免责声明：以下内容原文来自互联网的公共方式，仅用于有限分享，译文内容不代表蚁景网安实验室观点，因此第三方对以下内容进行分享、传播等行为，以及所带来的一切后果与译者和蚁景网安实验室无关。以下内容亦不得用于任何商业目的，若产生法律责任，译者与蚁景网安实验室一律不予承担。

1、Palo Alto GlobalProtect VPN 中存在远程代码执行漏洞

https://www.securityweek.com/remote-code-execution-flaw-palo-alto-globalprotect-vpn

2、VMware 正在开发针对高危 vCenter Server 漏洞的补丁

https://www.securityweek.com/vmware-working-patches-serious-vcenter-server-vulnerability

3、Citrix 修补了 ADC网关中的严重漏洞

https://www.securityweek.com/citrix-patches-critical-vulnerability-adc-gateway

4、WP Reset PRO 插件存在严重漏洞可删除数据库

https://www.securityweek.com/critical-flaw-wordpress-plugin-leads-database-wipe

5、被称为"勒索软件终结者"的RPC 防火墙发布开源版本

​ https://www.securityweek.com/rpc-firewall-dubbed-ransomware-kill-switch-released-open-source

6、恶意软件"PhoneSpy"针对韩国Android手机用户

https://www.securityweek.com/south-korean-users-targeted-android-spyware-phonespy

7、BusyBox 被发现了 14 个新漏洞，影响数百万设备

https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/

8、研究人员发现Lyceum组织针对中东电信提供商

https://www.accenture.com/us-en/blogs/cyber-defense/iran-based-lyceum-campaigns

9、德国医疗软件巨头Medatixx遭到勒索软件攻击

https://www.bleepingcomputer.com/news/security/medical-software-firm-urges-password-resets-after-ransomware-attack/

10、TrickBot Gang 与 TA551 Group 合作提供 Conti 勒索软件

https://securityboulevard.com/2021/11/threat-analysis-report-from-shatak-emails-to-the-conti-ransomware/