“Over the years since I became ill, the drugs have cost me my home and bled my family dry. Sir, can you tell me which family doesn’t have a patient, and can you guarantee that you’ll have a lifetime free of illness?”

《我不是药神》热映，原型陆勇的故事再度进入公共视野。他是慢粒白血病人，先为自救、后为救人而推广印度仿制药。

本文讲的是关于陆勇的另一个故事：在推广某印仿药七年之后，陆勇转而推广另外一种“药”，印度Cyno公司生产的Imacy。他曾为Imacy在中国的推广会站台、在媒体上宣传、并牵线Cyno公司与云南药企合作办厂。

去年3月，《智族GQ》编辑与陆勇同赴印度。经实地采访发现，Cyno公司有以下疑点：1，药厂售药不要求出示处方，价格是同类产品的1/4。2，收款银行信息一周一变。3，印度本土药房中买不到Imacy，中央药监局查不到，90%的Imacy通过邮寄方式销往中日。4，截止结稿时（2017年5月初），生产许可不合规且过期。且经中科院检测发现，Imacy的有效成分远小于原研药。专家介绍，这种药因其药性不稳定，对慢粒患者长期治疗是“有危害的”。

陆勇拥有高知名度，只推荐Imacy, 令其几乎等同于印仿格列卫的代名词。许多患者因此并不清楚，印度许多大药厂都生产格列卫仿制药，价格在七八百元。患者完全可以有其他安全、有效、便宜的选择。

本文刊发于《智族GQ》2017年6月刊。

❶ 仿制救命药

Project Link: https://www.drupal.org/project/commerce_supay

Commerce Supay

Developer: Guotong Zheng (Tony)
Developer Website:http://visionsoft.com.au

Implements [SupayTech](http://www.supayedu.com/) payment services for use with
[Drupal Commerce](http://drupal.org/project/commerce).

A set of high-severity vulnerabilities in Drupal that were disclosed last month are now the target of widespread attacks by a malware campaign.

Researcher Troy Mursch of Bad Packets Report has spotted hundreds of compromised Drupal sites being used to host "cryptojacking" malware that uses the CPUs of visitors to mine cryptocurrency via CoinHive.

If you need to create a website for your business, event, or portfolio, you are probably hearing the word CMS pop up during your research. That’s because a CMS, or content management system, can be an important part of creating your website. In this article, we go over what a CMS is, the pros and cons of using one, and the top 3 most popular content management systems.

After the publication of two severe security flaws in the Drupal CMS, cybercrime groups have turned their sights on this web technology in the hopes of finding new ground to plant malware on servers and make money through illegal cryptocurrency mining.

After scrambling to patch a critical vulnerability late last month, Drupal is at it again.

The open source content management project has issued an unscheduled security update to augment its previous patch for Drupalgeddon2.

There was also a cross-site scripting bug advisory in mid-April.

Five hours after the Drupal team published a security update for the Drupal CMS, hackers have found a way to weaponize the patched vulnerability, and are actively exploiting it in the wild.

This vulnerability should not be confused with Drupalgeddon 2 (CVE-2018-7600), another Drupal CMS security issue patched last month, which is also heavily exploited. This issue —tracked as CVE-2018-7602— was patched today.

ModuleLink: https://www.drupal.org/project/commerce_royalpay

Implements [Royal Pay](https://www.royalpay.com.au/) payment services for use with
[Drupal Commerce](http://drupal.org/project/commerce).