漏洞 Vulnerability CVE-2021-36163: Apache Dubbo 序列化漏洞 CVE-2021-36163 Unsafe deserialization in providers using Hessian protocol – Pony Mail CVE-2021-21897: Ribbonsoft dxflib 堆溢出安全更新 TALOS-2021-1346 || Cisco Talos Intelligence Group – Comprehensive Threat Intelligence 安全事件 Security Incident 霍华德大学在勒索软件攻击后关闭网络 https://www.bleepingcomputer.com/news/security/howard-university-shuts-down-network-after-ransomware-attack/ 正在进行的 Office 365 0day攻击有一个临时修复 https://heimdalsecurity.com/blog/the-ongoing-office-365-zero-day-attacks-have-a-temporary-fix/ 对 Dotty 暴露的客户个人数据的网络攻击 https://www.ehackingnews.com/2021/09/cyber-attack-on-dottys-exposed-personal.html 研究人员发布了针对 Ghostscript 零日漏洞的 PoC 漏洞利用 https://securityaffairs.co/wordpress/121940/hacking/ghostscript-poc-exploit.html 印尼COVID-19追踪应用报告了两起数据泄露 https://www.databreachtoday.com/2-data-leaks-reported-in-indonesias-covid-19-tracking-apps-a-17478