免责声明：以下内容原文来自互联网的公共方式，仅用于有限分享，译文内容不代表蚁景网安实验室观点，因此第三方对以下内容进行分享、传播等行为，以及所带来的一切后果与译者和蚁景网安实验室无关。以下内容亦不得用于任何商业目的，若产生法律责任，译者与蚁景网安实验室一律不予承担。

1、大规模的网络钓鱼活动针对全球2亿多Microsoft 365用户

https://www.darkreading.com/threat-intelligence/phishing-campaign-targets-200m-microsoft-365-accounts/d/d-id/1339637

2、QNAP修复了八个可能导致NAS设备被接管的漏洞

https://securityaffairs.co/wordpress/112041/security/qnap-nas-flaws.html

3、Apache发布Struts 2安全更新修复远程代码执行漏洞

https://www.securityweek.com/possible-code-execution-flaw-apache-struts

4、网络安全公司FireEye遭攻击被盗走一系列红队工具

https://www.securityweek.com/fireeye-says-sophisticated-hacker-stole-red-team-tools

5、研究人员发现Rana Android恶意软件新变种

https://threatpost.com/rana-android-malware-updates-allow-whatsapp-telegram-im-snooping/161971/

6、黑客强行打开莫斯科各地2732个快递寄存柜

https://www.zdnet.com/article/hacker-opens-2732-pickpoint-package-lockers-across-moscow/

7、PlayStation Now云游戏Windows应用存在漏洞

https://www.bleepingcomputer.com/news/security/playstation-now-bugs-let-sites-run-malicious-code-on-windows-pcs/

8、严重漏洞影响100多种GE Healthcare设备

https://www.securityweek.com/over-100-ge-healthcare-devices-affected-critical-vulnerability

9、OpenSSL发布“高危”安全补丁

https://www.securityweek.com/openssl-ships-%E2%80%98high-severity%E2%80%99-security-patch

10、安全专家披露了Microsoft Teams中一个可蠕虫零交互漏洞

https://securityaffairs.co/wordpress/112062/hacking/microsoft-teams-wormable-flaw.html