漏洞 Vulnerability CVE-2021-24617：WordPress GamePress插件跨站脚本漏洞 http://vulhub.org.cn/vuln/VHN-383338 CVE-2021-38183：SAP Netweaver跨站脚本漏洞 http://vulhub.org.cn/vuln/VHN-399885 安全事件 Security Incident PulseTV披露20万张信用卡的潜在泄露 https://heimdalsecurity.com/blog/potential-200000-credit-cards-compromise-revealed-by-pulsetv/ Lapsus$ 勒索软件团伙袭击了葡萄牙最大的媒体集团 Impresa https://securityaffairs.co/wordpress/126236/cyber-crime/impresa-lapsus-ransomware.html 美国宇航局局长推特账户被强大的希腊军队黑客入侵 https://securityaffairs.co/wordpress/126243/hacking/nasa-director-hacked-by-powerful-greek-army.html 与朝鲜有关的攻击者从加密货币交易所窃取了17亿美元 https://securityaffairs.co/wordpress/126225/apt/north-korea-cryptocurrency-exchanges-hacks.html 备份错误导致京都大学丢失77TB的研究数据 https://heimdalsecurity.com/blog/backup-error-results-in-kyoto-university-losing-77tb-of-research-data/ 勒索团伙破坏了Spar商店 https://www.databreachtoday.com/vice-society-ransomware-gang-disrupted-spar-stores-a-18225 新的iLOBleed Rootkit针对HP企业服务器的数据清除攻击 https://thehackernews.com/2021/12/new-ilobleed-rootkit-targeting-hp.html?m=1 世嘉某欧洲服务器中门大开 25万用户数据受影响 https://www.cnbeta.com/articles/tech/1220989.htm Kimsuky组织针对韩国新闻行业的钓鱼活动分析 https://mp.weixin.qq.com/s/O_3PFAB4RGxJXHnx_o9f3Q