跳到主要內容

資安事件新聞週報 2019/11/11 ~ 2019/11/15


資安事件新聞週報  2019/11/11  ~  2019/11/15

1.重大弱點漏洞/後門/Exploit/Zero Day
開機載入程式Das U-Boot暗藏程式攻擊漏洞
https://ithome.com.tw/news/134091

McAfee antivirus software impacted by code execution vulnerability
https://www.zdnet.com/article/mcafee-antivirus-software-impacted-by-code-execution-vulnerability/#ftag=RSSbaffb68

JVNVU#91935870 Trend Micro Anti-Threat Toolkit (ATTK) における任意のコード実行が可能な脆弱性
https://jvn.jp/vu/JVNVU91935870/

蘋果 macOS 系統內建郵件功能藏重大漏洞!快用一招防堵個資遭外洩
https://3c.ltn.com.tw/news/38577

Apple Mail on macOS leaves parts of encrypted emails in plaintext
https://www.zdnet.com/article/apple-mail-on-macos-leaves-parts-of-encrypted-emails-in-plaintext/#ftag=RSSbaffb68

思科Talos發現LEADTOOLS工具包中存在多個漏洞,可能導致遠程代碼執行
https://www.t00ls.net/articles-53771.html

思科產品遠端執行任意程式碼漏洞
https://tools.cisco.com/security/center/publicationListing.x

Pulse Secure VPN Arbitrary Command Execution
https://packetstormsecurity.com/files/155277/pulse_secure_cmd_exec.rb.txt


Xorg X11 Server Local Privilege Escalation
https://packetstormsecurity.com/files/155276/xorg_x11_server.rb.txt

電商平台Magento呼籲用戶修補遠端程式攻擊漏洞
https://ithome.com.tw/news/134157

Jenkins Build-Metrics 1.3 Cross Site Scripting
https://packetstormsecurity.com/files/155200/jenkinsbm13-xss.txt

Amazon Kindle, Embedded Devices Open to Code-Execution
https://threatpost.com/amazon-kindle-embedded-devices-code-execution/150003/

IBM Navigator for i跨站脚本漏洞
https://www.ibm.com/support/pages/node/1100085

IBM Spectrum Protect Plus 安全漏洞
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-4652

jQuery 跨站腳本漏洞影響大量網站
https://www.solidot.org/story?sid=62551

JavaScript 框架安全報告:jQuery 下載次數超過1.2 億次
https://www.cnbeta.com/articles/tech/909221.htm

Oracle Enterprise Manager Products Suite Enterprise Manager Ops Center漏洞
https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html

安全專家:BlueKeep攻擊程式「改良」後不再引發BSoD,危險性更高
https://ithome.com.tw/news/134155

BlueKeep exploit to get a fix for its BSOD problem
https://www.zdnet.com/article/bluekeep-exploit-to-get-a-fix-for-its-bsod-problem/#ftag=RSSbaffb68

First BlueKeep attacks prompt fresh warnings
https://www.welivesecurity.com/2019/11/11/first-bluekeep-attacks-fresh-warnings/

微軟修補74個安全漏洞,包含一個IE零時差漏洞
https://www.ithome.com.tw/news/134181

微軟發佈11月份安全性公告
https://support.microsoft.com/en-us/help/20191112/security-update-deployment-information-november-12-2019

Microsoft warns users to stay alert for more BlueKeep attacks
https://www.zdnet.com/article/microsoft-warns-users-to-stay-alert-for-more-bluekeep-attacks/#ftag=RSSbaffb68

Microsoft's November 2019 Patch Tuesday arrives with a patch for an IE zero-day
https://www.zdnet.com/article/microsofts-november-2019-patch-tuesday-arrives-with-a-patch-for-an-ie-zero-day/#ftag=RSSbaffb68

Microsoft begins the official rollout of Windows 10 1909
https://www.zdnet.com/article/microsoft-begins-the-official-rollout-of-windows-10-1909/#ftag=RSSbaffb68

Nvidia patches severe GeForce, GPU vulnerabilities
https://www.zdnet.com/article/nvidia-patches-severe-geforce-gpu-vulnerabilities/#ftag=RSSbaffb68

SolarWinds Kiwi Syslog Server 8.3.52 Unquoted Service Path
https://packetstormsecurity.com/files/155211/solarwindskss8352-unquotedpath.txt

Manual code review finds 35 vulnerabilities in 8 enclave SDKs
https://www.zdnet.com/article/manual-code-review-finds-35-vulnerabilities-in-8-enclave-sdks/#ftag=RSSbaffb68

Intel繼續爆出漏洞,連Cascade Lake也不能倖免
https://www.techbang.com/posts/74206-intel-continues-to-break-out-of-loopholes-even-cascade-lake

【再爆漏洞!!】新 Cascade Lake 也遭殃 Intel 處理器再發現存在 77 個安全漏洞
http://bit.ly/2CG0ipo

TPM-FAIL vulnerabilities impact TPM chips in desktops, laptops, servers
https://www.zdnet.com/article/tpm-fail-vulnerabilities-impact-tpm-chips-in-desktops-laptops-servers/#ftag=RSSbaffb68

VMware 多個產品發布多個安全更新
https://www.vmware.com/security/advisories/VMSA-2019-0021.html

VMware Security Advisories
https://www.vmware.com/security/advisories/VMSA-2019-0020.html

adobe 已發布安全更新以解決多個產品中的弱點
https://www.us-cert.gov/ncas/current-activity/2019/11/12/adobe-releases-security-updates

Symantec Endpoint Protection CVE-2019-12758 Local Code Execution Vulnerability
https://www.symantec.com/security-center/vulnerabilities/writeup/110787?om_rssid=sr-advisories

2.銀行/金融/保險/證券/支付系統/ 新聞及資安
逐筆交易新制即將上路 券商祭萬元好禮衝刺擬真平台
https://tw.finance.appledaily.com/realtime/20191111/1661569/

光大銀行開展網絡安全風險審計
http://finance.eastmoney.com/a/201911101286953416.html

兩名為“伊斯蘭國”輸送資金嫌疑人被俄抓獲
http://www.hkcna.hk/content/2019/1109/793283.shtml

中小銀行接連發生擠兌 中銀保監會:只是小部分
https://udn.com/news/story/7333/4156492

「鑽線上服務漏洞」每次只騙1.99元 信用卡盜刷新手法
http://bit.ly/2JoFoyh

蘋果信用卡涉性別歧視 男信用額度高女性20倍
http://bit.ly/2NFFGnu

扯!刷卡買藥遭拒 73歲嬤驚覺自己「已往生」
https://news.tvbs.com.tw/world/1232940

國泰世華銀行網路ATM全新改版公告
https://www.cathaybk.com.tw/cathaybk/personal/news/announcement/2019/1112AnnounceInfo/

2019年11月24日 第一銀行系統暫停服務公告
https://www.i-pass.com.tw/News/Detail/101589

ATM別再當機了 ! 財金公司將首度執行實機異地備援切換演練
https://ec.ltn.com.tw/article/breakingnews/2976603

去ATM領錢注意!財金公司16日首度實機異地備援切換演練
http://bit.ly/2KhSr5W

銀行篇 刷臉就能提款存錢 3大疑慮怕遭盜領
https://tw.appledaily.com/highlight/20191113/UGYSOH33G7BJ2UZFUTGGUVZ2QE/

星展銀行年底前裁撤全台ATM 待金管會同意
https://udn.com/news/story/7239/4162457

星展銀年底前裁撤全台ATM 金管會要求提配套措施
https://udn.com/news/story/7239/4165617

大陸銀行徵信 國人個資恐全都露
https://wanqing.org/thinktank/archives/863

代號「Cache」!Google 預計 2020 年推出網路銀行服務
https://www.eprice.com.tw/tech/talk/1141/5431217/1/

傳 Google 與多家銀行談判,將推出網路信用帳戶服務
http://technews.tw/2019/11/14/google-in-talks-to-move-into-banking/

Cyber Criminals Stealing Customer Data By Tricking Bank Employees
https://www.ehackingnews.com/2019/11/cyber-criminals-stealing-customer-data.html

Стала известна новая схема кражи данных клиентов российских банков
https://russian.rt.com/russia/news/684202-krazha-dannye-klienty-banki

Двойка за киберграмотность: мошенники освоили новый способ воровства данных из банков
https://iz.ru/939888/natalia-ilina/dvoika-za-kibergramotnost-moshenniki-osvoili-novyi-sposob-vorovstva-dannykh-iz-bankov

Banks must put in place additional controls to prevent ATM thefts, says RBI’s IT arm
http://bit.ly/32A3gGB

Apple Card issuer investigated over credit algorithm gender bias claims
https://www.zdnet.com/article/apple-card-issuer-investigated-over-gender-bias-in-credit-algorithm/#ftag=RSSbaffb68

Cyberattacks blamed for Sunday's internet disruption across Turkey
https://www.dailysabah.com/turkey/2019/10/28/cyberattacks-blamed-for-sundays-internet-disruption-across-turkey

Nautilus ATM Flaws Could Allow Hackers Access to Cash, Data
https://www.bloomberg.com/news/articles/2019-11-11/security-researchers-discover-flaws-in-u-s-cash-machines

Russian National Charged in Payment Card Scheme
https://www.bankinfosecurity.com/russian-national-charged-in-payment-card-scheme-a-13401

Singapore’s DBS to shut down all of its ATMs in Taiwan
https://www.taiwannews.com.tw/en/news/3816314

New Group of Hackers Targeting Businesses with Financially Motivated Cyber Attacks
https://thehackernews.com/2019/11/financial-cyberattacks.html

TA2101 plays government imposter to distribute malware to German, Italian, and US organizations
https://www.proofpoint.com/us/threat-insight/post/ta2101-plays-government-imposter-distribute-malware-german-italian-and-us

3.電子支付/電子票證/行動支付/ pay/新聞及資安
財金續扮零售支付基礎平台
http://bit.ly/2Xa8qrH

Facebook推出一款名為Facebook Pay新支付系統
http://www.inpai.com.cn/news/new/20191113/34417.html

FB 宣布推出 Facebook Pay 兩大電子支付應用方案解構
http://bit.ly/2Qesd88

專家傳真-人民幣支付系統的能與不能
http://bit.ly/2KpEy5v

新加坡人使用最多的電子支付APP
http://www.kchuhai.com/report/view-3236.html

Update: PCI SSC's Enhanced Contactless Payment Standard
https://www.bankinfosecurity.com/interviews/update-pci-sscs-enhanced-contactless-payment-standard-i-4503

Coming Soon: New Contactless Standard
https://blog.pcisecuritystandards.org/coming-soon-new-contactless-standard

Payment security backslides for second straight year, says Verizon
https://www.zdnet.com/article/payment-security-backslides-for-second-straight-year-says-verizon/#ftag=RSSbaffb68

Visa enhances security capabilities to disrupt payment fraud
https://gulfnews.com/business/banking/visa-enhances-security-capabilities-to-disrupt-payment-fraud-1.1572859506436

4.虛擬貨幣/區塊鍊相關新聞及資安
重新思考台灣 STO募資的分級管理機制
http://bit.ly/2NXA4UM

駭客問題嚴重,愛沙尼亞該如何實現「區塊鏈投票」
http://news.knowing.asia/news/5fa2f1be-3f92-45de-a97e-33ae0ad68931

新加坡建立區塊鏈跨境支付系統合作夥伴包括小摩
https://finance.sina.com.cn/stock/relnews/us/2019-11-11/doc-iihnzahi0190718.shtml

2100萬枚比特幣之外的區塊鏈契機
https://udn.com/news/story/6903/4160112

新加坡央行區塊鏈項目劍指多幣種兌換 開啟商業應用測試
https://news.sina.com.tw/article/20191113/33302638.html

市場憧憬中國虛擬貨幣數月內發行 瑞士:各國需抉擇是拒是迎
http://bit.ly/32FT9jC

央行數字貨幣爲目前電子支付系統提供更多的冗餘性
https://www.chainnews.com/zh-hant/articles/609129405651.htm

觀念平台-重新思考台灣 STO募資的分級管理機制
http://bit.ly/2NXA4UM

受加密貨幣衝擊,美國正在探索區塊鏈正面應用
http://news.knowing.asia/news/ea604a35-de91-4783-9f60-b4ad55ab25e5

金磚五國創建全新加密貨幣,「BRICS」呼之欲出
http://news.knowing.asia/news/109c2639-0ec4-4e56-8621-10f6dc5a555a

數字貨幣開啟“賽馬”模式多國央行紛紛備戰
https://finance.sina.com.cn/world/gjcj/2019-11-14/doc-iihnzhfy9276200.shtml

瑞士推廣加密貨幣支付,65000個商家將接受比特幣
http://news.knowing.asia/news/4920573c-de05-4bb8-934d-4541789759ea

Aussie ‘E-Crime Squad’ arrests crypto exchange owner, seizing his Bitcoin ATM
https://thenextweb.com/hardfork/2019/11/12/aussie-e-crime-squad-arrests-crypto-exchange-owner-seizing-his-bitcoin-atm/

5.資安事件新聞

A.病毒木馬 / 殭屍網路 / 勒索軟體 / Adware /APT /後門程式
2019國家級資安事件:勒索軟體侵襲臺灣醫院
https://ithome.com.tw/article/134112

Windows 勒索軟體又來!用戶登入密碼也一起改掉
https://3c.ltn.com.tw/news/38566

思科重定向漏洞被利用,可通過垃圾郵件跳轉到惡意軟件下載站點
https://www.leiphone.com/news/201911/9POj43yvHOy92GGZ.html

衝浪大廠Boardriders遭勒索軟體攻擊,傳駭客提出9千萬美元贖金
https://www.ithome.com.tw/news/134137

遭勒索軟體攻擊 墨石油公司行政作業停擺
https://udn.com/news/story/6811/4159799

駭客攻擊墨西哥石油公司 勒索1.5億元
https://money.udn.com/money/story/5599/4162521

墨西哥國營石油公司Pemex遭勒索軟體攻擊,傳駭客提出490萬美元的贖金要求
https://ithome.com.tw/news/134177

間諜軟體超可怕 監聽、通訊加定位全掌握
http://bit.ly/34ViM1l

報告:BuleHero挖礦蠕蟲升級已有3萬台電腦中招
http://finance.eastmoney.com/a/201911141291685595.html

網站代管業者SmarterASP.NET遭勒索軟體入侵
https://ithome.com.tw/news/134148

McAfee防毒軟體爆權限升級漏洞,可讓駭客執行攻擊程式
https://www.ithome.com.tw/news/134172

如何保護系統免受巴爾的摩勒索攻擊
https://www.virusremovalguidelines.com/ransomware/how-to-protect-system-against-baltimore-ransomware-attack

Legitimate TDS Platform Abused to Push Malware via Exploit Kits
https://www.bleepingcomputer.com/news/security/legitimate-tds-platform-abused-to-push-malware-via-exploit-kits/

Massive malicious campaign by FakeSecurity JS-sniffer
https://www.group-ib.com/blog/fakesecurity

Major ASP.NET hosting provider infected by ransomware
https://www.zdnet.com/article/major-asp-net-hosting-provider-infected-by-ransomware/#ftag=RSSbaffb68

ConnectWise warns of ongoing ransomware attacks targeting its customers
https://www.zdnet.com/article/connectwise-warns-of-ongoing-ransomware-attacks-targeting-its-customers/#ftag=RSSbaffb68

Platinum APT’s new Titanium backdoor mimics popular PC software to stay hidden
https://www.zdnet.com/article/platinum-apts-new-titanium-backdoor-mimics-popular-pc-software-to-stay-hidden/#ftag=RSSbaffb68

Titanium: the Platinum group strikes again
https://securelist.com/titanium-the-platinum-group-strikes-again/94961/

Indonesia Jadi Negara Paling Sering Kena Malware di Asia Tenggara
https://kumparan.com/kumparantech/indonesia-jadi-negara-paling-sering-kena-malware-di-asia-tenggara-1sDiHtTJten

Indonesia Tercatat Deteksi Mobile Malware Paling Banyak di Asia Tenggara
https://www.suara.com/tekno/2019/11/09/175500/indonesia-tercatat-deteksi-mobile-malware-paling-banyak-di-asia-tenggara

TrojanerimNetzderBerlinerHumboldt-Uni
https://www.deutschlandfunknova.de/nachrichten/malware-trojaner-befaellt-netz-der-berliner-humboldt-uni

US Govt Asks Users to Be Wary of Holiday Scams and Malware
https://www.bleepingcomputer.com/news/security/us-govt-asks-users-to-be-wary-of-holiday-scams-and-malware/

Google enlists outside the house aid to thoroughly clean up Android’s malware mess
http://mashviral.com/google-enlists-outside-the-house-aid-to-thoroughly-clean-up-androids-malware-mess/

Kaspersky Klaim Temukan Malware Mobile Banking di Indonesia
https://www.tribunnews.com/techno/2019/11/09/kaspersky-klaim-temukan-malware-mobile-banking-di-indonesia

Emotet: Fake E-Mails des Bundeszentralamts im Umlauf
https://tarnkappe.info/emotet-fake-e-mails-des-bundeszentralamts-im-umlauf/

Researchers Uncover Mass Malware Attack
https://www.cisomag.com/researchers-uncover-mass-malware-attack/

How adversaries use politics for compromise
https://blog.talosintelligence.com/2019/11/political-malware.html

Kaspersky: PH ranks 3rd in SEA with most Android mobile malware attempts
http://www.manilastandard.net/tech/tech-news/309757/kaspersky-ph-ranks-3rd-in-sea-with-most-android-mobile-malware-attempts.html

Indonesia Paling Banyak Diserang Malware di Asia Tenggara
https://cnnindonesia.com/teknologi/20191108211145-185-446811/indonesia-paling-banyak-diserang-malware-di-asia-tenggara

Der Malware Melting Pot
https://www.cio.de/a/der-malware-melting-pot,3608528

New Buran ransomware-as-a-service tempts criminals with discount licenses
https://www.zdnet.com/article/vegalocker-evolves-into-buran-ransomware-as-a-service/#ftag=RSSbaffb68

2019-11-11 - DATA DUMP: EMOTET EPOCH 1 INFECTION WITH TRICKBOT GTAG MOR40
https://www.malware-traffic-analysis.net/2019/11/11/index.html

Play store apps to be scanned for malware
https://www.bbc.com/news/technology-50375579

TrickBot Malware Uses Fake Sexual Harassment Complaints as Bait
https://www.bleepingcomputer.com/news/security/trickbot-malware-uses-fake-sexual-harassment-complaints-as-bait/

Awesome Spear Phish Techniques from those Tricky Tricksters from TrickBot
https://www.malcrawler.com/awesome-spear-phish-techniques-from-those-tricky-tricksters-from-trickbot/

Cyber Command flags North Korean-linked hackers behind ongoing financial heists
https://www.cyberscoop.com/north-korea-malware-cyber-command-virus-total-apt38/

District Discusses Internet Safety, Protection from Malware
https://www.tapinto.net/towns/bridgewater-slash-raritan/sections/education/articles/district-discusses-internet-safety-protection-from-malware

Leashing Cerberus
https://www.anomali.com/blog/leashing-cerberus

Sodinokibi Ransomware Targeting Asia via the RIG Exploit Kit
https://www.bleepingcomputer.com/news/security/sodinokibi-ransomware-targeting-asia-via-the-rig-exploit-kit/

Donald Trump ransomware spreads dangerous malware
https://www.techradar.com/news/trump-and-clinton-themed-ransomware-lands

Mexico’s Pemex oil provider says attempted hack ‘neutralized’
https://www.zdnet.com/article/mexicos-pemex-oil-provider-says-attempted-ransomware-hack-neutralized/#ftag=RSSbaffb68

New Ransomware-as-a-Service Offered at Deep Discount: Report
https://www.bankinfosecurity.com/new-ransomware-as-a-service-offered-at-deep-discount-report-a-13399

TrickBot Malware Uses Fake Sexual Harassment Complaints as Bait
https://www.oodaloop.com/cyber/2019/11/12/trickbot-malware-uses-fake-sexual-harassment-complaints-as-bait/

PH has high Malware Attacks among SEA Countries
https://www.worldngayon.com/2019/11/ph-has-high-android-malware-attack/

October 2019’s Most Wanted Malware: the Decline of Cryptominers Continues, as Emotet Botnet Expands Rapidly
http://bit.ly/33GrWP2

New Emotet Report Details Threats From One of the World’s Most Successful Malware Operations
https://www.fortinet.com/blog/threat-research/emotet-playbook-banking-trojan.html

Malware attacks on IoT, Android devices in the country increase
https://www.bworldonline.com/malware-attacks-on-iot-android-devices-in-the-country-increase/

Malware assaults on hospitals are climbing quickly, and the challenge is about to get a whole lot even worse
https://mashviral.com/malware-assaults-on-hospitals-are-climbing-quickly-and-the-challenge-is-about-to-get-a-whole-lot-even-worse/

Proofpoint Q3 2019 Threat Report Shows Increase in RAT and Banking Trojan Activity
https://www.hipaajournal.com/proofpoint-q3-2019-threat-report-shows-increase-in-rat-and-banking-trojan-activity/

2019-11-13 - DATA DUMP: EMOTET EPOCH 1 INFECTION WITH TRICKBOT GTAG MOR43
https://www.malware-traffic-analysis.net/2019/11/13/index2.html

2019-11-11 - DATA DUMP: ICEDID INFECTION WITH TRICKBOT IN AD ENVIRONMENT
https://www.malware-traffic-analysis.net/2019/11/13/index.html

2019-11-12 - TRAFFIC ANALYSIS EXERCISE - OKAY-BOOMER
https://www.malware-traffic-analysis.net/2019/11/12/index.html

2019-11-08 - DATA DUMP: EMOTET EPOCH 2 INFECTION WITH TRICKBOT GTAG MOR40
https://www.malware-traffic-analysis.net/2019/11/08/index2.html

Zeus Virus AKA Zbot – Malware of the Month, November
https://securityboulevard.com/2019/11/zeus-virus-aka-zbot-malware-of-the-month-november-2019/

Strange AnteFrigus Ransomware Only Targets Specific Drives
https://www.bleepingcomputer.com/news/security/strange-antefrigus-ransomware-only-targets-specific-drives/

Ransomware: Mexican Oil Firm Reportedly Refuses to Pay Up
https://www.bankinfosecurity.com/ransomware-mexican-oil-firm-reportedly-refuses-to-pay-up-a-13404

Double Vision: Stealthy Malware Dropper Delivers Twin RATs
http://mashviral.com/double-vision-stealthy-malware-dropper-delivers-twin-rats/

B.行動安全 / iPhone / Android /穿戴裝置 /App
接到一通韓國電話 手機遭"駭"損逾千元
https://www.ttv.com.tw/news/view/10811090013000N/579

安卓粉注意,15 款「黑心」防毒App 遭踢爆!違規蒐集個資大賺廣告財
https://3c.ltn.com.tw/news/38574

快檢查手機!這些假防毒App遭踢爆真斂財
https://www.setn.com/News.aspx?NewsID=632634

惡意 App 退散!Google 與資安公司共組 「App Defense Alliance」
http://bit.ly/2Q9rxkf

就像WhatsApp一樣Telegram和Signal上的聊天也容易受到黑客的攻擊
http://www.ahjcg.cn/Article/2019/1111/22938.html

LINE QR連結漏洞盜帳號 屏東數十組群被翻
https://news.tw789.net/news-2565.html

LINE台灣開發者大會12/4登場 聚焦AI與資安
https://www.cna.com.tw/news/ait/201911120050.aspx

發現漏洞!大學生在外送平台「狂吃霸王餐」賺外快
http://bit.ly/2qJVZqu

FB粉絲團無預警「遭封鎖」 175位網紅受害
https://news.tvbs.com.tw/life/1233264

女用家修理 iPhone 遭 Apple Store 員工竊取私密照
http://bit.ly/3739HFt

Like Patrol 被指違規收集 IG 用戶數據遭下架
http://bit.ly/2Ql4piG

手機噴電又當機?嚴防這些惡意App
http://bit.ly/2NLeUdq

iOS版Facebook暗中啟動相機 惹私隱監控爭議
http://bit.ly/2qS0Yp0

再爆隱私疑慮?滑一滑臉書iPhone的主鏡頭偷會打開了
https://n.yam.com/Article/20191114213608

中共黨媒刊文警示5G安全問題
http://economics.dwnews.com/news/2019-11-13/60156825.html

換 5G 更好嗎?研究發現 11 個 5G 新漏洞,你的個資曝露在危險中
https://www.managertoday.com.tw/articles/view/58709

5G 比 4G 更安全?研究人員發現了 11 個 5G 新漏洞
https://technews.tw/2019/11/15/new-5g-flaws-can-track-phone-locations-and-spoof-emergency-alerts/

價格低廉 中國手機在台市佔高
https://tw.appledaily.com/highlight/20191114/VS56PNRNMECU2LN3FLFLE6P2FE/

逾 300 萬次下載的 49 款遊戲及照相app,點選 Chrome圖示,蓋版廣告就展開
https://blog.trendmicro.com.tw/?p=62547

華為手機遭NCC喊禁賣 從禁用禁賣到5G全面防堵
https://times.hinet.net/news/22651644

研究人員又曝5G安全新漏洞可實時追踪用戶位置
https://tech.ifeng.com/c/7rajhiqPigk

Google Pixel 3 系列被揭自動關機漏洞 電池有電也操作不能
http://bit.ly/2Kk5Dal

Telegram的反擊來了!已申訴要求SEC撤銷禁令
http://news.knowing.asia/news/f706877b-8de3-4266-ae23-8a1e685d0990

「LINE TAIWAN TECHPULSE 2019」12月4日登場,報名即日開跑
https://www.techbang.com/posts/74182-line-taiwan-techpulse-2019-conference-debuts-on-december-4th-registration-day-run

GitHub首個行動程式問世,發表可保管程式碼上千年的Arctic Code Vault
https://ithome.com.tw/news/134208

49 Disguised Adware Apps With Optimized Evasion Features Found on Google Play
https://blog.trendmicro.com/trendlabs-security-intelligence/49-disguised-adware-apps-with-optimized-evasion-features-found-on-google-play/

Never search for these 12 things on Google
http://www.asianage.com/technology/in-other-news/111119/never-search-for-these-12-things-on-google.html

Despite Instagram Changes, Minors Are Still at Risk
https://www.bankinfosecurity.com/blogs/despite-instagram-changes-minors-are-still-at-risk-p-2816

Google’s New ‘App Defense Alliance’ to Tackle Malware Problem
https://digit.fyi/googles-new-app-defense-alliance-to-tackle-malware-problem/

Qualcomm Chip Flaws Let Hackers Steal Private Data From Android Devices
https://thehackernews.com/2019/11/qualcomm-android-hacking.html

Samsung, LG, Motorola Phones Hacked: New Qualcomm Security ‘Hole’ Puts Users At Risk
https://www.forbes.com/sites/zakdoffman/2019/11/14/samsung-lg-motorola-phones-hacked-using-new-qualcomm-hole-heres-what-you-do-now/#741a529b73c1

DOJ: Pair Used SIM Swapping Scam to Steal Cryptocurency
https://www.bankinfosecurity.com/doj-pair-used-sim-swapping-scam-to-steal-cryptocurency-a-13405

Using public USB charging stations could drain your bank account, officials warn
https://abc7.com/warning-issued-against-using-public-usb-charging-stations/5695003/

C.事件 / 駭客 / DDOS / APT / 雲端/暗網/徵才 / 國際資安事件
糗了 Apple Mail加密郵件「從未加密過」、官方正修復中
https://www.ettoday.net/news/20191110/1576430.htm

2019年10月十大資安新聞
https://ithome.com.tw/news/134211

電競產業所面臨的威脅:作弊、篡改與網路攻擊
https://blog.trendmicro.com.tw/?p=62470

電競產業資安漏洞大?年產值高達上億 成駭客眼中待宰肥羊
https://cnews.com.tw/137191114a02/

電競產業所面臨的威脅:作弊、篡改與網路攻擊
https://blog.trendmicro.com.tw/?p=62470

暗網黑色交易生態曝光:買賣個人信息 利用比特幣交易
https://news.sina.com.tw/article/20191114/33315654.html

台灣首位駭客因身份敏感,多年不敢踏進中國
https://tw.nextmgz.com/realtimenews/news/31198826

HITCON 企業資安攻防賽登場 5G路由器、工控安全入題
https://ec.ltn.com.tw/article/breakingnews/2976396

HITCON企業資安攻防戰 聚焦工控安全
https://www.taiwannews.com.tw/ch/news/3816278

高科技製造業組隊參加HITCON Defense企業資安攻防賽奪冠
https://ithome.com.tw/news/134213

HITCON DEFENSE 攻防戰,籲喚起企業重視營運科技的防護
https://technews.tw/2019/11/14/hitcon-defense-2019/

Akamai:Google Analytics遭網釣駭客用來改善攻擊成效,但同樣也可用來追蹤網釣活動
https://ithome.com.tw/news/134074

建中生扮駭客入侵學校網站 連累媽媽同遭法辦
https://tw.appledaily.com/new/realtime/20191113/1662882/

年輕駭客超進化 學校資安87分
https://www.chinatimes.com/newspapers/20191114001621-260106?chdtv

國外發現「雷射光」能駭進語音助理 iPhone、Google Home恐淪陷
https://cnews.com.tw/140191108a04/

你今天網購了嗎?4招對抗駭客入侵
http://bit.ly/36W8nVc

俄羅斯譴責美國全球搜捕俄國黑客
https://inews.hket.com/article/2497148

核電廠遭網攻 印度加速設置網安單一機構
https://www.cna.com.tw/news/aopl/201911130176.aspx

亡羊補牢 印度將設網路防衛單一機構
http://bit.ly/2CW14ix

川普總統的關鍵部門遭中共駭客攻擊
https://news.guo.media/zh/12493/

美全國製造業協會遭網攻 傳中國駭客所為
https://udn.com/news/story/6813/4163540

偷這機密?美製造商協會驚傳遭陸駭客入侵
https://www.chinatimes.com/realtimenews/20191114002795-260410?chdtv

英國工黨網站驚傳遭到兩起DDoS攻擊,疑為俄羅斯再度介入大選
https://www.ithome.com.tw/news/134200

英大選倒數一個月 駭客攻擊兩大黨網站
http://bit.ly/2KkNFoa

瞄準貿易談判機密? 美國全國製造商協會 傳遭中國駭客入侵
https://ec.ltn.com.tw/article/breakingnews/2976915

英關鍵大選倒數一個月 駭客攻擊兩大黨網站
https://www.cna.com.tw/news/aopl/201911130021.aspx

英大選白熱化 在野黨指疑遭來自俄國或巴西網攻
https://news.tvbs.com.tw/world/1233478

中山大學電郵遭駭 學者籲政府防機敏技術外流
https://udn.com/news/story/6928/4152732

中山大學學者電郵遭監看 校方:獲報當天就通報教育部
https://m.ltn.com.tw/news/life/breakingnews/2971735

中山大學教授信箱遭駭IP來自中美港等國 初估師生80人受影響
https://www.ttv.com.tw/news/view/10811080015900N/579

中山大學爆資安漏洞!85位教職員電郵遭入侵3年
https://www.ftvnews.com.tw/news/detail/2019B08U01M1

中山大電郵疑遭中共監控!學者指十年前就遭警告
http://www.ntdtv.com.tw/b5/20191108/video/257527.html

中山大學驚傳師生電子郵件被監控長達3年,起因是駭客濫用Open WebMail漏洞,其他學校也應留意相關系統安全
https://ithome.com.tw/news/134105

中山電郵遭駭 立委:不重基礎資安恐釀國安風險
http://www.epochtimes.com/b5/19/11/8/n11642189.htm

中山大學電郵遭監看 中研院:沒類似狀況
http://www.epochtimes.com/b5/19/11/14/n11655597.htm

中國監看台灣學者電子郵件? 陸委會已請教育部了解情況
http://bit.ly/2qIl1q8

中國情蒐加電郵監控 軍方教官自曝駭人經驗
https://news.ltn.com.tw/news/politics/breakingnews/2974880

中國網軍對台情報戰為何露跡
https://tw.appledaily.com/highlight/20191112/2H4E5IWBNHXE63JNITMM6NVGIA/

中共駭客入侵 擷取電訊商敏感通訊紀錄pdf下載
http://bit.ly/33IeZ7l

中國大陸今年已逮捕網路罪犯6.5萬人 關閉逾60萬個帳號
https://money.udn.com/money/story/5603/4164787

中國首公開火星探測任務 19國駐華大使獲邀參加
http://bit.ly/2KnukCy

防堵中共竊密!台學者籲政府補強大學資安
http://bit.ly/34EluIu

台大驚爆被駭「期中成績全變87分」 校方急澄清:學生不小心改到
https://www.ettoday.net/news/20191108/1575129.htm

台大課程系統傳被駭成績一律 87 分,教務長:學生不慎造成
http://technews.tw/2019/11/08/ntu-ceiba-system-results-have-been-tampered/

台大平台成績全被改87分 原是資工系學生抓漏洞
https://news.ltn.com.tw/news/life/breakingnews/2971370

台大資安好弱 學生輕易駭入
https://m.ltn.com.tw/news/life/paper/1330636

自己人幹的!台大期中考成績 一律遭改87分
https://www.ttv.com.tw/news/view/10811080027900L/572

滲透測試惹的禍!臺灣大學CEIBA教學平臺學生成績全部變成87分,目前已恢復最近5學年資料
https://ithome.com.tw/news/134082

蘋論:資訊戰早就開打了
https://tw.appledaily.com/highlight/20191109/BWSRCX4EPN7IBXZRDDGUXZFIWU/

華為首席安全官稱:「中共有能力所有產品裝後門」
http://bit.ly/2OepOaZ

哈薩克公車人臉辨識付車資 用海康威視鏡頭惹議
https://www.rti.org.tw/news/view/id/2040782

捷克名校查理大學 關閉校內「中國中心」
https://m.ltn.com.tw/news/world/breakingnews/2977350

歐洲併購建廠熱 中信國際電訊CPC海陸纜三路連歐
https://www.digitimes.com.tw/iot/article.asp?cat=130&cat1=40&cat2=13&id=0000572405_A7Q55W5MLHEJ6265ZXOX1

澳大利亞立新規防範外國干預大學 針對中國
http://bit.ly/354h0uO

丹麥結合全國所有8所大學及相關研究機構成立全國性之資安中心
http://bit.ly/2Q8mv7F

美公司涉訛稱中國保安設備為美國製遭起訴
https://news.now.com/home/international/player?newsId=369121

美軍買了十多年的「美國製造」攝像頭,屏幕上寫著中國字
http://bit.ly/33BFmfk

美智庫打臉「中國檯面下網路戰」:假訊息難影響台灣大選
https://www.ettoday.net/news/20191108/1575067.htm

美國智庫警告:中國假資訊全面入侵台灣,意在拉下蔡英文、扶植韓國瑜
https://musou.watchout.tw/read/2ELVb555Huo04bnigEPM

中國廣東公安發布十大典型網路違法犯罪案例
http://news.21cn.com/social/shixiang/a/2019/1111/20/33726273.shtml

「中國7大致命罪惡」美方是受害者 白宮顧問:3階段協議解決
https://www.ettoday.net/news/20191108/1575070.htm

中美貿易談判現曙光;中國製造監控設備流入美政府
https://cn.nytimes.com/morning-brief/20191108/trade-talk-aventura-china-cameras/zh-hant/

航母潛艦全中標 美軍基地竟裝置陸製監控設備
https://www.chinatimes.com/realtimenews/20191108004184-260417?chdtv

親身經歷中國網軍肆虐
https://talk.ltn.com.tw/article/paper/1331148

對接納中國5G網路國家 美國官員提出批評
https://www.cna.com.tw/news/aopl/201911080051.aspx

分享工作內容安全權限 LinkedIn成中國招攬間諜平台
https://hk.news.appledaily.com/international/realtime/article/20191109/60247123

PSIRT Services Framework
https://www.jpcert.or.jp/research/psirtSF.html

APT trends report Q3 2019
https://securelist.com/apt-trends-report-q3-2019/94530/

Hackers Breach ZoneAlarm's Forum Site — Outdated vBulletin to Blame
https://thehackernews.com/2019/11/zonealarm-forum-data-breach.html

Mobile & computers sold in Russia will have to be pre-installed with Russian applications
https://meterpreter.org/mobile-computers-sold-in-russia-will-have-to-be-pre-installed-with-russian-applications/

Cyber-attack against KNPPP and ISRO: The threat comes home
https://www.orfonline.org/expert-speak/cyber-attack-against-knppp-and-isro-the-threat-comes-home-57700/

Predictions 2020: This time, cyberattacks get personal
https://www.zdnet.com/article/predictions-2020-this-time-cyberattacks-get-personal/#ftag=RSSbaffb68

Labour Party Hit by Massive Online Attack Attempt
https://www.bankinfosecurity.co.uk/labour-party-hit-by-massive-online-attack-attempt-a-13398

How much does it cost to launch a cyberattack
https://www.computerworld.com.au/article/668558/how-much-does-it-cost-launch-cyberattack/

An innovation war: Cybersecurity vs. cybercrime
https://www.hpe.com/us/en/insights/reports/an-innovation-war-cybersecurity-vs-cybercrime-1910.html

Cyber Command flags North Korean-linked hackers behind ongoing financial heists
https://www.cyberscoop.com/north-korea-malware-cyber-command-virus-total-apt38/

TA505 Cybercrime targets system integrator companies
https://securityaffairs.co/wordpress/93755/cyber-crime/ta505-system-integrator-firms.html

Company discovered it was hacked after a server ran out of free space
https://www.zdnet.com/article/company-discovered-it-was-hacked-after-a-server-ran-out-of-free-space/#ftag=RSSbaffb68

GitHub Mobile launches for iOS, GitHub Actions moves to GA
https://www.zdnet.com/article/github-mobile-launches-for-ios-github-actions-moves-to-ga/#ftag=RSSbaffb68

Network of 265 online sites are mimicking defunct newspapers to spread anti-Pakistan propaganda
https://www.zdnet.com/article/network-of-265-online-sites-are-mimicking-defunct-newspapers-to-spread-anti-pakistan-propaganda/#ftag=RSSbaffb68

SMBs Are Paying the Price of Cybercrime’s Evolution
https://www.channelfutures.com/from-the-industry/smbs-are-paying-the-price-of-cybercrimes-evolution

Indian education institutions hit hard by hackers: Report
https://www.outlookindia.com/newsscroll/indian-education-institutions-hit-hard-by-hackers-report/1661474

2020 Vision: Check Point’s cyber-security predictions for the coming year
https://blog.checkpoint.com/2019/10/24/2020-vision-check-points-cyber-security-predictions-for-the-coming-year/

Company Detected Years-Long Breach Only After Hacker Maxed Out Servers' Storage
https://thehackernews.com/2019/11/hacking-file-storage.html

Iranian hacking group built its own VPN network
https://www.zdnet.com/article/iranian-hacking-group-built-its-own-vpn-network/

CyCraft’s Fuchikoma at Code Blue 2019: The Modern-Day Ghost in the Shell
https://www.cycraft.com/press/2019-11-13/cy-crafts-fuchikoma-at-code-blue-2019-the-modern-day-ghost-in-the-shell

Officials warn about the dangers of using public USB charging stations
https://www.zdnet.com/article/officials-warn-about-the-dangers-of-using-public-usb-charging-stations/#ftag=RSSbaffb68

Attacks on Healthcare Jump 60% in 2019 - So Far
https://www.darkreading.com/threat-intelligence/attacks-on-healthcare-jump-60--in-2019---so-far/d/d-id/1336364

華南銀行108年度第三次新進人員甄試
https://ptc.tabf.org.tw/tw/ptc_10810hncb/

[總管理處] 資安/網管專員(台北)
https://www.104.com.tw/job/6s9z3

網路資安售前工程師(presale)-1FT10E
https://www.104.com.tw/job/69ugm

資深ETL資料工程師(主管)
https://www.104.com.tw/job/6sf18

[招聘]腾御安招聘安全牛人
https://bbs.pediy.com/thread-212225.html

網管工程師
https://www.104.com.tw/job/6ship

D.資料外洩/個資法/GDPR/網路詐騙/網路釣魚/盜刷/假新聞
趨勢科技“內鬼”售賣68000個客戶信息這不是第一次
http://finance.eastmoney.com/a/201911101287011248.html

唯一支持韓國輸!中華隊大戰韓國全勝,送 不死兔 Lamigo 棒球貼圖?是詐騙
https://blog.trendmicro.com.tw/?p=62559

抖音TikTok:一邊唱歌跳舞 一邊散播假消息
http://bit.ly/2X0wsW0

建中驚傳遭駭 優秀校友:抗議圖書館侵犯個資「密碼猜一下就進了」
https://www.ettoday.net/news/20191113/1578843.htm

打擊假帳號新手段! 臉書要求用戶臉部自拍惹爭議
https://fnc.ebc.net.tw/FncNews/business/105465

沙烏地阿拉伯爆間諜醜聞 金誘前推特員工竊個資
http://bit.ly/2CsUNKT

美國國安部官方電話遭盜用 小心這兩個來電號碼
http://bit.ly/2NBsr7B

網購剁手族注意 資安廠教你三招防詐、防盜刷
https://www.ettoday.net/news/20191111/1577134.htm

網購族每年被盜刷7億 中華電三招防駭
http://bit.ly/2Q9R64B

公務機關洩個資 竟無法可罰
https://tw.news.appledaily.com/local/realtime/20191112/1661451/

Google跨足醫療 蒐集數千萬美國人個資
https://www.rti.org.tw/news/view/id/2041104

為何我們不該在網站或手機App儲存自己的信用卡號
https://www.thenewslens.com/feature/timefortune/126986

網站詐騙變形蟲 雙11搶LINE點數反被竊個資
https://tw.appledaily.com/gadget/20191112/NNHEHPAQ3WHWRQRAJWJEWILD54/

「幫我衝人氣」女自稱直播主 向3男借手機盜刷點數詐財
https://www.ettoday.net/news/20191113/1578817.htm

歐盟如何打擊「非現金支付」詐欺
https://stli.iii.org.tw/article-detail.aspx?no=57&tp=5&d=8139

美國21州千萬人醫療個資 存谷歌雲端資料
https://news.tvbs.com.tw/focus/1233841

成衣商倒閉成詐欺集團首腦 半年詐騙1500萬
https://tw.news.appledaily.com/local/realtime/20191114/1663368/

假優惠釣個資 好市多與百威撇清網路詐騙發文
https://www.cna.com.tw/news/aopl/201911150025.aspx

釣魚網站猖獗 小心個資外洩.失金
https://news.cts.com.tw/cts/general/201911/201911141981112.html

涉沃爾瑪禮卡詐騙 10個月消費百萬元 中國學生被捕
http://bit.ly/2OfhOGp

18歲女大學生利用快遞漏洞詐騙 被治安拘留五天
http://big5.cctv.com/gate/big5/news.cctv.com/2019/11/15/ARTIPq9bH3WZU9Tzvu2sZJSv191115.shtml

注意E-Mail位址!台北市政府警察局提醒小心遭到商業電子郵件詐騙
https://www.twcert.org.tw/tw/cp-104-3082-b1fe0-1.html

Skimmers for Both Magento and WordPress
https://blog.sucuri.net/2019/11/skimmers-for-both-magento-and-wordpress.html

Biggest Credit Card Database Ever Now For Sale on Joker’s Stash
https://www.cpomagazine.com/cyber-security/biggest-credit-card-database-ever-now-for-sale-on-jokers-stash/

Phishing Campaign Used Subpoena-Themed Email to Deliver Infostealer
https://www.tripwire.com/state-of-security/security-data-protection/phishing-campaign-used-subpoena-themed-email-to-deliver-infostealer/

INTERPOL urges public to #BECareful of BEC fraud
https://www.interpol.int/News-and-Events/News/2019/INTERPOL-urges-public-to-BECareful-of-BEC-fraud

Scammers favor destructive URLs above attachments in email phishing attacks
https://techballad.com/scammers-favor-destructive-urls-above-attachments-in-email-phishing-attacks/

TA542 Brings Back Emotet with Late September Spike
https://www.darkreading.com/threat-intelligence/ta542-brings-back-emotet-with-late-september-spike/d/d-id/1336302

Cyber News Rundown: Nikkei BEC Scam
https://www.webroot.com/blog/2019/11/08/cyber-news-rundown-nikkei-bec-scam/

Trend Micro Discloses Insider Threat Impacting Some of its Consumer Customers
https://blog.trendmicro.com/trend-micro-discloses-insider-threat-impacting-some-of-its-consumer-customers/

Microsoft to apply California's privacy law for all US users
https://www.zdnet.com/article/microsoft-to-apply-californias-privacy-law-for-all-us-users/#ftag=RSSbaffb68

Understanding the Ripple Effect: Large Enterprise Data Breaches Threaten Everyone
https://threatpost.com/ripple-effect-large-enterprise-data-breaches/150041/

PayPal becomes phisher’s favorite brand, Office 365 phishing techniques evolve
https://www.helpnetsecurity.com/2019/11/11/office-365-phishing-techniques-evolve/

Sparkasse: Verbraucherzentrale warnt vor neuer Phishing-Welle
https://www.netzwelt.de/betrugswarnungen/173374-sparkasse-verbraucherzentrale-warnt-neuer-phishing-welle.html

Beware of these online financial frauds! You will end up losing your money
https://www.timesnownews.com/business-economy/industry/article/beware-of-these-online-financial-frauds-you-will-end-up-losing-your-money/514745

How leaked court documents reveal Facebook’s fundamental paranoia
https://www.theverge.com/interface/2019/11/8/20953623/facebook-leaked-court-documents-nbc-paranoia-switcharoo

New phishing email campaign impersonates US postal service to deliver malware
https://www.techrepublic.com/article/new-phishing-email-campaign-impersonates-us-postal-service-to-deliver-malware/

E.研究報告
你用它上網,我用它進你內網! 中華電信數據機遠端代碼執行漏洞
https://devco.re/blog/2019/11/11/HiNet-GPON-Modem-RCE/

2019年最可怕的黑客事件與安全漏洞
http://netsecurity.51cto.com/art/201911/605861.htm

2019 年最可怕的黑客事件與安全漏洞(下)
https://zhuanlan.zhihu.com/p/91365830

ATT&CK中的進程注入三部曲
https://www.freebuf.com/articles/web/218232.html

模糊測試工具WinAFL使用指南
https://www.freebuf.com/articles/system/216437.html

《李忠憲專欄》信任與安全
https://taronews.tw/2019/11/08/522534/

Azure AD 環境的特權提升漏洞分析
https://www.chainnews.com/zh-hant/articles/531415577006.htm

騰訊安全&FreeBuf:2019上半年雲安全趨勢報告(附下載)
http://www.199it.com/archives/934170.html

Windows系統原理與漏洞安全研究
https://www.kanxue.com/book-brief-52.htm

GitHub:超過八成 Repository 參與來自美國以外
https://unwire.pro/2019/11/11/github-over-80-of-repository-contributions-come-from-outside-us/news/

BurpSuite-collections/books/本地文件包含漏洞檢測工具 – Burp外掛 LFI scanner checks
http://bit.ly/2qHZqOk

Laravel框架網站漏洞測試與修復
https://www.admin5.com/article/20191112/933323.shtml

框架網站漏洞修復防護方法
http://blog.itpub.net/31542418/viewspace-2663621/

為家人添置多一個新聞選擇 —— 利用 Raspberry Pi 接駁 NowTV 新聞台上電視
http://bit.ly/33EWIbb

看我如何發現NVIDIA GeForce Experience代碼執行拆分
https://www.anquanke.com/post/id/190643

黑客利用EOS系統帳號漏洞惡意挖礦;挖礦是對EOS主網的一次全面測評
https://www.chainnode.com/post/391244

網友自製「電力網路」誤會大了,導致整層樓跳電
https://www.techbang.com/posts/74142-netizens-home-made-power-network-misunderstanding-big-resulting-in-the-whole-floor-jump

招商銀行DevOps實踐及DevOps標準認證評估分享
https://mp.weixin.qq.com/s/5WKI1tZA0HLqAUMBT81IYQ

工程師職涯隨意聊:改變環境,而不是讓環境改變你
https://medium.com/@hulitw/change-43bb422a30ed

Playbook Fridays: Component IOC All Data Pull
https://threatconnect.com/blog/playbook-fridays-component-ioc-all-data-pull/

NCSC-NZ Releases Annual Cyber Threat Report
https://www.ncsc.govt.nz/assets/NCSC-Documents/NCSC-Cyber-Threat-Report-2018-2019.pdf

GitHub launches 'Security Lab' to help secure open source ecosystem
https://www.zdnet.com/article/github-launches-security-lab-to-help-secure-open-source-ecosystem/#ftag=RSSbaffb68

Threat, Vulnerability, Penetration testing, Exploit
https://hack0total.blogspot.com/2019/11/threat-vulnerability-penetration.html

The cake is a lie! Uncovering the secret world of malware-like cheats in video games
https://securelist.com/malware-like-cheats-in-video-games/94853

YARA The pattern matching swiss knife for malware researchers
https://virustotal.github.io/yara/

HomePwn - Swiss Army Knife for Pentesting of IoT Devices
https://hakin9.org/homepwn-swiss-army-knife-for-pentesting-of-iot-devices/

Using r2 to analyse Minidumps
https://radareorg.github.io/blog/posts/minidump/

The Security of PyArmor
https://pyarmor.readthedocs.io/en/latest/security.html#the-security-of-pyarmor

DHCP Penetration Testing
https://www.hackingarticles.in/dhcp-penetration-testing/

Crafting an EFI Emulator and Interactive Debugger
https://reverse.put.as/2019/10/29/crafting-an-efi-emulator/

Bypassing GitHub's OAuth flow
https://blog.teddykatz.com/2019/11/05/github-oauth-bypass.html

Kaspersky identifies mysterious APT mentioned in 2017 Shadow Brokers leak
https://www.zdnet.com/article/kaspersky-identifies-mysterious-apt-mentioned-in-2017-shadow-brokers-leak/

Dexofuzzy: Android malware similarity clustering method using opcode sequence
https://www.virusbulletin.com/virusbulletin/2019/11/dexofuzzy-android-malware-similarity-clustering-method-using-opcode-sequence/

REVERSING MACOS MALWARE EBOOK INTRO BY PATRICK WARDLE
https://www.sentinelone.com/blog/reversing-macos-malware-ebook-intro-by-patrick-wardle/

(MSRC Case 54347) Microsoft Windows Service Host (svchost) - Elevation of Privilege
https://nafiez.github.io/security/eop/2019/11/05/windows-service-host-process-eop.html

Getting Arbitrary Code Execution from fopen's 2nd Argument
https://hugeh0ge.github.io/2019/11/04/Getting-Arbitrary-Code-Execution-from-fopen-s-2nd-Argument/

Awesome AI Security
https://github.com/DeepSpaceHarbor/Awesome-AI-Security

macOS persistence - Spotlight importers and how to create them
https://theevilbit.github.io/posts/macos_persistence_spotlight_importers/

Protecting Your Malware with blockdlls and ACG
https://blog.xpnsec.com/protecting-your-malware/

Breaking the Microsoft Authenticode security model
https://blog.reversinglabs.com/blog/rocking-the-foundations-of-a-trust-based-digital-code-signing-system

New Exploit Kit Capesand Reuses Old and New Public Exploits and Tools, Blockchain Ruse
https://blog.trendmicro.com/trendlabs-security-intelligence/new-exploit-kit-capesand-reuses-old-and-new-public-exploits-and-tools-blockchain-ruse/

momika233/ClamAV_0Day_exploit
https://github.com/momika233/ClamAV_0Day_exploit/

Magpol/fridafde
https://github.com/Magpol/fridafde

ivan-sincek/keylogger
https://github.com/ivan-sincek/keylogger

ghostop14/sparrow-wifi
https://github.com/ghostop14/sparrow-wifi

akamai-threat-research/mqtt-pwn
https://github.com/akamai-threat-research/mqtt-pwn

lcatro/Source-and-Fuzzing
https://github.com/lcatro/Source-and-Fuzzing

Tips for an Information Security Analyst/Pentester career - Ep. 33 - Metasploit intro
http://bit.ly/2NGyyHA

F.商業
讓資料傳輸更Safe 獨立安全元件趁勢起
https://www.mem.com.tw/arti.php?sn=1911080003

資安長 (CISO) 為何該關心XDR 的發展
https://blog.trendmicro.com.tw/?p=62191

每月偵測1.5億次網路攻擊 台灣AI雲獲兩大資安認證
http://photo.udn.com/money/story/5648/4154640

2020年網路安全趨勢預測:惡意軟體與網路釣魚持續肆虐,新興技術引發安全疑慮
https://www.techbang.com/posts/74004-check-point-releases-2020-cybersecurity-trends-forecast-malware-and-phishing-attacks

擴大資料外洩防護方案的應用領域,Proofpoint宣布併購ObserveIT,投入金額為2億2千5百萬美元
https://www.ithome.com.tw/news/134079

Open WebMail 非 Openfind 產品 ,郵件資安防護不容忽視
http://www.pcdiy.com.tw/detail/14543

打穩物聯網資安地基 區塊鏈技術提解方
https://www.mem.com.tw/arti.php?sn=1911080001

36 氪專訪:一鍵查驗代碼漏洞,成都鏈安打造 Beosin-VaaS 平臺保障區塊鏈安全
https://www.chainnews.com/zh-hant/articles/554738866584.htm

2020企業儲存趨勢論壇台北場講義
https://www.ibm.com/tw-zh/it-infrastructure/learn/storage-roadshow-taibei

趨勢科技推出全方位智慧工廠資安解決方案
https://m.ctee.com.tw/livenews/kj/a07657002019111312491769?area=

開放金融轉型浪潮,iKala助力金融業創造雲端AI新商機
https://www.cw.com.tw/article/article.action?id=5097661

中華電明年加薪3% 績優員工調幅更上看5%
https://news.cnyes.com/news/id/4411757

Yahoo 日本擬與 LINE 合併,將打造上億人口生態圈
https://technews.tw/2019/11/14/yahoo-japan-plans-to-merge-with-line-to-create-a-billion-dollar-ecosystem/

Mozilla組聯盟推類容器WebAssembly奈米程序
https://www.ithome.com.tw/news/134173

隱私瀏覽器Brave正式邁入1.0版
https://www.ithome.com.tw/news/134215

Microsoft to drop its Invoicing, Outlook Customer Manager and Skype Translator bot products
https://www.zdnet.com/article/microsoft-to-drop-its-invoicing-outlook-customer-manager-and-skype-translator-bot-products/#ftag=RSSbaffb68

Wirecard agreement to buy Beijing's AllScore surprises analysts
https://www.zdnet.com/article/wirecard-agreement-to-buy-allscore-for-up-to-eur109m-confounds-analysts/#ftag=RSSbaffb68

Jamf launches security analytics, visibility for Mac deployments
https://www.zdnet.com/article/jamf-launches-security-analytics-visibility-for-mac-deployments/#ftag=RSSbaffb68

Microsoft starts testing its new Chromium-based Edge browser on Arm
https://www.zdnet.com/article/microsoft-starts-testing-its-new-chromium-based-edge-browser-on-arm/#ftag=RSSbaffb68

G.政府
十國資安人員交流聚焦網攻溯源 台美合作演練有望續辦
https://m.ltn.com.tw/news/politics/breakingnews/2972508

台美逾10國資安大規模演練與交流 圓滿落幕
https://m.ltn.com.tw/news/life/breakingnews/2971919

美台首度「大規模網路攻防演練」
http://bit.ly/2NEpq6w

網攻演習落幕 美盼深化與我合作
https://news.ltn.com.tw/news/life/paper/1330641

酈英傑:美台印太夥伴關係 網路安全是關鍵
https://udn.com/news/story/6656/4153780

美台合作加快印太網絡安全佈局 防範中國5G風險
https://www.voacantonese.com/a/us-official-warns-agaisnt-china-5g-in-increasing-cooperation-with-taiwan-and-others-20191108/5160128.html

台鐵豐原站人臉辨識功能夭折!當自我隱私遇上社會安全,你的選擇是
https://www.bnext.com.tw/article/55406/face-recognition-ai-privacy-problem-

監控鏡頭大陸製 鐵道局澄清沒漏洞
https://www.chinatimes.com/realtimenews/20191108003803-260405?chdtv

國安局長邱國正:總統大選只做維安 不做情蒐
https://www.chinatimes.com/realtimenews/20191111001506-260417?chdtv

李副總長主持國軍盃網路安全競賽 盼國軍資安向下紮根
https://n.yam.com/Article/20191114930026

接見駭客大賽亞軍隊伍 總統盼加速研擬「資安即國安2.0戰略」 打造臺灣成為堅韌資安之國
https://www.president.gov.tw/News/25021

艦指部持恆要求軍風紀
http://bit.ly/2KlEGD4

蔡總統:加速研擬資安即國安2.0戰略
https://www.cna.com.tw/news/aipl/201911110143.aspx

4年10億資安人才計畫 蘇揆支持
http://bit.ly/2CGnzb2

資安即國安 蔡英文:培訓人才固守第一道防線
http://bit.ly/32D9LZd

立委提4年10億培育資安人才 蘇貞昌:支持
https://udn.com/news/story/6656/4159638

台商回流7000億 陳建仁盼海外青年加入
http://www.epochtimes.com/b5/19/11/11/n11647965.htm

NCC硬起來!手機標示「中國台灣」就撤銷驗證
https://money.udn.com/money/story/5648/4161705

法務部調查局揭露企業常見受駭類型,從臺灣遇害實例驗證攻擊趨勢
https://www.ithome.com.tw/news/134170

【中共將靠台灣國會掌握情報?】KMT 吳斯懷能「合法」阻撓潛艦自造,國軍還恐因「情報被洩漏」喪命
https://buzzorange.com/2019/11/14/kmt-wu-si-huai/

108年資安法律案例分享說明會─簡報 資通安全管理法施行現況及後續推動重點
http://bit.ly/2XqDbsR

108年資安法律案例分享說明會─簡報 資通安全法律案例趨勢彙總分析
http://bit.ly/2CNbqRs

108年資安法律案例分享說明會─簡報 從近期資安事件案例談資安威脅趨勢與管理重點
http://bit.ly/379qMxC

108年資安法律案例分享說明會─簡報 從近期資安事件案例談如何以技術機制應對資安威脅
http://bit.ly/33S4FKi

H.ICS/SCADA 工控系統
施耐德電機成為ISA全球網路安全聯盟創始成員
https://ctee.com.tw/industrynews/technology/173730.html

Honeywell MCR Web Controller Cross Site Scripting / Path Disclosure
https://packetstormsecurity.com/files/155226/honeywellmcrwc-xss.txt

I.教育訓練
連線變慢,DDoS 就像喪屍般來襲!用電影「末日之戰」解釋網路癱瘓,不是高手也能搞懂資安
https://www.inside.com.tw/feature/2019aws/18027-AWS-DDos

How to Use Network Hooks for Proxying Network Activity in macOS
https://www.apriorit.com/dev-blog/641-mac-network-hooks-macos

Wireshark Tutorial: Examining Trickbot Infections
https://unit42.paloaltonetworks.com/wireshark-tutorial-examining-trickbot-infections/

J.物聯網/IOT/人工智慧/車聯網/光聯網/深度學習/機器學習/無人機/人臉辨識
Pwn2Own Tokyo 2019:Amazon Echo、三星與Sony電視,以及路由器都被成功入侵
https://www.ithome.com.tw/news/134125

PWN2OWN 東京駭客大賽落幕,多種手機、路由器、家用智慧裝置遭破解
https://www.twcert.org.tw/tw/cp-104-3077-d5e6d-1.html

亞馬遜Ring資安問題再一樁 智慧門鈴易陷駭客危機
https://www.digitimes.com.tw/iot/article.asp?cat=158&cat1=20&cat2=80&id=0000572506_91v6egedldhr8b7ans3vg

車聯網浪潮襲來 車用安全標準陸續改版
https://www.digitimes.com.tw/tech/dt/n/shwnws.asp?cnlid=&id=0000572684_A357H4R07TRB9J5JIBPAP

以色列比爾蓋茲看好汽車與資安 盼與台合作
https://money.udn.com/money/story/5612/4164962

Security x AIoT Secutech跨界合作迎新局
https://www.chinatimes.com/newspapers/20191115000545-260210?chdtv

The Dark Web's Automobile Hacking Forums
https://www.bankinfosecurity.asia/interviews/dark-webs-automobile-hacking-forums-i-4510

6.近期資安活動及研討會
2019 SecBuzzer AI UP!人工智慧資安挑戰賽 11/15 ~ 11/17
https://competition.secbuzzer.co/competitions

 SecureWV – Hack3rCon  11/15 ~ 11/17
 https://infosec-conferences.com/events-in-2019/securewv-hack3rcon/

 2019 Hack ‘n’Roll 駭客嘉年華  11/16 ~ 11/17
 http://hacknroll.splashthat.com/IThomeBanners

 交通大學亥客書院-P006:高階網頁滲透測試 11/16
 https://hackercollege.nctu.edu.tw/?p=1092

 FS-ISAC Fall Summit 11/17 ~ 11/20
 https://infosec-conferences.com/events-in-2019/fs-isac-fall-summit/

 Microsoft IoT in Action 11/20
 https://www.iotinactionevents.com/event/taipei

 LINE將於11月舉辦LINE DEVELOPER DAY 2019  11/20 ~ 11/21
 https://www.digitimes.com.tw/tech/dt/n/shwnws.asp?cnlid=14&id=0000570636_HL57CPQM2H1ZHE71YVI2W

 Infosecurity ISACA North America Expo and Conference 11/20 ~ 11/21
 https://infosec-conferences.com/events-in-2019/isaca-north-america-expo-conference/

 檔案特徵值比對與關鍵字搜尋 (2hr) Open Source數位鑑識工具實務操作 (5hr) 11/21
 http://www.tabf.org.tw/Training/CourseDetail.aspx?PID=384542

 2019 BSI 國際資安標準管理年會  11/22
 https://www.accupass.com/event/1910070533451342891420

 Trend Micro CTF 2019 // Raimund Genes Cup  FINAL / NOVEMBER 23–24, 2019
 https://www.trendmicro.com/en_us/campaigns/capture-the-flag.html

 資安檢核核心技術及進階技術研討會11月26日至11月28日
 http://bit.ly/2TN2UtD

 人資人員必修的職安法規定 11/26
 https://www.accupass.com/event/1909121441141977826554

 模擬案例鑑識分析實務 (6hr)  11/28
 http://www.tabf.org.tw/Training/CourseDetail.aspx?PID=384543

 Global Cybersecurity Coference 11/28~11/29
 https://2019.group-ib.com/

 Cybersecurity Framework 擴大資安視野 Seminar CYBERSEC 101 研討會  11/29
 https://signupcybersec101.ithome.com.tw/

 交通大學亥客書院-B015:惡意程式檢測 11/30
 https://hackercollege.nctu.edu.tw/?p=1098

 亞洲‧矽谷學院108年免費認證考試 11/30
 https://college.asvda.org.tw/

 Docker 容器技術實作(201911)  11/30
 https://buy.techbang.com/products/97b497fb?from=home_news

 The Dungeons of Hackers Conference 2019 - 駭客的地下城 11/30
 https://tdohackerparty.kktix.cc/events/tdoh-conf-2019

 新竹網絡安全日 Cybersecurity Day Hsinchu 108年 邀请函 12/3
 https://www.accupass.com/event/1911080348403103587380

 Digital Summit Dallas  12/4
 https://infosec-conferences.com/events-in-2019/digital-summit-dallas/

 Kansas City Cyber Security Conference 12/5
 https://infosec-conferences.com/events-in-2019/kc-cyber-security-conference/

 CyberMaryland Conference 12/5 ~ 12/6
 https://infosec-conferences.com/events-in-2019/cybermaryland-conference/

 FutureCon Nashville Cyber Security Conference 12/11
 https://infosec-conferences.com/events-in-2019/futurecon-nashville/

 「Log管理 x 營業秘密」研討會 12/11
https://www.accupass.com/event/1911110922137590408650

 Utility Cyber Security Forum December 12/11
 https://infosec-conferences.com/events-in-2019/utility-cyber-security-forum-dec/

 交通大學亥客書院-A018:企業網域控管-Active Directory攻擊與防禦  12/14
 https://hackercollege.nctu.edu.tw/?p=1094

 Japan Security Analyst Conference
 https://jsac.jpcert.or.jp/

 PWN2OWN MIAMI – BRINGING ICS INTO THE PWN2OWN WORLD 2020/1/21~23
 https://www.zerodayinitiative.com/blog/2019/10/28/pwn2own-miami-bringing-ics-into-the-pwn2own-world

留言

這個網誌中的熱門文章

9月份資安社群及教育訓練活動分享

9月份資安社群及教育訓練活動分享


 HITCON HackDoor 駭入辦公室 7/2 ~ 9/28
 https://www.accupass.com/event/1906050355291064968019

 MLDM Monday|用開放資料玩出政府創新應用 : 當雨神來臨時  9/2
 https://www.meetup.com/Taiwan-R/events/262992081/

 Taipei Rails Meetup  9/3
 https://www.meetup.com/rails-taiwan/events/dlgzljyzmbfb/

 高雄 Rails Meetup 9/4
 https://www.meetup.com/rails-taiwan/events/qxfvjkyzmbgb/

 Android Code Club(Taipei) 9/4
 https://www.meetup.com/Taiwan-Android-Developer-Study-Group/events/bsctnqyzmbgb/

 SyntaxError 9/4
 https://www.meetup.com/pythonhug/events/tnzzgpyzmbgb/

 工業控制系統資安研討會 9/5
 http://bit.ly/2NsMvt5

 HackingThursday 固定聚會 9/5
 https://www.meetup.com/hackingthursday/events/vkhnnqyzmbhb/

 TWJUG 201909 聚會 9/5
 https://www.meetup.com/taiwanjug/events/264123847/



8月份資安社群及教育訓練活動分享

8月份資安社群及教育訓練活動分享

 HITCON HackDoor 駭入辦公室 7/2 ~ 9/28
 https://www.accupass.com/event/1906050355291064968019

 The Virus Bulletin Conference 2019 8/1
 https://www.virusbulletin.com/blog/2019/06/free-vb2019-tickets-students/

【社群】8/1(四) RASPBERRY PI + ROS,實現無人自駕
 https://ctsphub.tw/20190801_robotnight/

 HackingThursday 固定聚會 8/1
 https://www.meetup.com/hackingthursday/events/vkhnnqyzlbcb/

 資安事件調查實務(上)  8/2
 https://tp2rc.tanet.edu.tw/node/306?fbclid=IwAR11YQmw-28fOA6LUrsNiFKd7ccaAiMa5cZsYf22iRfTUR5LPYXwjqZNo2I

 【CIT週末玩程式】- (8月)認識電腦與程式邏輯訓練(I) 8/3
 https://www.meetup.com/Women-Who-Code-Taipei/events/jtcjfryzlbfb/

 Python 基礎工作坊@TMU 8/6
 https://www.meetup.com/Women-Who-Code-Taipei/events/mfnfcryzlbjb/

5月份資安、社群活動分享

5月份資安、社群活動分享

 108年度資安初學者挑戰活動 (MyFirstCTF) 5/1 ~ 5/10 報名
 https://ais3.org/mfctf/

 HackingThursday 固定聚會  5/2
 https://www.meetup.com/hackingthursday/events/vkhnnqyzhbdb/

 Python 商務網站 * 極速學習 (2019春季 - 台北)  5/2
 https://cjltsod.kktix.cc/events/django-2019-spring-taipei

 國票金控「純網銀鯰魚與資安技術漣漪」日本樂天技術結合台灣AI 人工智慧發表會  5/2
 https://www.accupass.com/event/1904111400151860776797

 資安法 X 技術實務論壇  5/2
 https://csa.kktix.cc/events/csa190502

 國立交通大學 亥客書院 - 基礎網站安全建構實務  5/4
 https://hackercollege.nctu.edu.tw/?p=1045

 ISDA 白帽菁英萌芽計劃II 0505 
 https://reg.shield.org.tw/info.php?no=54

 Pwn入門  5/5
 https://hackersir.kktix.cc/events/fcu190505

 Elixir台灣 台北 Meetup # Monday, May 6, 2019
 https://www.meetup.com/elixirtw-taipei/events/njjhvpyzhbjb/

 公部門之AI資安防護新思維研討會 5/7
 http://www.cisanet.org.tw/News/activity_more?id=MTQzOA==

 向資安服務看齊 我們一起讓資安從「有做」到「有效」  5/8 ~ 5/10
 https://www.informationsecurity.com.tw/Seminar/2019_all/

 資安危機 - 進擊的勒索加密軟體 2019-05-09(四) 14:45 ~ 17:00
 https://www.accupass.com/event/19041703435474776…