資安事件新聞週報 2019/8/5 ~ 2019/8/9
1.重大弱點漏洞/後門/Exploit/Zero Day
PuTTY繼0.71版本修正8個高風險漏洞後,再次更新0.72版本
http://bit.ly/2YDMIM5
修補 Fortigate SSL VPN Web門戶中的不正當授權漏洞
https://ithelp.ithome.com.tw/articles/10212691
研究者警告:眾多Jira伺服器的錯誤配置,讓員工及專案資訊全曝光
https://www.ithome.com.tw/news/132265
研究人員發現可劫持數百萬Android裝置的高通晶片漏洞
https://www.ithome.com.tw/news/132291
DRAGONBLOOD新漏洞劫持WPA3密碼
https://www.4hou.com/vulnerable/19554.html
IBM WebSphere Application Server 多個漏洞
https://www-01.ibm.com/support/docview.wss?uid=ibm10960159
https://www-01.ibm.com/support/docview.wss?uid=ibm10888425
NVIDIA Patches High Severity Flaws in Windows GPU Display Driver
https://www.bleepingcomputer.com/news/security/nvidia-patches-high-severity-flaws-in-windows-gpu-display-driver/
NVIDIA顯卡驅動被曝5個高危漏洞官方建議升級最新版
http://www.elecfans.com/emb/dsp/201908041031073.html
VMWare 產品多個漏洞
https://www.vmware.com/security/advisories/VMSA-2019-0012.html
思科 Small Business 220 Series Smart Switches 多個漏洞
https://www.hkcert.org/my_url/zh/alert/19080701
思科智慧網路交換器爆重大漏洞,可讓駭客執行指令攻擊、接管系統
https://www.ithome.com.tw/news/132310
Security bugs in popular Cisco switch brand allow hackers to take over devices
https://www.zdnet.com/article/security-bugs-in-popular-cisco-switch-brand-allow-hackers-to-take-over-devices/
Cisco Email Security Appliance 拒絕服務漏洞CVE-2018-15460
https://aliyunnew.com/a/CVE-2018-15460.html
Symantec Endpoint Protection Privilege Escalation
https://support.symantec.com/us/en/article.SYMSA1487.html
Symantec Endpoint Encryption Privilege Escalation
https://21d8286f-4cc4-4069-893f-156d70582d3a.cloudapp.net/us/en/article.SYMSA1485.html
Symantec Messaging Gateway Privilege Escalation
https://21d8286f-4cc4-4069-893f-156d70582d3a.cloudapp.net/us/en/article.SYMSA1486.html
Google Chrome privacy extensions (2019 edition)
https://www.zdnet.com/article/google-chrome-privacy-extensions/#ftag=RSSbaffb68
DHCP Client Remote Code Execution Vulnerability Demystified
https://securingtomorrow.mcafee.com/other-blogs/mcafee-labs/dhcp-client-remote-code-execution-vulnerability-demystified/
Jet Database Engine Flaw May Lead to Exploitation: Analyzing CVE-2018-8423
https://securingtomorrow.mcafee.com/other-blogs/mcafee-labs/jet-database-engine-flaw-may-lead-to-exploitation-analyzing-cve-2018-8423/
What Is Mshta, How Can It Be Used and How to Protect Against It
https://securingtomorrow.mcafee.com/other-blogs/mcafee-labs/what-is-mshta-how-can-it-be-used-and-how-to-protect-against-it/
New Dragonblood vulnerabilities found in WiFi WPA3 standard
https://www.zdnet.com/article/new-dragonblood-vulnerabilities-found-in-wifi-wpa3-standard/
漏洞多得補不完,微軟本月將關閉Windows 7、8上IE11的VBScript
https://www.ithome.com.tw/news/132294
CVE-2019-1125 | Windows Kernel Information Disclosure Vulnerability
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1125
研究人員踢爆:微軟忽視RDP漏洞直至察覺它影響Hyper-V
https://www.ithome.com.tw/news/132337
Microsoft releases two new Windows 10 19H2 test builds
https://www.zdnet.com/article/microsoft-releases-two-new-windows-10-19h2-test-builds/#ftag=RSSbaffb68
Microsoft's newest Windows 10 20H1 test build tweaks network status page
https://www.zdnet.com/article/microsofts-newest-windows-10-20h1-test-build-tweaks-network-status-page/#ftag=RSSbaffb68
Microsoft Confirms New Windows CPU Attack Vulnerability, Advises All Users To Update Now
http://bit.ly/31jgUO0
Microsoft launches Azure Security Lab, expands bug bounty rewards
https://www.zdnet.com/article/microsoft-announces-azure-security-lab-azure-bug-bounty-expansion/#ftag=RSSbaffb68
New Windows hack warning: Patch Intel systems now to block SWAPGSAttack exploits
https://www.zdnet.com/article/new-windows-hack-warning-patch-intel-systems-now-to-block-swapgsattack-exploits/
安全漏洞潛伏十四年,你的Google 賬號還好嗎
http://ggycshw.com/forum.php?mod=viewthread&tid=434249
微軟成立Azure安全實驗室找出漏洞最高獎勵30萬美元
http://www.twoeggz.com/news/14926597.html
Why Software Patches Don't Fix Everything
https://www.forbes.com/sites/forbestechcouncil/2019/08/06/why-software-patches-dont-fix-everything/
CVE-2019-1125 “SWAPGS”是最新的Spectre漏洞
https://www.linuxidc.com/Linux/2019-08/159893.htm
Unpatched KDE vulnerability disclosed on Twitter
https://www.zdnet.com/article/unpatched-kde-vulnerability-disclosed-on-twitter/#ftag=RSSbaffb68
KDE存在一個易於被利用的0DAY 漏洞影響廣泛
http://bit.ly/2YBaKfz
最新英特爾晶片出現駭客攻擊漏洞 windows使用者首先遭殃
https://news.cnyes.com/news/id/4365753
立即修補英特爾系統以阻止SWAPGS攻擊漏洞
http://www.gjfs.com.cn/keji/201908/080719995.html
SWIFT Alliance Web Platform 7.1.23 CVE-2018-16386
https://nvd.nist.gov/vuln/detail/CVE-2018-16386
https://gist.github.com/shiham101/8763642e768582e0182f92cd41c482ec
10秒就被盜?調查稱英國部分車輛無鑰匙系統存漏洞
https://news.sina.com.tw/article/20190808/32246116.html
想賺錢嗎?美國空軍發出懸賞鼓勵民間高手找漏洞
https://www.easyaq.com/news/2147307179.shtml
Android 多個漏洞
https://source.android.com/security/bulletin/2019-08-01
Google 安全團隊展示駭人漏洞!一條短訊就能入侵 IPhone
http://pc3mag.com/hackers-show-a-bug-that-can-inject-iphone-with-one-imessage-text/
黑帽大會揭露致命SSL VPN漏洞,臺資安研究員藉入侵Twitter喚醒企業重視漏洞修補
https://ithome.com.tw/news/132332
有 Bug!夢幻客機 787 爆系統漏洞,波音澄清飛安疑慮
https://www.inside.com.tw/article/17156-boeing-787-cyber-security-leak
Apple expands bug bounty to macOS, raises bug rewards
https://www.zdnet.com/article/apple-expands-bug-bounty-to-macos-raises-bug-rewards/#ftag=RSSbaffb68
Steam含有權限擴張漏洞,波及1億用戶
https://www.ithome.com.tw/news/132344
2.銀行/金融/保險/證券/支付系統/ 新聞及資安
Akamai威脅研究﹕憑證填充攻擊及網絡釣魚仍是金融產業的最大威脅
https://money.udn.com/money/story/9529/3966143
金管會放行3間純網銀 民團提出3大質疑
https://m.ltn.com.tw/news/life/breakingnews/2872301
這 3 家全中!純網銀執照放榜,將對你的生活帶來哪些影響
https://finance.technews.tw/2019/08/04/online-bank-life/
【突破盲腸】 Visa 卡感應式付款漏洞,實現「真‧無限簽帳」
http://bit.ly/2YHQcx4
將來銀行 國家隊資安保證
https://ec.ltn.com.tw/article/paper/1307211
將來銀行 優先布建資安
https://money.udn.com/money/story/5648/3960390
將來銀行新團隊亮相 籌備處執行長劉奕成將專任董事
https://ec.ltn.com.tw/article/breakingnews/2870854
將來銀行目標2020年第2季開業,年底前要招募近百位IT人員
https://www.ithome.com.tw/news/132190
純網銀搶人大作戰 兩類人才爆紅
https://ctee.com.tw/news/finance/127829.html
金融業挫著等!罰鍰大幅拉高 金管會罰款收入預算創新高
https://www.ettoday.net/news/20181002/1271580.htm
台灣人壽攜手高雄榮總啟動「eClaim理賠區塊鏈」
https://www.chinatimes.com/realtimenews/20190731002625-260410?chdtv
蘋果信用卡細則出爐!禁止用戶越獄用
http://bit.ly/2KgVDil
Apple Card無法購買加密貨幣!高盛銀行協議曝光:賭場籌碼商品也禁買
https://www.ettoday.net/news/20190805/1505869.htm
IDEMIA宣佈RHB成為首家在東南亞推出MOTION CODE™信用卡的銀行
https://times.hinet.net/news/22489686
資安研究人員成功繞過Visa感應式卡片支付的刷卡金額限制
https://ithome.com.tw/news/132255
臺灣期貨交易所舉辦期貨商資訊安全人員及資安查核人員資通安全講座
http://tnr.com.tw/txtsemple.aspx?id=21352
期交所資通安全講座 吸引近百人參加
https://www.chinatimes.com/realtimenews/20190806003078-260410?chdtv
農發行福建省分行被罰35萬:客戶身份識別現漏洞
https://news.sina.com.tw/article/20190807/32226944.html
國泰世華銀行行動銀行將於8月18日更新版本至 6.10.0
https://www.cathaybk.com.tw/cathaybk/personal/news/announcement/2019/0805AnnounceInfo/
土地銀行Debit金融卡約定書約定條款修訂通知
https://www.landbank.com.tw/Bulletin/Detail/c39d6df2-9f57-47b1-9d49-aaa0003be37c
別傻了 信用卡掉了不是最危險
https://www.chinatimes.com/realtimenews/20190721001386-260410?chdtv
發生了什麼?威士萬事達或將退出俄羅斯
https://news.sina.com.tw/article/20190715/31967582.html
因應純網銀時代 德明培育金融專才
https://money.udn.com/money/story/5723/3976112
樂天網銀 2020 年第二季上線,將招募 100 人
https://finance.technews.tw/2019/08/02/lotte-online-banking-online-in-2020-q2/
香港港金管局澄清網路傳言 未將外匯存底借給中國大陸
https://www.ettoday.net/news/20190807/1507535.htm
新加坡金管局表示,2020年8月起金融業者須遵守六項新網路資安規範
http://bit.ly/2yLAPJd
Check Point:銀行惡意攻擊自2018年來提升50%
http://bit.ly/2MMmhBj
純網銀來了,沒有實體門市的銀行你敢用嗎?看懂LINE跟中華電信瞄準的背後商機
https://www.businessweekly.com.tw/article.aspx?id=26552&type=Blog
Visa Contactless Cards Vulnerable to Fraudsters: Report
https://www.bankinfosecurity.com/visa-contactless-cards-vulnerable-to-fraudsters-report-a-12867
Contactless Visa Card Vulnerability Can Trigger Fraud to Bypass Payment Limits
https://latesthackingnews.com/2019/08/02/contactless-visa-card-vulnerability-can-trigger-fraud-to-bypass-payment-limits/
Surveillance videos show alleged criminals attacking ATMs — and the crime is getting more common
https://www.cnbc.com/2019/08/01/atm-hack-attacks-caught-on-video.html
Lloyds Bank swipes Callsign deal to bolster cyber security
https://www.ft.com/content/02037454-a312-11e9-a282-2df48f366f7d
Only three global banks given top website security score by ImmuniWeb
https://www.zdnet.com/article/only-three-global-banks-given-top-website-security-score-by-immuniweb/
QR code scam can clean out your bank account
https://blog.malwarebytes.com/scams/2019/07/qr-code-scam-can-clean-out-your-bank-account/
Everything you need to know about ATM attacks and fraud: Part 1
https://blog.malwarebytes.com/101/2019/05/everything-you-need-to-know-about-atm-attacks-and-fraud-part-1/
Everything you need to know about ATM attacks and fraud: part 2
https://blog.malwarebytes.com/101/2019/08/atm-attacks-and-fraud-part-2/
No summer break for Magecart as web skimming intensifies
https://blog.malwarebytes.com/web-threats/2019/08/no-summer-break-for-magecart-as-web-skimming-intensifies/
How to get your Equifax money and stay safe doing it
https://blog.malwarebytes.com/awareness/2019/07/how-to-get-your-equifax-money-and-stay-safe/
Monzo admits to storing payment card PINs in internal logs
https://www.zdnet.com/article/monzo-admits-to-storing-payment-card-pins-in-internal-logs/#ftag=RSSbaffb68
We’ve fixed an issue that meant we weren’t storing some customers’ PINs correctly
https://monzo.com/blog/2019/08/05/weve-fixed-an-issue-storing-some-customers-pins
MAS Launches Sandbox Express for Faster Market Testing of Innovative Financial Services
https://www.mas.gov.sg/news/media-releases/2019/mas-launches-sandbox-express-for-faster-market-testing-of-innovative-financial-services
The Risk of Weak Online Banking Passwords
https://krebsonsecurity.com/2019/08/the-risk-of-weak-online-banking-passwords/
Ex-Secret Service Agent Tackles Banking Cybercrime
https://www.bankinfosecurity.com/interviews/ex-secret-service-agent-tackles-banking-cybercrime-i-4410
State Farm Investigates Credential-Stuffing Attack
https://www.bankinfosecurity.com/state-farm-investigates-credential-stuffing-attack-a-12893
3.電子支付/電子票證/行動支付/ pay/新聞及資安
行動支付「7pay」推1天就遭盜刷!9/30收攤
http://bit.ly/339hpvX
歐盟與伊朗支付系統完成首單俄羅斯稱中國也有意加入
http://news.dwnews.com/global/news/2019-07-29/60143115.html
上海盛付通電子支付服務有限公司“違反支付業務規定”近兩年被罰十多次
http://www.shanghai12345.com/html/2019/xinwen_0731/3710.html
香港第三方支付廠商AsiaPay進軍臺灣,要搶攻大型跨境電商交易市場
https://ithome.com.tw/news/132110
專注於電子商務的區塊鏈,aBey活躍用戶增長驚人
https://www.businesswirechina.com/hk/news/41200.html
中國女留學生因盜刷日本7-11手機支付被捕
https://zh.cn.nikkei.com/politicsaeconomy/politicsasociety/36439-2019-07-12-13-10-14.html
4天就壽終正寢的電子支付,日本小七慘痛經驗
https://www.storm.mg/article/1572832?srcid=73746f726d2e6d675f63373766396366313733396365313337_1565324565
聯準會擬推即時支付系統
https://www.chinatimes.com/realtimenews/20190806001183-260410?chdtv
Fed 推 24 小時即時支付系統「FedNow」,最快 2023 上線
https://buzzorange.com/techorange/2019/08/06/fed-now-the-fed-is-getting-into-the-real-time-payments-business/
Fed將推出即時支付系統?加密貨幣社群:比特幣早已實現這點
http://news.knowing.asia/news/e4047a33-2012-40a4-a399-a6a21e0ea0ae
新加坡的金融服務和電子支付公司必須遵循明年8月的新網絡安全規則
http://www.orgs.one/show/833165
一卡通電子支付機構業務定型化契約修訂
https://www.ptt.cc/bbs/MobilePay/M.1565105702.A.62D.html
掃碼支付規格整合將帶來新氣象
http://bit.ly/2MKS6e3
一中國男子涉嫌盜刷7pay被岐阜警方逮捕
https://tchina.kyodonews.net/news/2019/08/ab6b98937a45-7pay.html
HUAWEI Pay 正式宣布在港推出!挑機 Apple、Samsung
http://bit.ly/33jRstx
Google Pay、Apple Pay、Line Pay、台灣Pay、街口支付0800免費客服電話、受理時間整理
https://www.cool3c.com/article/146819
Mastercard以32億美元買下Nets的即時支付平台
https://www.ithome.com.tw/news/132300
CLS歡迎首位加入CLS結算服務的中國第三方銀行
http://bit.ly/2OJUHaM
點數平台牽手FinTech 助力商家拿回數據自主權
https://www.digitimes.com.tw/iot/article.asp?cat=158&cat1=20&cat2=80&id=0000565816_ab49e8mw06uaor7gmkrve
兩家支付公司卡殼:新疆一卡通停止業務 天下支付懸而未決
https://news.sina.com.tw/article/20190808/32246892.html
The Threat of Online Skimming to Payment Security
https://blog.pcisecuritystandards.org/the-threat-of-online-skimming-to-payment-security
THE THREAT OF ONLINE SKIMMING TO PAYMENT SECURITY
https://www.pcisecuritystandards.org/pdfs/PCISSC_Magecart_Bulletin_RHISAC_FINAL.pdf
Soon You Might Not Need An Internet Connection to Make Payments Using WeChat
http://fintechnews.hk/9829/mobilepayment/wechat-offline-payments-flight/
4.虛擬貨幣/區塊鍊 新聞及資安
比特幣支付未死,閃電網路成為新創公司的新戰場
http://news.knowing.asia/news/a6fa9bd4-d756-41fa-a8cb-da3f6697a7ba
NTWD上線交易所,以後夜市小吃也能直接用密碼貨幣買單
https://www.bnext.com.tw/article/54085/ntwd-ego
MaiCoin實體店面紮根台灣 邀證期局喝咖啡
https://www.chinatimes.com/realtimenews/20190716004178-260410?chdtv
MaiCoin從虛擬走向實體門市,將提供三大項服務
http://bit.ly/2yBkd70
央行成立專案小組 關切比特幣、臉書幣發展
https://ec.ltn.com.tw/article/breakingnews/2855142
遭駭客攻擊後的幣安....上半年過得好嗎
http://news.knowing.asia/news/a7f75b73-ad41-4fde-95c2-10d63df9dcec
幣寶日本(Bitpoint Japan)遭駭後重啟交易服務,今日將開啟法幣出入金
https://www.blocktempo.com/japanese-crypto-exchange-bitpoint-restarting-trade-services/
北韓政府利用駭客,竊取交易所近 430 億台幣加密貨幣:用來資助大規模殺傷性武器
https://www.blocktempo.com/north-korea-stole-2-billion-in-crypto-and-fiat-to-fund-weapons-programs/
北韓四度射彈!路透:駭客網攻偷走638億
https://news.tvbs.com.tw/world/1178990
BitPoint在遭黑客攻擊後恢復交易服務
https://www.fxshell.com/article/40884
加密貨幣浪潮席捲全球!亞洲地區的這些國家正在推出「城市幣」
http://news.knowing.asia/news/2a341704-0866-4326-91d8-7513df00e3fb
幣安與"KYC黑客"談判疑似曝光:可能是內部人士泄密
https://news.sina.com.tw/article/20190808/32240306.html
幣安KYC勒索事件追蹤:駭客親自現身說法
https://www.ptt.cc/bbs/DigiCurrency/M.1565259423.A.77E.html
幣安回應信息泄露:曾遭勒索300枚BTC 現懸賞征線索
https://news.sina.com.tw/article/20190807/32237092.html
「帥過頭」遭爆虛擬貨幣割韭菜,誆人投資卻遲不上架
https://www.inside.com.tw/article/17155-Taiwan-real-estate-investors-are-suspected-of-virtual-currency-fraud
交易所面臨多重安全隱患 越賺錢越必須捨得花錢
https://news.sina.com.tw/article/20190808/32246184.html
ShapeShift解決了KeepKey硬件錢包的漏洞
http://chainb.com/?P=Cont&id=17370
North Carolina county falls for BEC scam, to the tune of $1,728,083
https://nakedsecurity.sophos.com/2019/08/01/north-carolina-county-falls-for-bec-scam-to-the-tune-of-1728083/
Binance KYC Data Leak — Crypto Exchange Sets $290,000 Bounty On Blackmailer
https://thehackernews.com/2019/08/binance-kyc-data-leak.html
5.資安事件新聞
A.病毒木馬 / 殭屍網路 / 勒索軟體 / Adware /APT /後門程式
程式碼竟有中文字!有毒軟體「Winnti」入侵德國百大企業 攻擊敏感產業
https://cnews.com.tw/140190804a02/
挖礦木馬WatchBog新變種來襲,利用多款工具新漏洞
https://www.4hou.com/web/19421.html
黑客瞄準移動銀行應用 惡意程式攻擊大增5成
http://bit.ly/2YDGhs9
Proofpoint揭露新的代理惡意程式SystemBC
https://www.ithome.com.tw/news/132243
網絡安全:破解勒索軟件 備份工夫要足
http://bit.ly/2YHF5Z8
紐約一私人院校 遭黑客勒索200萬
http://www.epochtimes.com/b5/19/7/12/n11380144.htm
免費的最貴! 男欲看國中生迷片 遭惡意連結鎖哀鳳勒索
https://www.ettoday.net/news/20190805/1506359.htm
廣告程式DealPly濫用微軟及McAfee服務來躲避偵測
https://ithome.com.tw/news/132262
IBM:破壞性惡意軟體攻擊數過去半年來暴增二倍
https://www.ithome.com.tw/news/132283
AT&T員工收受賄賂,在公司網路植入惡意軟體
https://www.zdnet.com/article/at-t-employees-took-bribes-to-plant-malware-on-the-companys-network/
2019 年 9 款 免費防毒軟體下載 總整理、介紹、推薦
https://www.kocpc.com.tw/archives/273273
新的Echobot殭屍網路變種使用超過50個漏洞進行傳播
https://www.bleepingcomputer.com/news/security/new-echobot-botnet-variant-uses-over-50-exploits-to-propagate/
AT&T employees took bribes to plant malware on the company's network
https://www.zdnet.com/article/at-t-employees-took-bribes-to-plant-malware-on-the-companys-network/
금성121 조직, 라자루스로 위장한 APT '이미테이션 게임' 등장
https://blog.alyac.co.kr/2453
MegaCortex Returns
https://blogs.quickheal.com/megacortex-returns/
Rocke’in the NetFlow
https://unit42.paloaltonetworks.com/rockein-the-netflow/
Zegost from Within – New Campaign Targeting Internal Interests
https://www.fortinet.com/blog/threat-research/zegost-campaign-targets-internal-interests.html
GermanWiper ransomware hits Germany hard, destroys files, asks for ransom
https://www.zdnet.com/article/germanwiper-ransomware-hits-germany-hard-destroys-files-asks-for-ransom/#ftag=RSSbaffb68
DealPly adware abuses Microsoft, McAfee services to evade detection
https://www.zdnet.com/article/dealply-adware-abuses-microsoft-mcafee-services-to-evade-detection/#ftag=RSSbaffb68
New Windows malware sets up proxies on your PC to relay malicious traffic
https://www.zdnet.com/article/new-windows-malware-sets-up-proxies-on-your-pc-to-relay-malicious-traffic/#ftag=RSSbaffb68
New Mirai botnet lurks in the Tor network to stay under the radar
https://www.zdnet.com/article/new-mirai-botnet-lurks-in-the-tor-network-to-stay-under-the-radar/#ftag=RSSbaffb68
WARNING: 250 Million Account Trojan Can Disable Windows Defender
https://www.partitionwizard.com/partitionmagic/250m-account-trojan-can-disable-windows-defender-006.html
Laut Kaspersky waren 2019 430.000 Menschen von finanzieller Malware betroffen
https://todotech20.com/ge/laut-kaspersky-waren-2019-430-000-menschen-von-finanzieller-malware-betroffen/
Hackers use SystemBC Malware to Hide C&C Server Communication by Deploying Proxies on Infected Computer
https://threatravens.com/hackers-use-systembc-malware-to-hide-cc-server-communication-by-deploying-proxies-on-infected-computer/
SystemBC is like Christmas in July for SOCKS5 Malware and Exploit Kits
https://www.proofpoint.com/us/threat-insight/post/systembc-christmas-july-socks5-malware-and-exploit-kits
Check Point: number of mobile banking attacks doubled in a year
https://www.anti-malware.name/news/check-point-number-of-mobile-banking-attacks-doubled-in-a-year/
ESET takes deep dive into Latin American banking trojans, starting with new Amavaldo malware family
https://www.eset.com/int/about/newsroom/press-releases/research/eset-takes-deep-dive-into-latin-american-banking-trojans-starting-with-new-amavaldo-malware-family-1/
Fiendish Amavaldo banking trojan strikes in Mexico after targeting Brazilians
https://www.scmagazine.com/home/security-news/cybercrime/fiendish-amavaldo-banking-trojan-strikes-in-mexico-after-targeting-brazilians/
THIS MALWARE IS STEALING MONEY FROM BANKS IN MEXICO AND BRAZIL
https://www.securitynewspaper.com/2019/08/01/this-malware-is-stealing-money-from-banks-in-mexico-and-brazil/
Banking Trojan Disables Windows Defender
https://tweaklibrary.com/how-banking-trojan-disables-windows-defender-on-windows-10/
Trickbot Trojan Gets IcedID Proxy Module to Steal Banking Info
https://www.bleepingcomputer.com/news/security/trickbot-trojan-gets-icedid-proxy-module-to-steal-banking-info/
2019-08-02 - DATA DUMP: TWO EXAMPLES OF RIG EK
https://www.malware-traffic-analysis.net/2019/08/02/index2.html
2019-08-02 - QUICK POST: LORD EK SENDS ERIS RANSOMWARE
https://www.malware-traffic-analysis.net/2019/08/02/index.html
2019-08-01 - NEWLY-DISCOVERED LORD EXPLOIT KIT
https://www.malware-traffic-analysis.net/2019/08/01/index.html
A cyber-espionage group has been stealing files from the Venezuelan military
https://www.zdnet.com/article/a-cyber-espionage-group-has-been-stealing-files-from-the-venezuelan-military/#ftag=RSSbaffb68
Sharpening the Machete
https://www.welivesecurity.com/2019/08/05/sharpening-machete-cyberespionage/
Virus Bulletin researcher discovers new Lord exploit kit
https://www.virusbulletin.com/blog/2019/08/virus-bulletin-researcher-discovers-new-lord-exploit-kit/
Clop Ransomware
https://securingtomorrow.mcafee.com/other-blogs/mcafee-labs/clop-ransomware/
Say hello to Lord Exploit Kit
https://blog.malwarebytes.com/threat-analysis/2019/08/say-hello-to-lord-exploit-kit/
Exploit kits: summer 2019 review
https://blog.malwarebytes.com/threat-analysis/2019/07/exploit-kits-summer-2019-review/
MegaCortex ransomware slams enterprise firms with $5.8 million blackmail demands
https://www.zdnet.com/article/megacortex-ransomware-slams-eu-firms-with-demands-of-up-to-5-8-million/#ftag=RSSbaffb68
New version of MegaCortex targets business disruption
https://www.accenture.com/us-en/blogs/blogs-megacortex-business-disruption
MegaCortex Ransomware Demands Millions From Victims
https://www.bankinfosecurity.com/megacortex-ransomware-demands-millions-from-victims-a-12872
Latest Trickbot Campaign Delivered via Highly Obfuscated JS File
https://blog.trendmicro.com/trendlabs-security-intelligence/latest-trickbot-campaign-delivered-via-highly-obfuscated-js-file/
LokiBot Gains New Persistence Mechanism, Uses Steganography to Hide Its Tracks
https://blog.trendmicro.com/trendlabs-security-intelligence/lokibot-gains-new-persistence-mechanism-uses-steganography-to-hide-its-tracks/
Puzzling Gwmndy Botnet Focuses on Low-Volume Proxy Connections
https://threatpost.com/gwmndy-botnet-proxy-connections/146963/
New Lord Exploit Kit Pushes njRAT and ERIS Ransomware
https://www.bleepingcomputer.com/news/security/new-lord-exploit-kit-pushes-njrat-and-eris-ransomware/
New Windows malware can also brute-force WordPress websites
https://www.zdnet.com/article/new-windows-malware-can-also-brute-force-wordpress-websites/#ftag=RSSbaffb68
LokiBot malware now hides its source code in image files
https://www.zdnet.com/article/lokibot-information-stealer-now-hides-malware-in-image-files/#ftag=RSSbaffb68
How a Prominent Cryptomining Botnet is Paving the Way for a Lucrative and Illicit Revenue Model
https://www.carbonblack.com/wp-content/uploads/2019/08/Carbon-Black-Access-Mining.pdf
Smominru hijacks half a million PCs to mine cryptocurrency, steals access data for Dark Web sale
https://www.zdnet.com/article/new-cryptojacking-campaign-strikes-half-a-million-pcs/#ftag=RSSbaffb68
MoqHao Related Android Spyware Targeting Japan and Korea Found on Google Play
http://bit.ly/2ZIOTPL
Tricky Chinese-Targeted Trojan Bypasses Authentication
https://www.fortinet.com/blog/threat-research/chinese-targeted-trojan-analysis.html
Trojan targets news website with watering hole attack to backdoor your PC
https://www.zdnet.com/article/tricky-trojan-targets-news-website-to-backdoor-your-pc/#ftag=RSSbaffb68
Windows malware strain records users on adult sites
https://www.zdnet.com/article/windows-malware-strain-records-users-on-adult-sites/#ftag=RSSbaffb68
Three ads generate 5.5 times more revenue than a web-based cryptojacking script
https://www.zdnet.com/article/three-ads-generate-5-5-times-more-revenue-than-a-web-based-cryptojacking-script/#ftag=RSSbaffb68
Baldr Credential-Stealing Malware Targets Gamers
https://www.bankinfosecurity.com/baldr-credential-stealing-malware-targets-gamers-a-12892
Are You Ready for Malware-as-a-Service
https://www.symantec.com/blogs/expert-perspectives/are-you-ready-malware-service
B.行動安全 / iPhone / Android /穿戴裝置 /App
智慧型手機系統內建軟體資安檢測指引
https://www.ncc.gov.tw/chinese/gradation.aspx?site_content_sn=5091&is_history=0
蘋果將向安全人員提供特別版iPhone 用來尋找bug
https://news.sina.com.tw/article/20190806/32215058.html
「抖音」是中共的網路間諜?談短片App資安爭議
https://opinion.udn.com/opinion/story/120611/3973187
研究員將在Black Hat 2019上展示偽冒5G基地台技術
https://www.secrss.com/articles/12736
採用Linux作業系統的Librem 5,讓你完全掌握手機自主權
https://www.techbang.com/posts/71926-librem-5-with-linux-operating-system-gives-you-full-control-of-your-phone
不爽被抽30%!交友軟體Tinder新付費流程「繞過」Google Play
https://udn.com/news/story/7088/3946272
受賄百萬!AT&T員工供駭客解鎖200萬支手機
https://news.wearn.com/c292633.html
創紀錄!蘋果砸3千萬邀請「賞金獵人」抓手機漏洞
https://ec.ltn.com.tw/article/breakingnews/2879286
Slack 增強資安防護程度,希望吸引有一定要求的企業青睞
https://technews.tw/2019/08/08/slack-improve-security-feature-give-admin-more-power-to-attract-business-with-certain-standard/
What’s App爆資安漏洞 用戶對話恐遭變造
https://news.cts.com.tw/cts/life/201908/201908081970543.html
WhatsApp現安全漏洞能竄改訊息
https://news.now.com/home/international/player?newsId=358410
40款APP被點名批評整改 靠啥保護個人信息和隱私
https://news.sina.com.tw/article/20190803/32186984.html
Face ID安全性破功!只要戴上貼著黑色膠帶的眼鏡 使用者昏迷也可解鎖手機
https://www.ettoday.net/news/20190809/1509497.htm
New Flaws in Qualcomm Chips Expose Millions of Android Devices to Hacking
https://thehackernews.com/2019/08/android-qualcomm-vulnerability.html
QualPwn vulnerabilities in Qualcomm chips let hackers compromise Android devices
https://www.zdnet.com/article/qualpwn-vulnerabilities-in-qualcomm-chips-let-hackers-compromise-android-devices/#ftag=RSSbaffb68
New FAA app allows drone operators to check air space before they fly
https://www.zdnet.com/article/new-faa-app-allows-drone-operators-to-check-air-space-before-they-fly/#ftag=RSSbaffb68
Five Eyes nations demand access to encrypted messaging
https://nakedsecurity.sophos.com/2019/08/01/five-eyes-nations-demand-access-to-encrypted-messaging/
Facebook Sues Two Android App Developers for Click Injection Fraud
https://thehackernews.com/2019/08/facebook-ads-click-injection.html
Black Hat 2019 – WhatsApp Protocol Decryption for Chat Manipulation and More
https://research.checkpoint.com/black-hat-2019-whatsapp-protocol-decryption-for-chat-manipulation-and-more/
Decade-old remote code execution bug found in phones used by Fortune 500
https://www.zdnet.com/article/decade-old-remote-code-execution-bug-found-in-phone-used-by-up-to-90-percent-of-fortune-500/#ftag=RSSbaffb68
C.事件 / 駭客 / DDOS / APT / 雲端/暗網/徵才 / 國際資安事件
2019年7月十大資安新聞
https://www.ithome.com.tw/news/132282
新州TAFE系統遭駭 近30人工資發放卡殼
http://www.epochtimes.com/b5/19/8/9/n11441687.htm
回顧歷年針對未修補系統的攻擊
https://blog.trendmicro.com.tw/?p=61388
24小時內建立600個詐騙帳號! ERP漏洞沒修補,62所美國大專院校遇駭
https://blog.trendmicro.com.tw/?p=61485
玩家遊戲作弊出奇招:用DDoS攻擊來獲勝、一拳不發就讓你輸掉全局
https://www.techbang.com/posts/72076-play-the-game-with-ddos-attack-to-win-but-also-steal-your-money-spread-to-the-network
IBM展示最新軍艦攻擊,直接寄送具網路攻擊能力的實體裝置到目標企業
https://www.ithome.com.tw/news/132327
淘寶都關事?網傳阿里巴巴暗植入程式線上監控用戶 專家教檢查瀏覽器+移除方法
http://bit.ly/2YLOxL3
工程師注意!5 種程式語言未來可能會消失
https://technews.tw/2019/08/07/5-programming-languages-might-extinct/
6成網攻來自陸!台灣59萬筆公僕個資外洩只是一角
https://www.chinatimes.com/realtimenews/20190804002119-260410?chdtv
公司自動監控設備留「漏洞」 涉偽造監測數據被查
https://news.sina.com.tw/article/20190805/32209704.html
比瀏覽器綁架更惡劣!中國網友發現家中電腦的 Chrome 竟被「託管」、別人可遠端更改他的設定
https://www.techbang.com/posts/71988
打假訊息 英陸軍重啟第6師編制
https://www.ydn.com.tw/News/346895
美國政略統籌下的網軍軍事戰略
https://mp.weixin.qq.com/s/7ybAHkQ-AR-f63EQ22AAnw
南華早報:遭中國「邊控」人士恐逾百萬
https://news.ltn.com.tw/news/world/breakingnews/2875025
中國駭客又出手 歐洲宗教自由論壇遭攻擊、影片惡意刪除
https://news.ltn.com.tw/news/world/breakingnews/2875355
監控挨轟 哈薩克取消安裝網路憑證規定
https://money.udn.com/money/story/5599/3976097
據報北韓藉網絡攻擊竊取資金 發展大規模殺傷武器
http://bit.ly/2YOE15z
聯合國密報:北韓駭客入侵交易所 獲益至少20億美金「作為核武資金」
https://www.ettoday.net/news/20190806/1506700.htm
大陸財經:招商銀行等三家中資銀行遭美點名涉北韓核計畫籌資交易
http://bit.ly/2YP3cVC
微軟:俄國駭客使用IoT裝置入侵企業網路
https://www.ithome.com.tw/news/132271
玩真的!美正式落實禁購華為 這些陸企也中槍
https://www.chinatimes.com/realtimenews/20190808001426-260408?chdtv
誇張!中國御用駭客私下「兼職」 勒索民間企業、消費者
https://news.ltn.com.tw/news/world/breakingnews/2877649
陸駭客組織APT41肆虐 雇用16歲以下青少年
https://www.chinatimes.com/realtimenews/20190808004585-260409?chdtv
火眼點名中共駭客團體APT41 :間諜、商業犯罪雙管齊下 14個國家港台媒體都曾「被駭」
http://bit.ly/2YD1ebw
火眼:中共駭客「兼職」商業犯罪勒索私企
https://www.ntdtv.com/b5/2019/08/07/a102639664.html
不只北韓,中國也暗地支持駭客組織?資安報告揭示:間諜機構在配合中國的「五年計劃」
https://www.blocktempo.com/state-sponsored-chinese-hacking-group-is-targeting-crypto-firms-report/
疑似伊朗駭客侵入巴林關鍵基礎設施和政府電腦系統
https://on.wsj.com/31rPHZH
中越破獲特大跨境網路賭博案 自越南緝捕解回77人
https://news.sina.com.tw/article/20190729/32125006.html
Threat Research APT41: A Dual Espionage and Cyber Crime Operation
https://www.fireeye.com/blog/threat-research/2019/08/apt41-dual-espionage-and-cyber-crime-operation.html
Chinese hacker group that works for both Beijing and personal gain identified
https://www.ft.com/content/965ceffc-b8ea-11e9-8a88-aa6628ac896c
North Korea reportedly stole $2B in wave of cyber attacks
https://www.zdnet.com/article/north-korea-reportedly-stole-2b-in-wave-of-cyber-attacks/#ftag=RSSbaffb68
Cobalt Group Returns To Kazakhstan
https://research.checkpoint.com/cobalt-group-returns-to-kazakhstan/
Massive Magecart attack campaign breaches over 960 e-commerce stores
https://cyware.com/news/massive-magecart-attack-campaign-breaches-over-960-e-commerce-stores-548f3605
http://bit.ly/2YO6mJd
https://gist.github.com/gwillem/5d936f5a84837d5c1dcb488ce256294a
It’s Time to Tear Up Lockheed’s Cyber Kill Chain, Says Carbon Black
https://www.cbronline.com/news/cyber-kill-chain-carbon-black
A dismal industry: The unsustainable burden of cybersecurity
https://www.zdnet.com/article/a-dismal-industry-the-unsustainable-burden-of-cyber-security/#ftag=RSSbaffb68
Official Cybersecurity Review Finds U.S. Military Buying High-Risk Chinese Tech (Updated)
https://www.forbes.com/sites/zakdoffman/2019/08/02/u-s-military-spends-millions-on-dangerous-chinese-tech-with-known-cyber-risks/
US military purchased $32.8m worth of electronics with known security risks
https://www.zdnet.com/article/us-military-purchased-32-8m-worth-of-electronics-with-known-security-risks/#ftag=RSSbaffb68
Microsoft: Russia Probes Office Printers, VOIP Phones
https://www.bankinfosecurity.in/microsoft-russia-probes-office-printers-voip-phones-a-12875
LookBack Mlaware Cyberattacks Target U.S. Utilities Sector
https://www.msspalert.com/cybersecurity-breaches-and-attacks/phishing/lookback-malware-targets-us-utilities/
KDE Linux Desktops Could Get Hacked Without Even Opening Malicious Files
https://thehackernews.com/2019/08/kde-desktop-linux-vulnerability.html
New ‘warshipping’ technique gives hackers access to enterprise offices
https://www.zdnet.com/article/new-warshipping-technique-gives-hackers-access-to-enterprise-offices/#ftag=RSSbaffb68
Exclusive: High-security locks for government and banks hacked by researcher
https://reut.rs/2M58BC4
North Korean Hacking Funds WMD Programs, UN Report Warns
https://www.bankinfosecurity.com/north-korean-hacking-funds-wmd-programs-un-report-warns-a-12884
資安工程師(客戶 : 政府公共事業) NEC (台灣恩益禧股份有限公司)
https://www.cakeresume.com/companies/nec/jobs/993c50?locale=ko
軟體專案工程師(R&D Project Manager)
https://www.104.com.tw/job/6p1uq
資安維運工程師 Security Operations Engineer (SecOps)
https://www.104.com.tw/job/6p2ar
AT-台灣最大資安公司找約聘測試工程師
https://www.cakeresume.com/companies/recruit-express-f52d7b/jobs/700a7e.amp?locale=ko
D.資料外洩/個資法/GDPR/網路詐騙/網路釣魚/盜刷/假新聞
網路詐騙如何巧妙地讓你上鉤?網路詐騙的最新手段及6種對策
https://blog.trendmicro.com.tw/?p=60974
利用未成年少年充當車手 台東警破獲網路購物詐騙集團
https://www.ettoday.net/news/20190804/1505586.htm
亞馬遜前員工被控盜取Capital One 1億多客戶數據 AWS安全性遭質疑
https://news.sina.com.tw/article/20190802/32180540.html
E3遊戲展官網出現安全漏洞 2000多位記者信息遭洩露
https://pttnews.cc/01b434bba7
雲南嚴打欺詐騙保 上半年追回醫保基金6000餘萬元
https://news.sina.com.tw/article/20190802/32179998.html
黑客組織用假谷歌域名註入多網卡側取器竊取數據
https://www.cnbeta.com/articles/tech/872299.htm
釣魚詐騙手法提醒
https://www.citibank.com.tw/global_docs/chi/pressroom/press_20190725.htm
【跨境賣銀行卡】流入東南亞電訊詐騙集團 主犯:目標月賺$113萬
https://hk.news.appledaily.com/china/realtime/article/20190726/59867019
新北警:假監管帳戶 詐騙簡訊騙個資
http://bit.ly/2YBvI9a
前男友雲端藏客戶個資 女向遠傳檢舉身分竟暴露
https://tw.news.appledaily.com/local/realtime/20190805/1611331/
歹徒冒邊境局官員 圖騙取SIN卡號碼 一般手法隨機發電郵或打電話
https://www.mingpaocanada.com/tor/htm/News/20190803/tda1_r.htm
盜用健保卡5年虧175萬!他詐90萬醫療費成史上最高
https://fnc.ebc.net.tw/FncNews/life/93723
信用卡加油奇案!她離開15分鐘竟被盜刷 怒告下一名無辜顧客
https://tw.appledaily.com/new/realtime/20190721/1599166/
有100萬張南韓的支付卡資訊在黑市求售
https://www.ithome.com.tw/news/132244
球鞋轉售平台 StockX 遭駭客竊取超過 680 萬筆會員個資
https://hypebeast.com/zh/2019/8/stockx-password-reset-suspicious-activity
Akamai 2019年互聯網安全報告:66%網路釣魚域直接瞄準消費者
https://news.sina.com.tw/article/20190805/32206810.html
中國新型騙局特製品·“充電寶”盜手機信息
https://www.sinchew.com.my/content/content_2091797.html
調查局籲請民眾慎防手機簡訊詐騙
https://www.chinatimes.com/realtimenews/20190718001617-260402?chdtv
加拿大邊境服務局指 有騙徒冒認局方人員索取個人資料
http://bit.ly/2GMcXtC
Capital One泄私隱 加律師行提集體訴訟
http://www.mingpaocanada.com/Tor/htm/News/20190804/tdc1_r.htm
沒訂貨卻收「快遞包裹已發」簡訊 刑事局:詐騙集團釣魚手法
http://bit.ly/33arl8u
IT高手Gumtree上賣電腦 遭詐騙
http://www.epochtimes.com/b5/19/8/5/n11431518.htm
假網拍騙訂金 台東破獲網路詐騙集團
http://www.ksnews.com.tw/index.php/news/contents_page/0001290034
驚!國泰航空證實:用機上攝影機掌握乘客一舉一動
https://udn.com/news/story/6809/3972187
她幫同事辦信用卡,偷記密碼盜刷3萬
https://www.pearvideo.com/video_1586610
警籲換手機慎防個資外洩
http://bit.ly/2Zzc26V
詔安:撿到熟人信用卡騙取密碼多次盜刷
http://zzpd.fjsen.com/2019-07/30/content_22555724.htm
[北部] 偵破蕭○○為首及陳○○為首共14人信用卡網路盜刷集團
http://www.8news.net/thread-1392-1-1.html
偵破蕭○○為首及陳○○為首共14人信用卡網路盜刷集團
https://www.cib.gov.tw/News/Detail/40458
刑事局偵破信用卡網路盜刷 逮2集團14人
https://news.tvbs.com.tw/local/1172945
信用卡盜刷集團入侵 知名購物網、電信公司損失百萬
http://photo.udn.com/money/story/5648/3952755
電商平台未綁定3D認證 成盜刷集團肥羊
https://www.ttv.com.tw/news/view/10807260026000N/575
網購信用卡資料 2集團網路盜刷200多萬被查獲
https://m.ltn.com.tw/news/society/breakingnews/2864862
收到短訊指卡被盜用女子無故欠1千6卡債
http://news.seehua.com/?p=468350
洛縣法院遭釣魚攻擊 肇事者恐判350年
http://www.epochtimes.com/b5/19/7/27/n11412317.htm
2高中生用偽鈔買東西!得不償失
https://news.ltn.com.tw/news/society/breakingnews/2875585
偽裝訂房網信送回饋金! 民輸入卡號遭盜刷
https://news.tvbs.com.tw/local/1173063
客製化T恤網站CafePress外洩2,300萬名用戶資料
https://ithome.com.tw/news/132278
線上球鞋交易平台Stock X驚傳駭客入侵 600萬客戶資料被竊取
https://cnews.com.tw/140190806a04/
什麼是「橫向網路釣魚」(lateral phishing)
https://blog.trendmicro.com.tw/?p=61367
騰訊發佈網路詐騙治理報告:90後成被騙主要對象,中老年被騙錢最多
https://www.ithome.com/0/437/708.htm
上海姑娘好心幫「半個老鄉」轉帳 竟成詐欺犯
https://tw.news.appledaily.com/local/realtime/20190807/1612735/
1千元買個資 這些人瘋狂盜刷3百萬
http://bit.ly/2yH9qZ3
飯店服務生翻拍4客人信用卡 上網冒用消費2萬多
https://money.udn.com/money/story/12524/3952416
臉書遇假故友借錢 銀行員偕員警成功攔詐
https://www.cna.com.tw/news/asoc/201908070101.aspx
烏龍盜刷案 警研判機器出現bug
https://news.ltn.com.tw/news/society/paper/1305002
台中加油站離奇盜刷!女刷卡竟無辜被告 中信銀回應了
https://www.ettoday.net/news/20190722/1495448.htm
臉書 越被罵越賺錢 利用個資遭重罰 轉型面臨難題
https://tw.finance.appledaily.com/daily/20190807/38411976/
可惡!任達華遇刺 網竟冒詐騙「借手術費」
http://bit.ly/2MNiljR
宅急騙!詐團偽造黑貓 偷用戶個資騙百億
https://fnc.ebc.net.tw/FncNews/video/92732
Uber誤收100倍車資 信用卡公司發詐騙警告乘客才知
https://hk.news.appledaily.com/international/realtime/article/20190719/59839278
惡劣竊賊! 專偷騎士錢包 盜刷信用卡
https://www.ttv.com.tw/news/view/10808070014300N/568
製偽卡盜刷 竹聯孝堂大老儲著光遭起訴
https://www.chinatimes.com/realtimenews/20190717001535-260402?chdtv
【住宿】 Booking.com信用卡資料這樣外流的
https://www.backpackers.com.tw/forum/showthread.php?t=10308224
50萬乘客資訊被盜 英航被罰1.83億鎊
http://www.epochtimes.com/b5/19/7/12/n11381990.htm
馬來西亞國防部遭盜用名義發信銀行職員
http://bit.ly/2yNio6Y
FBI發布網路約會詐騙警告
https://ithome.com.tw/news/132296
不法分子冒充國際刑警詐騙老人 被銀行員工成功阻止
https://news.sina.com.tw/article/20190801/32160336.html
上海市電信網路詐騙案件立案數同比下降30.2%
https://news.sina.com.tw/article/20190803/32189634.html
兩年非法獲利2400萬 禮品卡詐騙集團被檢控
http://bit.ly/2OLJ17q
土耳其中國公民遭遇婚戀詐騙 中領館吁提高警惕
https://news.sina.com.tw/article/20190808/32241242.html
重慶警方破獲一「殺豬盤」式特大系列網路詐騙案
https://news.sina.com.tw/article/20190808/32244964.html
多部門將加大網路灰黑產業打擊力度
https://news.sina.com.tw/article/20190807/32224894.html
廣州獵狐行動已拉172經濟犯罪疑犯 追繳1.2億人民幣
https://hk.on.cc/hk/bkn/cnt/cnnews/20190808/bkn-20190808014949594-0808_00952_001.html
北市今年攔阻詐騙7千萬元 假檢警占4成
https://udn.com/news/story/7315/3957727?from=udn-catelistnews_ch2
公安部指揮破獲特大販賣銀行卡和企業對公賬戶案 抓獲犯罪嫌疑人631名
https://news.sina.com.tw/article/20190726/32098062.html
Analysis: The Capital One Breach
https://www.bankinfosecurity.com/interviews/analysis-capital-one-breach-i-4406
Poshmark clothing marketplace says hacker stole customer details
https://www.zdnet.com/article/poshmark-clothing-marketplace-says-hacker-stole-customer-details/#ftag=RSSbaffb68
Breach alert in South Korea after 1m card details were put up for sale online
https://www.zdnet.com/article/breach-alert-in-south-korea-after-1m-card-details-were-put-up-for-sale-online/
South Korean Breach Exposes Over 1 Million Payment Cards
https://geminiadvisory.io/south-korean-breach-exposes-over-1-million-payment-cards/
3 out of 4 phishing scams get to your inbox untouched
https://www.zdnet.com/article/3-out-of-4-phishing-scams-get-to-your-inbox-untouched/#ftag=RSSbaffb68
GitHub sued for aiding hacking in Capital One breach
https://www.zdnet.com/article/github-sued-for-aiding-hacking-in-capital-one-breach/#ftag=RSSbaffb68
Breach alert in South Korea after 1m card details were put up for sale online
https://www.zdnet.com/article/breach-alert-in-south-korea-after-1m-card-details-were-put-up-for-sale-online/#ftag=RSSbaffb68
The Revival and Rise of Email Extortion Scams
https://www.symantec.com/blogs/threat-intelligence/email-extortion-scams
A Deeper Look at the Phishing Campaigns Targeting Bellingcat Researchers Investigating Russia
https://www.riskiq.com/blog/labs/bellingcat-phishing/
Capital One Data Breach: How Impacted Users Can Stay More Secure
https://securingtomorrow.mcafee.com/consumer/consumer-threat-notices/capital-one-breach/
Capital One Data Breach Spurs More Lawsuits
https://www.bankinfosecurity.com/capital-one-data-breach-spurs-more-lawsuits-a-12873
Capital One breach exposes over 100 million credit card applications
https://blog.malwarebytes.com/reports/2019/08/capital-one-breach-exposes-over-100-million-credit-card-applications/
Capital One's Breach May Be a Server Side Request Forgery
https://www.bankinfosecurity.com/capital-ones-breach-may-be-server-side-request-forgery-a-12871
Beware of Emails Asking You to "Confirm Your Unsubscribe" Request
https://www.bleepingcomputer.com/news/security/beware-of-emails-asking-you-to-confirm-your-unsubscribe-request/
CafePress Hacked, 23M Accounts Compromised. Is Yours One Of Them
https://www.forbes.com/sites/daveywinder/2019/08/05/cafepress-hacked-23m-accounts-compromised-is-yours-one-of-them/#793b15a9407e
FBI warns of new trend where cybercriminals recruit money mules via dating sites
https://www.zdnet.com/article/fbi-warns-of-new-trend-where-cybercriminals-recruit-money-mules-via-dating-sites/#ftag=RSSbaffb68
CYBER ACTORS USE ONLINE DATING SITES TO CONDUCT CONFIDENCE/ROMANCE FRAUD AND RECRUIT MONEY MULES
https://www.ic3.gov/media/2019/190805.aspx
Mobile-Only Bank Monzo Warns 480,000 Customers to Reset PINs
https://www.bankinfosecurity.com/mobile-only-bank-monzo-warns-480000-customers-to-reset-pins-a-12878
Fake influencer follower fraud to cost companies $1.3B in 2019
https://www.zdnet.com/article/fake-influencer-follower-fraud-to-cost-companies-1-3b-in-2019/#ftag=RSSbaffb68
FBI warns of romance scams using online daters as money mules
https://www.welivesecurity.com/2019/08/07/fbi-scams-money-mules-dating-sites/
CYBER ACTORS USE ONLINE DATING SITES TO CONDUCT CONFIDENCE/ROMANCE FRAUD AND RECRUIT MONEY MULES
https://www.ic3.gov/media/2019/190805.aspx
National Baseball Hall of Fame Hit By Payment Card Stealing Attack
https://www.bleepingcomputer.com/news/security/national-baseball-hall-of-fame-hit-by-payment-card-stealing-attack/
Spanish brothel chain leaves internal database exposed online
https://www.zdnet.com/article/spanish-brothel-chain-leaves-internal-database-exposed-online/#ftag=RSSbaffb68
Instagram boots ad partner Hyp3r for mass collection of user data
https://www.zdnet.com/article/instagram-boots-ad-partner-hyp3r-for-mass-collection-of-user-data/#ftag=RSSbaffb68
Democratic Campaign Group Left 6 Million Emails Exposed
https://www.bankinfosecurity.com/democratic-campaign-group-left-6-million-emails-exposed-a-12895
E.研究報告
Check Point 發布網路攻擊趨勢報告 從供應鏈到電子郵件、行動設備到雲端都難逃網路攻擊
https://gnn.gamer.com.tw/detail.php?sn=183747
關於安全體系中WAF的探討
https://www.freebuf.com/articles/es/209756.html
資料庫安全能力內容——安全准入控制矩陣模型構建與實踐
http://bit.ly/2YNGwoG
“方程式組織”攻擊中東SWIFT服務商事件复盤分析報告
https://www.freebuf.com/articles/paper/205080.html
銀鉤:針對國內網銀用戶的釣魚的攻擊活動
https://ti.qianxin.com/blog/articles/betabot-targets-chinese-people/
文字檔案上傳漏洞[任意.繞過.解析]
https://www.itread01.com/content/1564934524.html
分析Belkin SURF路由器中的多個漏洞
https://www.anquanke.com/post/id/183326
淺析CSRF漏洞的利用與防禦機制
https://xz.aliyun.com/t/5871
CVE-2017-11882漏洞分析
https://blog.csdn.net/qq_38474570/article/details/98513146
CVE-2018-1158 MikroTik RouterOS漏洞分析之發現CVE-2019-13955
https://www.anquanke.com/post/id/183451
SRC漏洞挖掘經驗+技巧篇
https://cloud.tencent.com/developer/article/1480899
Apache ActiveMQ序列化漏洞(CVE-2015-5254)復現
https://www.cnblogs.com/yuzly/p/11278073.html
SURF路由器安全漏洞研究
https://xz.aliyun.com/t/5884
利用CVE-2018-8120漏洞簡單提權
http://www.sohu.com/a/331793556_609556
CVE-2017-11826:Office Open XML wwlib模塊解析混淆漏洞分析
https://www.freebuf.com/vuls/209778.html
近年APT組織常用的攻擊漏洞
https://cloud.tencent.com/developer/article/1481886
知乎XSS存儲型漏洞利用及方式
https://www.52pojie.cn/thread-1004610-1-1.html
Arduino的鍵盤漏洞演示及解決辦法
http://www.elecfans.com/d/1039202.html
KDE4 / 5命令執行漏洞(CVE-2019-14744)簡析
https://paper.seebug.org/1006/
CVE-2019-13272'PTRACE_TRACEME'本地提權漏洞分析(二)
https://www.anquanke.com/post/id/183528
Buhtrap CVE-2019-1132 0day攻擊事件相關漏洞樣本分析
https://www.cnblogs.com/goabout2/p/11324168.html
Apache Solr DataImportHandler遠程代碼執行漏洞(CVE-2019-0193) 分析
https://paper.seebug.org/1009/
VxWorks面臨嚴重RCE攻擊風險
https://www.freebuf.com/vuls/210241.html
Reverse RDP Attack Also Enables Guest-to-Host Escape in Microsoft Hyper-V
https://thehackernews.com/2019/08/reverse-rdp-windows-hyper-v.html
TOR Forensics: Investingating Tor for Evidence
https://netseedblog.com/security/tor-forensics-investingating-tor-for-evidence/
Modlishka – An Open Source Phishing Tool With 2FA Authentication
https://latesthackingnews.com/2019/01/13/modlishka-open-source-tool-for-advanced-phishing-campaigns/
DealPly Adware Abuses Microsoft Smartscreen to Boost AV Evasion
https://www.bleepingcomputer.com/news/security/dealply-adware-abuses-microsoft-smartscreen-to-boost-av-evasion/
How to capture serial console dump from HPE iLO4 using VSP (with screenshots)
https://www.golinuxcloud.com/capture-serial-console-dump-hpe-ilo4-vsp/
All Cybercrime IP Feeds
http://iplists.firehol.org/
New Re2PCAP tool speeds up PCAP process for Snort rules
https://blog.talosintelligence.com/2019/07/new-re2pcap-tool-speeds-up-pcap-process.html
Development stops on PowerShell Empire framework after project reaches its goal
https://www.zdnet.com/article/development-stops-on-powershell-empire-framework-after-project-reaches-its-goal/#ftag=RSSbaffb68
Enterprise vendors increasingly dominate the open source software scene
https://www.zdnet.com/article/enterprise-vendors-now-dominate-the-open-source-software-scene/#ftag=RSSbaffb68
Double DragonAPT41, a dual espionage andcyber crime operationAPT41
https://content.fireeye.com/apt-41/rpt-apt41/
Phishing-Simulation
https://github.com/jenyraval/Phishing-Simulation
Unveiling 11 New Adversary Playbooks
https://unit42.paloaltonetworks.com/unveiling-11-new-adversary-playbooks/
F.商業
Enpass 知名老牌密碼管理器,安全度高、跨平台、密碼儲存信任雲端
https://mrmad.com.tw/enpass
打造適用各產業資安框架 為新型態數位應用增添防護 資料湖彙整大數據 及時偵測回應安全威脅
https://www.netadmin.com.tw/netadmin/zh-tw/market/9696AD96E9DE464E979C78F36390CD47
軟銀將向網絡安全公司Cybereason投資2億美元
https://on.wsj.com/2KjaWas
Google App Engine雲端安全掃描工具,現在也能保護GKE與Compute Engine網頁應用程式
https://www.ithome.com.tw/news/132297
一、二類電信聯手攻雲端 台灣大公有雲正式上線
https://m.ctee.com.tw/livenews/kj/a79860002019080811404701?area=
HENNGE降低資安風險 雲端與大數據助企業價值變現
https://www.digitimes.com.tw/iot/article.asp?cat=130&cat1=40&cat2=13&id=0000565013_14il9avt2yukw82gozzhy
別再用 VPN 存取你的 VM 了,改用 Cloud IAP 吧
http://bit.ly/2Kl87p7
博通擬耗資100億美元 買賽門鐵客資安部門
https://money.udn.com/money/story/5602/3978834
雲端大數據論壇從網路、AI分析及垂直應用三面向落實數據價值
https://www.digitimes.com.tw/iot/article.asp?cat=158&cat1=20&cat2=80&id=0000565267_5dk1xs7672o1gz6s9fidg
Google Titan: Why Use A Key To Fight Fraud When You Could Use A Selfie
https://www.forbes.com/sites/renehendrikse/2019/08/02/google-titan-why-use-a-key-to-fight-fraud-when-you-could-use-a-selfie/
Cloudflare acquired an old Sun Microsystems slogan and I’m feeling nostalgic
https://thenextweb.com/dd/2019/07/11/cloudflare-acquired-an-old-sun-microsystems-slogan-and-im-feeling-nostalgic/
Half of all Google Chrome extensions have fewer than 16 installs
https://www.zdnet.com/article/half-of-all-google-chrome-extensions-have-fewer-than-16-installs/#ftag=RSSbaffb68
RiskIQ Launches JavaScript Threats Solution Amidst Surge in Browser-based Attacks
https://www.riskiq.com/blog/external-threat-management/javascript-threats/
G.政府
農委會砸千萬請中國衛星拍台灣 真巧
https://tw.appledaily.com/new/realtime/20190806/1611756/
獨家踢爆 離譜農委會砸千萬 找中國衛星拍台灣
https://tw.appledaily.com/headline/daily/20190807/38411996/
中國衛星遙測台灣農糧涉國安 農委會:過度聯想
https://tw.appledaily.com/new/realtime/20190806/1611739/
農試所採購暴露「國安三漏洞」 買中國衛星圖資竟無法管
https://tw.appledaily.com/new/realtime/20190806/1611729/
挨批資安疑慮 農委會花近千萬買中國衛星圖資喊卡
https://news.ltn.com.tw/news/politics/breakingnews/2875326
農試所買中國衛星影像挨批!農委會:無國家資安外洩疑慮
https://newtalk.tw/news/view/2019-08-06/282390
買中國衛星拍台灣圖資爭議,農委會:事後發現已解約,記者查證:事前應可預知
https://www.newsmarket.com.tw/blog/123289/
砸千萬找中國衛星 藍委批:國安問題源自蔡施政無能
https://www.chinatimes.com/realtimenews/20190808001841-260407?chdtv
農委會監控農作 竟用"中國衛星"資料
https://news.cts.com.tw/cts/local/201908/201908061970329.html
衛星圖資採購遭批「國安送中」 農委會:無洩漏資安
https://www.chinatimes.com/realtimenews/20190808003165-260405?chdtv
比照銀行業 保險業試辦機制將上路
https://udn.com/news/story/7239/3971188
純網銀效應 金管會鬆綁數位存款帳戶規定
https://money.udn.com/money/story/5613/3943077
打擊網路犯罪需全球合作,臺執法單位加入No More Ransom計畫
https://www.ithome.com.tw/news/132273
108年第2季資通安全技術報告
http://bit.ly/2T9juDw
科技部斥資7千萬啟動專案,陳良基:量子電腦發展需要「破風者」
https://www.bnext.com.tw/article/54229/the-development-of-quantum-computers
北市府攜手思科 提升市府資訊專業職能
http://www.ctimes.com.tw/DispNews/tw/%E5%8C%97%E5%B8%82%E5%BA%9C/190807105317.shtml
國防部強化保密警覺 確保資安
https://www.ydn.com.tw/News/347397
群暉科技 Synology® 及 TWCERT/CC 與國際資安組織展開協作, 阻止全球 NAS 勒索事件擴散
http://bit.ly/2YWXkcU
美禁採購華為 政院:正做資安黑名單最後確認
https://taronews.tw/2019/08/08/427950/
【打造國家級資安情報力:八大CI打造資安資訊分享平臺】多數ISAC早在2017年完成,陸續加入CERT與二線SOC功能
https://www.ithome.com.tw/news/132220
【全面盤點國家級資安情報力:金管會打造F-ISAC】F-ISAC預計2021年開始針對會員收費
https://www.ithome.com.tw/news/132224
【全面盤點國家級資安情報力:交通部打造T-ISAC】納入高鐵臺鐵風險評鑑結果,提供有效資安情資
https://www.ithome.com.tw/news/132225
【全面盤點國家級資安情報力:經濟部打造E-ISAC】管理水資源與能源OT系統,維運難度高
https://www.ithome.com.tw/news/132227
【全面盤點國家級資安情報力:衛福部打造H-ISAC】善用病安文化,溝通醫院資安重要性
https://www.ithome.com.tw/news/132221
【全面盤點國家級資安情報力:科技部打造SP-ISAC】主動通知會員威脅情資,吸引大量業者加入
https://www.ithome.com.tw/news/132223
看見台灣下一波競爭力,政府與產業聯手落實智慧製造與資安防護
http://bit.ly/2GWeAFa
H.ICS/SCADA 工控系統
汽車業推聯網車 易遭駭客攻擊
https://money.udn.com/money/story/5599/3966998
「連網汽車」一旦遇駭 估奪3000條命
http://bit.ly/2Zxc4ML
ICS工業控制系統下的OT(操作科技) 您有所不知
https://www.informationsecurity.com.tw/article/article_detail.aspx?tv=11&aid=8747
新世代資安產品輩出 提供IT/OT安全防護
https://www.informationsecurity.com.tw/article/article_detail.aspx?tv=11&aid=8746
微軟警告駭客組織Fancy Bear正試圖利用物聯網設備漏洞
http://big5.pconline.com.cn/b5/news.pconline.com.cn/1282/12823280.html
IBM:針對工業目標的侵入事件半年來成長一倍
https://technews.tw/2019/08/07/ibm-says-there-are-double-cyber-event-target-industrial-company/
Cyberattacks against industrial targets have doubled over the last 6 months
https://www.zdnet.com/article/cyberattacks-against-industrial-targets-double-over-the-last-6-months/#ftag=RSSbaffb68
I.教育訓練
( 免費 Python 電子書 ) Python Data Science Handbook ( Python 資料科學學習手冊)
http://bit.ly/2YzMkhy
Notes for AWS Certified Solutions Architect Associate
https://github.com/SkullTech/aws-solutions-architect-associate-notes
J.物聯網/IOT/人工智慧/車聯網/光聯網/深度學習/機器學習/無人機/人臉辨識
俄羅斯政府黑客利用物聯網入侵網絡
https://www.solidot.org/story?sid=61621
機器學習案例實戰:信用卡欺詐檢測
https://www.itread01.com/content/1546246098.html
python 機器學習實戰:信用卡欺詐異常值檢測
https://www.itread01.com/content/1550216897.html
迴歸演算法的應用——信用卡欺詐檢測案例
https://www.itread01.com/content/1544119446.html
機器學習專案實戰----信用卡欺詐檢測(一)
https://www.itread01.com/content/1563465842.html
機器學習專案實戰----信用卡欺詐檢測(二)
https://www.itread01.com/content/1563501902.html
python實現信用卡欺詐檢測 logistic迴歸邏輯迴歸演算法
https://www.itread01.com/content/1546727590.html
機器學習案例實戰之信用卡欺詐檢測(從零開始,附資料,程式碼)
https://www.itread01.com/content/1549140318.html
Tokyo offers $1 billion research grant for human augmentation, cyborg tech
https://www.zdnet.com/article/tokyo-offers-1-billion-research-grant-for-human-augmentation-cyborg-tech/#ftag=RSSbaffb68
Manufacturers’ digital transformation will fail without both IT and OT
https://www.zdnet.com/article/manufacturers-digital-transformation-will-fail-without-both-it-and-ot/#ftag=RSSbaffb68
Smart TVs: Yet another way for attackers to break into your home
https://www.welivesecurity.com/2019/08/02/smart-tvs-way-attackers-home/
Microsoft: Russian state hackers are using IoT devices to breach enterprise networks
https://www.zdnet.com/article/microsoft-russian-state-hackers-are-using-iot-devices-to-breach-enterprise-networks/#ftag=RSSbaffb68
Brazilian healthcare CIOs plan IoT boost
https://www.zdnet.com/article/brazilian-healthcare-cios-plan-iot-boost/#ftag=RSSbaffb68
Corporate IoT – a path to intrusion
https://msrc-blog.microsoft.com/2019/08/05/corporate-iot-a-path-to-intrusion/
6.近期資安活動及研討會
HITCON HackDoor 駭入辦公室 7/2 ~ 9/28
https://www.accupass.com/event/1906050355291064968019
DEF CON 27 2019/8/8–8/11
https://www.defcon.org/
大數據軟體開發平台與AI(人工智慧)開發應用案例 8/9
https://edu.nchc.org.tw/course/one_course_introduction.asp?lms_auto_course_id=3805&from_course_list_url=homepage
Android Code Club(Taipei) 8/14
https://www.meetup.com/Taiwan-Android-Developer-Study-Group/events/bsctnqyzlbsb/
數位鑑識處理實務 8/14 ~ 8/15
http://bit.ly/2VW0Lv9
HackingThursday 固定聚會 8/15
https://www.meetup.com/hackingthursday/events/vkhnnqyzlbtb/
108 年度臺灣學術網路危機處理中心資安巡迴研討會 -資安趨勢暨網路安全概要 8/19 ~ 8/27
http://www.hssh.tp.edu.tw/ezfiles/1/1001/attach/42/pta_17520_7551835_06329.pdf
台灣駭客年會 HITCON Summer Training 2019 - 學生報名 2019-08-19 ~ 2019-08-22
https://www.accupass.com/event/1906050919271598677460
工業自動化資安攻擊與防護 8/21
https://www.moea.gov.tw/MNS/populace/news/NewsAction.aspx?menu_id=43&news_id=86058
ᅵYahoo奇摩電商專題講座ᅵ 我們與詐騙的距離_電商不可承受的資安之重 8/21
https://www.accupass.com/event/1906120307261445013215
資訊安全攻防實務- 企業紅藍隊對抗演練實務 08/21 星期三 09:00 ~ 08/23 星期五 16:30
https://www.moea.gov.tw/Mns/populace/news/NewsAction.aspx?menu_id=43&news_id=86049
WEB應用滲透測試 8/21 ~ 8/23
https://www.accupass.com/event/1904080221358963463590
Thinking Thursday 第三場 8/22
https://www.meetup.com/Thinking-Thursday/events/lrqddryzlbdc/
台灣駭客年會 HITCON Community 2019 2019-08-23(五) 09:00 ~ 2019-08-24(六) 17:00 (GMT+8)
https://www.accupass.com/event/1906040921594609934250
第四屆臺灣好厲駭~開放報名 至108年8月26日(一)下午5點截止
http://bit.ly/2ZlpP0Q
NISRA Enlightened 2019 2019/08/26 ~ 2019/08/29
https://nisra.kktix.cc/events/2019enlightened
數位政府高峰會 2019 8/28
https://egov.ithome.com.tw/
ModernWeb 19 8/28 ~ 8/29
https://modernweb.tw/
資安法規與制度研析課程-108年度「資安人才培訓及國際推展計畫-資安專業人才培育深化課程」 8/29 ~ 8/30
http://www.cisanet.org.tw/News/activity_more?id=MTQzMw==
108年資安職能訓練-行動裝置安全(8/29-8/30)
https://cee.ksu.edu.tw/recruitinfo/1443.html
2019 NGO 資安種子講師訓練 8/29
https://ocftw.kktix.cc/events/cscs2019tot
Cybersecurity Framework 擴大資安視野 Seminar CYBERSEC 101 研討會 9/6
https://signupcybersec101.ithome.com.tw/
交通大學亥克書院-B022:基礎網頁安全與滲透測試<新竹場次> 9/7
https://hackercollege.nctu.edu.tw/?p=1079
資訊安全管理系統-基礎課程(免費!)9/8
https://www.accupass.com/event/1907160853513957042270
【AWS資安】Security Engineering on AWS高級課程 9/9 ~ 9/11
https://www.accupass.com/event/1905150854571147685105
CDX2.0推廣活動 - 台北場次 9/10
https://nchc-cdx.kktix.cc/events/cdxactivity-0910
Kubernetes Summit 9/11
https://summit.ithome.com.tw/kubernetes/
Cybersecurity Framework 擴大資安視野 Seminar CYBERSEC 101 研討會 9/20
https://signupcybersec101.ithome.com.tw/
金融資安培訓課程 9/20
https://twap.deloitte.com.tw/DTLCRA/Works/CourseDetail.aspx?CourseID=T1906002
資策會開辦「認證系統安全從業人員 SSCP 輔導班」2019/9/21
https://ithome.com.tw/pr/131772
交通大學亥克書院-A011:入侵行為發覺與應變指南 9/21
https://hackercollege.nctu.edu.tw/?p=1082
資訊安全管理系統-進階課程(免費!)9/21
https://www.accupass.com/event/1907160908138705889800
TANET 2019 - 臺灣網際網路研討會 9/25
https://www.twcert.org.tw/subpages/securityInfo/securityactivity_details.aspx?id=310
交通大學亥克書院-B022:基礎網頁安全與滲透測試 9/28
https://hackercollege.nctu.edu.tw/?p=1084
HITB+ CYBER WEEK 2019/10/12 ~17
https://d2p.hitb.org/
交通大學亥克書院-A006:數位足跡追蹤與分析 10/19
https://hackercollege.nctu.edu.tw/?p=1088
Splunk .conf 19 10/21 ~ 10/24
https://conf.splunk.com/
AIoT智能物聯網開發人才就業養成班[免費諮詢] 10/22
https://ittraining.kktix.cc/events/aiot-training-2019
Industrial Control Systems (ICS) Cyber Security Conference USA October 21 – 24, 2019
https://www.icscybersecurityconference.com
Cybersecurity Framework 擴大資安視野 Seminar CYBERSEC 101 研討會 10/25
https://signupcybersec101.ithome.com.tw/
交通大學亥克書院-A015:進階網頁滲透測試 10/26
https://hackercollege.nctu.edu.tw/?p=1090
Cybersecurity Framework 擴大資安視野 Seminar CYBERSEC 101 研討會 11/8
https://signupcybersec101.ithome.com.tw/
交通大學亥克書院-P006:高階網頁滲透測試 11/16
https://hackercollege.nctu.edu.tw/?p=1092
Cybersecurity Framework 擴大資安視野 Seminar CYBERSEC 101 研討會 11/29
https://signupcybersec101.ithome.com.tw/
交通大學亥克書院-B015:惡意程式檢測 11/30
https://hackercollege.nctu.edu.tw/?p=1098
交通大學亥克書院-A018:企業網域控管-Active Directory攻擊與防禦 12/14
https://hackercollege.nctu.edu.tw/?p=1094
Japan Security Analyst Conference
https://jsac.jpcert.or.jp/
沒有留言:
張貼留言