert.cisa.gov/ics/advisories/icsa-21-280-07 安全事件 Security Incident 新APT组织ChamelGang及其武器库 https://www.ptsecurity.com/ww-en/analytics/pt-esc-threat-intelligence/new-apt-group-chamelgang/ Agrius组织针对高等教育机构的攻击活动 https://www.sentinelone.com/labs/new-version-of-apostle-ransomware-reemerges-in-targeted-attack-on-higher-education/ 新伊朗APT组织MalKamak针对全球航空航天和电信公司的攻击活动 https://www.cybereason.com/blog/operation-ghostshell-novel-rat-targets-global-aerospace-and-telecoms-firms 研究人员将不同的恶意软件活动归因于APT41 https://blogs.blackberry.com/en/2021/10/drawing-a-dragon-connecting-the-dots-to-find-apt41 疑似Kimsuky正在开发的恶意软件 https://asec.ahnlab.com/en/27148/ BlackTech新恶意软件Flagpro分析 https://insight-jp.nttsecurity.com/post/102h7vx/blacktechflagpro Android flubot恶意软件通过伪造安全更新自行安装 https://www.hackread.com/flubot-malware-android-fake-security-updates/ 黑客冒充国际特赦组织传播恶意软件 https://www.databreachtoday.com/hackers-impersonate-amnesty-international-to-spread-malware-a-17666 黑客利用2FA漏洞从6000名Coinbase用户处窃取密码 https://www.hackread.com/hackers-exploit-2fa-flaw-steal-coinbase-crypto/ 黑客组织anonymous泄露大量EPIK主机数据 https://www.hackread.com/anonymous-leaks-more-epik-host-data/ 阿拉巴马州斯普林希尔医疗中心婴儿因网络攻击死亡 https://securityaffairs.co/wordpress/122820/security/child-dies-springhill-medical-center-ransomware.html Hydra Android特洛伊木马攻击目标是欧洲银行的客户 https://securityaffairs.co/wordpress/122807/cyber-crime/hydra-android-trojan-european-banks.html Neiman Marcus数据泄露导致支付卡数据曝光 https://securityaffairs.co/wordpress/122799/data-breach/neiman-marcus-data-breach.html JVCKenwood遭受勒索软件攻击 https://heimdalsecurity.com/blog/jvckenwood-suffers-ransomware-attack/ 勒索软件袭击欧洲主要书商 https://www.ehackingnews.com/2021/10/ransomware-attack-on-major-european.html 新发现的与SolarWinds攻击恶意软件相关的“Tomiris”后门 https://www.ehackingnews.com/2021/10/newly-discovered-tomiris-backdoor.html Forward Air Corporation最近披露了一起勒索软件攻击后的数据盗窃事件 https://heimdalsecurity.com/blog/forward-air-corporation-recently-disclosed-data-theft-following-a-ransomware-attack/ GriftHorse恶意软件感染1000万部手机并窃取数百万美元 https://www.bleepingcomputer.com/news/security/new-android-malware-steals-millions-after-infecting-10m-phones/