漏洞 Vulnerability CVE-2021-4102：Google Chrome 代码执行漏洞 https://cert.360.cn/warning/detail?id=12012e95a94090523434f25afe49c907 CVE-2021-43234：Microsoft Windows 传真服务远程代码执行漏洞 https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2021-43234 安全事件 Security Incident 在最近的网络钓鱼尝试中，黑客使用二维码窃取银行凭证 https://heimdalsecurity.com/blog/hackers-use-qr-codes-to-steal-banking-credentials-in-recent-phishing-attempts/ Ascendex加密货币交易所遭到黑客攻击——7700万美元被盗 https://www.hackread.com/ascendex-cryptocurrency-exchange-hacked/ 已有10个家族的恶意样本利用Log4j2漏洞传播 https://blog.netlab.360.com/yi-jing-you-xxxge-jia-zu-de-botnetli-yong-log4shelllou-dong-chuan-bo-wei-da-bu-ding-de-gan-jin-liao/ quebec因Log4Shell漏洞被披露而关闭了数千个网站 https://securityaffairs.co/wordpress/125556/hacking/quebec-shut-down-sites-log4shell.html Microsoft详细介绍了广泛活动的Qakbot银行特洛伊木马的构建块 https://thehackernews.com/2021/12/microsoft-details-building-blocks-of.html