漏洞 Vulnerability 2021-12 补丁日: 微软多个漏洞安全更新通告 https://cert.360.cn/warning/detail?id=2ed5245faafc549590fe010e5c709893 Adobe Experience Manager 中的多个安全漏洞 https://helpx.adobe.com/security/products/experience-manager/apsb21-103.html 安全事件 Security Incident 立即修补程序：Apache Log4j漏洞称为Log4Shell，被积极利用 https://www.trendmicro.com/en_us/research/21/l/patch-now-apache-log4j-vulnerability-called-log4shell-being-acti.html 印度总理莫迪的推特账户因比特币诈骗被黑客入侵 https://www.hackread.com/indian-pm-modi-twitter-account-hacked-bitcoin-scam/ 网络钓鱼活动使用分发Agent Tesla恶意程序 https://www.bleepingcomputer.com/news/security/phishing-campaign-uses-powerpoint-macros-to-drop-agent-tesla/ 下载超过10000次的恶意PyPI包 https://www.bleepingcomputer.com/news/security/malicious-pypi-packages-with-over-10-000-downloads-taken-down/ TinyNuke窃取信息恶意软件再次攻击法国用户 https://www.bleepingcomputer.com/news/security/tinynuke-info-stealing-malware-is-again-attacking-french-users/ Tropic Trooper以运输和政府为目标 https://www.trendmicro.com/en_us/research/21/l/collecting-in-the-dark-tropic-trooper-targets-transportation-and-government-organizations.html 黑客利用Log4j漏洞用Khonsari勒索软件感染计算机 https://thehackernews.com/2021/12/hackers-exploit-log4j-vulnerability-to.html Anubis木马以400家银行客户为目标 https://threatpost.com/400-banks-targeted-anubis-trojan/177038/