免责声明：以下内容原文来自互联网的公共方式，仅用于有限分享，译文内容不代表蚁景网安实验室观点，因此第三方对以下内容进行分享、传播等行为，以及所带来的一切后果与译者和蚁景网安实验室无关。以下内容亦不得用于任何商业目的，若产生法律责任，译者与蚁景网安实验室一律不予承担。

1、谷歌与 GitHub 合作推进供应链安全

https://www.securityweek.com/google-teams-github-supply-chain-security

2、微软将本地部署的Exchange/SharePoint/Skype添加到漏洞赏金计划

https://www.securityweek.com/microsoft-adds-premises-exchange-sharepoint-skype-bug-bounty-program

3、BlackCat 勒索软件针对工业组织

https://www.securityweek.com/blackcat-ransomware-targets-industrial-companies

4、CVE-2022-22292 漏洞可能允许三星 Android 设备被入侵

https://securityaffairs.co/wordpress/129942/hacking/cve-2022-22292-hack-samsung-android-devices.html

5、OpenSSL 漏洞（CVE-2022-0778）影响多个 Palo Alto 设备

https://securityaffairs.co/wordpress/129935/hacking/palo-alto-networks-devices-openssl-flaws.html

6、VMware 针对影响多个产品的新漏洞发布了重要补丁

https://thehackernews.com/2022/04/vmware-releases-critical-patches-for.html

7、福克斯新闻泄露了 1300 万条内部记录，包括员工信息

https://www.infosecurity-magazine.com/news/employee-info-13-million-records/

8、FFDroider恶意软件窃取Facebook、Twitter等多个社交应用的帐户

https://www.bleepingcomputer.com/news/security/new-ffdroider-malware-steals-facebook-instagram-twitter-accounts/

9、黑客利用恶意应用程序攻击马来西亚8家银行的客户

https://therecord.media/hackers-use-malicious-apps-to-target-customers-of-8-malaysian-banks-researchers-say/

10、Apple 仅针对 macOS Monterey 修补了关键的0day漏洞

https://www.theregister.com/2022/04/06/apple_patched_zerodays_in_macos/