漏洞 Vulnerability CVE-2021-31521: 趋势 InterScan XSS漏洞 https://success.trendmicro.com/solution/000286452 CVE-2021-29702: IBM Db2 拒绝服务漏洞 https://www.ibm.com/support/pages/node/6463985 安全事件 Security Incident 美国最大丙烷分销商遭遇数据泄露 https://www.bleepingcomputer.com/news/security/largest-us-propane-distributor-discloses-8-second-data-breach/ 天堂勒索软件源代码发布在黑客论坛 https://www.bleepingcomputer.com/news/security/paradise-ransomware-source-code-released-on-a-hacking-forum/ 数千个 VMWare vCenter 服务器中的严重远程代码执行漏洞仍未修补 https://www.zdnet.com/article/critical-remote-code-execution-flaw-in-thousands-of-vmware-vcenter-servers-remains-unpatched/ 印度航空公司网络攻击事件分析 https://blog.group-ib.com/colunmtk_apt41 PJobRAT：针对印度军事人员的间谍软件 https://mp.weixin.qq.com/s/VTHvmRTeu3dw8HFyusKLqQ Andariel 针对韩国发起勒索攻击 https://securelist.com/andariel-evolves-to-target-south-korea-with-ransomware/102811/ Evilnum 组织近期针对欧洲金融企业的攻击活动 https://mp.weixin.qq.com/s/lryl3a65uIz1AwZcfuzp1A30