漏洞 Vulnerability CVE-2021-3044: Cortex XSOAR未认证REST API使用漏洞 https://cert.360.cn/warning/detail?id=ad502701b807125563b6eb6d5f721f1a CVE-2021-21998: VMware Carbon Black App Control身份验证绕过漏洞 https://cert.360.cn/warning/detail?id=a17fa8a96e0ac3f3197229cb7c33a9f5 安全事件 Security Incident 新型勒索软件DarkRadiation利用SSH蠕虫说对Linux进行攻击 https://thehackernews.com/2021/06/wormable-darkradiation-ransomware.html Kimsuky APT组织对韩国国防安全相关部门的定向攻击活动分析 https://mp.weixin.qq.com/s/SLocYak45PoOwLtMCn0PFg 数以百万计的医学图像，患者数据仍通过 PACS 漏洞泄露 https://www.scmagazine.com/featured/millions-of-medical-images-patient-data-remain-exposed-via-pacs-flaws/ 恶意 PyPI 包劫持开发设备以挖掘加密货币 https://www.bleepingcomputer.com/news/security/malicious-pypi-packages-hijack-dev-devices-to-mine-cryptocurrency/ 勒索软件攻击破坏了生育患者的记录 https://www.databreachtoday.com/ransomware-attack-compromises-fertility-patients-records-a-16916 50% 的错误配置容器在一小时内就会被僵尸网络攻击 https://www.scmagazine.com/data-leakage-prevention-dlp/50-of-misconfigured-containers-hit-by-botnets-in-under-an-hour/