跳到主要內容

資安事件新聞週報 2019/11/4 ~ 2019/11/8






資安事件新聞週報  2019/11/4  ~  2019/11/8

1.重大弱點漏洞/後門/Exploit/Zero Day
BlueKeep漏洞發生第一波大規模攻擊,引發藍色死亡螢幕
https://www.ithome.com.tw/news/133987

First Cyber Attack 'Mass Exploiting' BlueKeep RDP Flaw Spotted in the Wild
https://thehackernews.com/2019/11/bluekeep-rdp-vulnerability.html

Snyk釋出最新JavaScript框架安全性報告,不少熱門框架模組存在XSS漏洞
https://www.ithome.com.tw/news/134029

JavaScriptCore - Type Confusion During Bailout when Reconstructing Arguments Objects
https://www.exploit-db.com/exploits/47590

ZTE 9000E 權限許可和訪問控制問題漏洞
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3425

多款D-Link產品遠程代碼執行漏洞
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-16920

F5 BIG-IP AFM SQL注入漏洞
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6658

Google釋出11月安卓安全修補程式 Pixel手機率先更新
https://www.chinatimes.com/realtimenews/20191105001795-260412?chdtv

Google Patches Critical Flaws in Android's System Component
https://www.securityweek.com/google-patches-critical-flaws-androids-system-component

Android Security Bulletin—November 2019
https://source.android.com/security/bulletin/2019-11-01.html

Chrome 電腦版快更新!Google 發現 2個重大零日漏洞,緊急釋出修補
https://3c.ltn.com.tw/news/38502

Chrome 瀏覽器被發現兩個嚴重漏洞,其中一個已被利用
https://technews.tw/2019/11/05/chorme-use-after-free/

Microsoft Windows Hyper-V遠程代碼執行漏洞(CNVD-2019-38766)
https://portal.msrc.microsoft.com/en-us/security-guidance

Apache Solr 遠程代碼執行漏洞預警
https://www.secpulse.com/archives/117255.html

英大學生髮現亞馬遜漏洞用折扣碼狂購物捐流浪漢
https://www.backchina.com/news/2019/11/02/654041.html

On Halloween night, Google discloses Chrome zero-day exploited in the wild
https://www.zdnet.com/article/halloween-scare-google-discloses-chrome-zero-day-exploited-in-the-wild/#ftag=RSSbaffb68

CVE-2019-15588/Nexus Repository Manager Yum插件遠程命令執行
https://qiita.com/shimizukawasaki/items/41794616f1f2e602e4f5

CVE-2019-15588
https://nvd.nist.gov/vuln/detail/CVE-2019-15588

Upgrade Notice for Customers Using PAN-OS 9.0 and VM-Series on Azure
https://blog.paloaltonetworks.com/2019/10/cloud-pan-os-9-0-and-vm-series-on-azure/

Linux maintainer: Patching side-channel flaws is killing performance
https://nakedsecurity.sophos.com/2019/10/31/linux-maintainer-patching-side-channel-flaws-is-killing-performance/

VMware updates Workspace One with capabilities for new hires
https://www.zdnet.com/article/vmware-updates-workspace-one-with-capabilities-for-new-hires/#ftag=RSSbaffb68

Libarchive vulnerability can lead to code execution on Linux, FreeBSD, NetBSD
https://www.zdnet.com/article/libarchive-vulnerability-can-lead-to-code-execution-on-linux-freebsd-netbsd/#ftag=RSSbaffb68

QNAP NetBak Replicator 4.5.6.0607 - 'QVssService' Unquoted Service Path
https://www.exploit-db.com/exploits/47594

2.銀行/金融/保險/證券/支付系統/ 新聞及資安
臺灣銀行成立資通安全事件應變小組(CSIRT)
https://www.cdns.com.tw/articles/46429

利用惡意程式對銀行自動提款機進行「吐鈔攻擊」的事件頻傳
http://bit.ly/2pwo9oI

資產上兆銀行保險業 金管會要求設資安獨立單位
https://money.udn.com/money/story/5613/4140251

保費幾近去年全年金額 上半年資安險 衝至243件
http://bit.ly/2NzNZQz

新光產:資安應加入保險防護
https://www.chinatimes.com/newspapers/20191104000425-260208?chdtv

保險業資安研討 談轉型趨勢
https://money.udn.com/money/story/5636/4121989

未雨綢繆?俄羅斯擬聯手中印打造獨立清算系統
https://news.sina.com.cn/o/2019-11-04/doc-iicezzrr7063572.shtml

香港金融鬼故屢傳 余偉文:目標3小時內澄清網上謠言
http://bit.ly/2qiG6qP

第一銀行簡訊OTP服務終止公告
https://www.firstbank.com.tw/servlet/fbweb/zh_TW/1454093707296

不再被密碼綁架 中信銀:逾7成APP用戶以指紋、刷臉登入
https://ec.ltn.com.tw/article/breakingnews/2964052

香港豐隆銀行有限公司的偽冒電郵
https://www.hkma.gov.hk/chi/news-and-media/press-releases/2019/10/20191030-3/

俄國主導銀行總部搬到匈牙利 掀國安疑慮
https://www.cna.com.tw/news/aopl/201910290271.aspx

萬一行情火熱 券商遭駭勒索再現高峰
https://ctee.com.tw/news/stock/169270.html

證交所:券商建流量清洗機制因應
https://www.chinatimes.com/newspapers/20191105000229-260202?chdtv

臺“金管會”:6券商遭黑客攻擊 無投資人受影響
https://dailynews.sina.com/bg/tw/chinanews/2019-11-05/doc-ifzqmtky6767156.shtml

28券商遭網攻 證交所:充分掌握訊息及業者應變
https://udn.com/news/story/7251/4148914

券商遭駭 證期局祭八大資安防護措施
https://www.chinatimes.com/realtimenews/20191105004781-260410?chdtv

券商網路下單遭駭勒索贖金 證交所:建立流量清洗機制
https://fnc.ebc.net.tw/FncNews/business/104918

券商遭到DDoS攻擊 證交所三提醒
https://udn.com/news/story/7255/4146235

近日證券期貨業者遭受網路攻擊事件說明
https://www.twse.com.tw/zh/news/newsDetail/ff8080816dddfd6d016e3b00bbd10247

證券期貨業者遭受網路攻擊 證交所:已掌握攻擊訊息並密切注意後續發展
https://www.ettoday.net/news/20191105/1573086.htm

股市大盤指數突破11,000點,有駭客趁機發動DDoS攻擊,癱瘓多家券商網站十多分鐘
https://www.ithome.com.tw/news/134030

6家券商遭駭客攻擊 無投資人受影響
http://pchome.megatime.com.tw/news/cat3/20191105/15729572630349318003.html

28券商遭網攻 證交所:充分掌握訊息及業者應變
https://udn.com/news/story/7251/4148914

中國銀行發布新版跨境電商綜合金融服務方案
http://www.bank-of-china.com/big5/aboutboc/bi1/201911/t20191101_16956137.html

土耳其政府凍結 330 萬個銀行賬戶
https://www.chainnews.com/zh-hant/news/151980760012.htm

防網銀故障釀災 英國會議員籲加稅並監管雲端服務
https://udn.com/news/story/6811/4130756

這些銀行大到不能倒?顧立雄:讓銀行經營體質更健全是好事
http://bit.ly/33jlygv

Open API讓Open Data更安全
http://bit.ly/36AjEdw

過百警察突查「51信用卡」杭州總部 在港上市公司為何人去樓空
http://bit.ly/2Ccb9qX

中信銀櫃員系統大當機 搶修後已恢復服務
https://money.udn.com/money/story/5617/4147686

朱學恒臨櫃繳款碰到網路壅塞 中信銀:30分鐘內全面恢復正常
https://www.ettoday.net/news/20191106/1573525.htm

百年彰銀不只核心系統升級,更準備擁抱微服務架構與容器
https://www.ithome.com.tw/people/133991

三星手機螢幕指紋漏洞 花旗銀行未解除停用
https://www.chinatimes.com/realtimenews/20191106004899-260410?chdtv

數碼監控!殺入金融系統 無法刪紀錄防走資
https://hk.news.appledaily.com/china/realtime/article/20191107/60204493

手機門號跨行轉帳 明年上路
https://money.udn.com/money/story/5648/4151940

騰訊虛擬銀行取得香港牌照 現正籌備區塊鏈虛擬銀行
https://www.chinatimes.com/realtimenews/20191108001806-260409?chdtv

中央銀行成立數位貨幣研究小組 楊金龍:現金仍不會消失
http://www.worldpeoplenews.com/content/news/319676

虛擬銀行WeLab明年初開業
https://orientaldaily.on.cc/cnt/finance/20191108/00202_012.html

臺美首度聯手舉辦大規模網路攻防演練,臺銀行組藍隊聯隊對抗紅隊攻擊
https://www.ithome.com.tw/news/134003

Cyber Criminals Stealing Customer Data By Tricking Bank Employees
https://www.ehackingnews.com/2019/11/cyber-criminals-stealing-customer-data.html?utm_source=dlvr.it&utm_medium=twitter

The Central Bank will strengthen control over IT-security of credit institutions
https://www.ehackingnews.com/2019/10/the-central-bank-will-strengthen.html

Secret Service: Brazilian’s bank data scheme hits Seacoast ATMs
https://www.fosters.com/news/20191031/secret-service-brazilians-bank-data-scheme-hits-seacoast-atms

Giridih police arrests 8 cyber criminals
https://www.dailypioneer.com/2019/state-editions/giridih-police-arrests-8-cyber-criminals.html

3 Nigerians among 5 held for stealing cash from ATM using fake cards
https://timesofindia.indiatimes.com/city/bengaluru/3-nigerians-among-5-held-for-stealing-cash-from-atm-using-fake-cards/articleshow/71912147.cms

NCR Barred Mint, QuickBooks from Banking Platform During Account Takeover Storm
https://krebsonsecurity.com/2019/11/ncr-barred-mint-quickbooks-from-banking-platform-during-account-takeover-storm/

Tips to Accelerating PCI Data Security Standard Projects with Deep Security as a Service
https://blog.trendmicro.com/tips_accelerating-pci-data-security-standard-projects-with-deep-security-as-a-service/

Sustained DDoS Attack on South African Banks Accompanied by Ransom Notes
https://www.cpomagazine.com/cyber-security/sustained-ddos-attack-on-south-african-banks-accompanied-by-ransom-notes/

Sabric says SA banks are under sustained DDoS attack
https://www.moneyweb.co.za/news/south-africa/sabric-says-sa-banks-are-under-sustained-ddos-attack/

SOUTH AFRICAN BANKS RESILIENT IN THE FACE OF LATEST DDOS ATTACK
https://www.sabric.co.za/media-and-news/press-releases/south-african-banks-resilient-in-the-face-of-latest-ddos-attacks/

Magecart Groups Attack Simultaneous Sites in Card-Theft Frenzy
https://threatpost.com/magecart-groups-attack-simultaneous-sites-in-card-theft-frenzy/149872/

PerimeterX Research Team Uncovers New Trend in Magecart Attacks: Multiple Magecart Groups Attacking Simultaneously
https://www.perimeterx.com/blog/multiple-magecart-groups-attacking-simultaneously/#

Two Arrested In Dublin Over ATM Fraud Incidents
https://www.nova.ie/two-arrested-in-dublin-over-atm-fraud-incidents-171187/

RBI Seeks 'Regulatory Sandbox' Applicants
https://www.bankinfosecurity.asia/rbi-seeks-regulatory-sandbox-applicants-a-13362

Cyber Insurance: Benefits and Pitfalls
https://www.bankinfosecurity.asia/cyber-insurance-benefits-pitfalls-a-13356

Romanian man convicted in Cedar Rapids ATM skimming scheme
https://www.thegazette.com/subject/news/public-safety/romica-martuica-romania-convicted-in-atm-skimming-scheme-20191106

Atm spews out free cash out: gelukzakken can go up to 6 hours of taking advantage
https://www.wirenewsfax.com/atm-spews-out-free-cash-out-gelukzakken-can-go-up-to-6-hours-of-taking-advantage

The data of Alfa-Bank's clients is sold on the black market
https://www.ehackingnews.com/2019/11/the-data-of-alfa-banks-clients-is-sold.html

Chinese hackers involved in ATM heist in Nepal sent to jail
https://english.khabarhub.com/2019/07/53526/

3.電子支付/電子票證/行動支付/ pay/新聞及資安
哈薩克斯坦支付系統前9月交易額近600萬億
https://www.inform.kz/cn/9-600_a3580793

Pay Taipei上線一年半!惡評如潮!評價僅兩顆星
https://times.hinet.net/news/22629544

中國、印度、俄羅斯三國間的支付系統有望對接,人民幣支付或進一步提升
http://www.sohu.com/a/350493799_100110525

扎克伯格出席聽證會承認"中國支付系統領先美國"
http://news.stnn.cc/guoji/2019/1024/682476.shtml

中國支付大解禁!支付寶推「國際遊客版App」免綁中國門號
http://bit.ly/2NqOSfE

俄羅斯央行打擊支付服務提供商140家公司非法提供外匯交易服務
http://forex.eastmoney.com/a/201910211266996159.html

已與9家公司簽下MOU 台灣PAY攜手第三方支付
http://bit.ly/2WGwl1R

5分鐘完成一筆財政資金支付濰坊國庫集中支付電子化管理系統上線
http://www.wfnews.com.cn/index/2019-10/17/content_2173383.htm

多家信用卡合作推出一鍵支付系統
http://bit.ly/33c9OfG

Line pay 一卡通被盜領
https://www.ptt.cc/bbs/Lifeismoney/M.1572844569.A.8ED.html

LINE Pay一卡通繳卡費「爆出漏洞」!網友神製條碼器 每期爽賺500點高回饋
https://www.ettoday.net/news/20191027/1566267.htm

台灣行動支付更新傳災情 預計2天排除
https://www.chinatimes.com/realtimenews/20191021004108-260410?chdtv

停止「t wallet 行動支付」APP 服務公告
http://bit.ly/33myPVE

支付寶拓展用戶 遊客赴陸可使用免綁中國手機版
https://www.setn.com/News.aspx?NewsID=630986

傳20間歐銀行聯手推新支付系統抗衡Visa PayPal
http://paper.wenweipo.com/2019/11/07/GJ1911070005.htm

布達佩斯李斯特國際機場提供多種中國支付平台
http://www.sohu.com/a/352060812_162522

搶攻跨國交通支付市場 台灣大車隊導入韓亞電子錢包
https://ec.ltn.com.tw/article/breakingnews/2970302

建立QR Code共同標準為國際趨勢 央行總裁楊金龍:沒有要與民爭利
https://www.ettoday.net/news/20191107/1574381.htm

歐盟:Apple Pay限制商家電子支付方式 恐涉反競爭行為
https://news.cnyes.com/news/id/4407435

人行穆長春:數字貨幣CBDC可作為後備電子支付
https://news.rthk.hk/rthk/ch/component/k2/1490358-20191106.htm

街口、LINE Pay互相轉賬本會期恐難過關
http://www.epochtimes.com/gb/19/11/4/n11632209.htm

台灣金管會:電子支付用戶數達588萬年增近67%
http://www.dsb.cn/108910.html

周小川談第三方支付:金融基礎設施需要滿足監管要求
https://news.sina.com.tw/article/20191108/33247944.html

DDoS 攻撃を示唆して、仮想通貨を要求する脅迫メールについて
https://www.jpcert.or.jp/newsflash/2019103001.html

Alipay open to foreign visitors for first time
https://www.zdnet.com/article/alipay-open-to-foreign-visitors-for-first-time/#ftag=RSSbaffb68

Best Practices for PCI DSS v3.2.1 Network Security Compliance
https://web.tufin.com/hubfs/resources/best-practices-PCI-DSS-v3.2.1-network-security-compliance.pdf

4.虛擬貨幣/區塊鍊相關新聞及資安
創造一個「私人貨幣」並不是解決之道!這個男人比祖克柏更懂加密貨幣
http://news.knowing.asia/news/f209236f-3615-4f6c-a18a-23efb42ce18d

區塊鏈也有漏洞?成都一公司推出全球第一款安檢工具
https://static.cdsb.com/micropub/Articles/201911/55ecf5a151f6b1b0453e4d8c2659ced8.html

區塊鏈結合智慧電網提升能源使用效率
https://www.digitimes.com.tw/iot/article.asp?cat=158&cat1=20&cat2=10&id=0000571348_A0A2MYUL5N9XHM7METSPJ

中國擬推數位貨幣 專家點破背後動機
https://ec.ltn.com.tw/article/breakingnews/2965998

日本公司將發布試行地區加密貨幣
http://www.shangbaoindonesia.com/read/2019/10/20/economy-1571586018

區塊鏈瀏覽器 Brave 漸受歡迎 每月活躍用戶達 800 萬
https://news.cnyes.com/news/id/4398079?exp=b

「穩定幣」衝擊難擋 G7 建議各國探究發行「央行數位貨幣」
https://news.cnyes.com/news/id/4397847

習近平一聲令下,政治局集體學習「區塊鏈」
https://www.storm.mg/article/1890582

肖磊:政治局集體學習區塊鏈 中美角逐科技創新制高點
https://news.sina.com.tw/article/20191026/33092386.html

「雙鏈共舞」銀行加速布局區塊鏈 6家銀行備案14項服務
https://kknews.cc/finance/xgqe5zq.html

採區塊鏈發貨幣 中共想搶第一 恐致金融大亂
http://www.epochtimes.com/b5/19/10/31/n11624715.htm

義大利人愛用比特幣網購,交易量超車VISA、Mastercard
https://www.bnext.com.tw/article/55343/bitcoin-is-a-preferred-payment-option-in-italy-over-visa-mastercard-and-amex

BitMEX 洩露大量用戶電郵 當中有政府部門、教育機構
http://bit.ly/33jHRma

比特大陸在得克薩斯州開設了一個大型加密貨幣礦場
http://bit.ly/34vlURh

頭大!交易軟件Robinhood出現程序漏洞,惊現"無限槓桿
https://www.fx.cool/cn/newsdetail/8338

FB加密幣負責人:比特幣是數位黃金 但不適合當貨幣
https://news.cnyes.com/news/id/4406356

大陸人行:大陸數位貨幣將進入戰國時代
https://www.chinatimes.com/realtimenews/20191106002892-260410?chdtv

【區塊鏈】年輕人,準備好進入證券型代幣市場了嗎
http://bit.ly/2NmkOBE

Law debated allowing confiscation of Bitcoin by the police
https://www.zdnet.com/article/law-debated-allowing-confiscation-of-bitcoin-by-the-police/#ftag=RSSbaffb68

Crypto Heist: Thieves Penetrate Bitcoin ATM Warehouse to Steal 85 Devices
https://www.ccn.com/thieves-penetrate-bitcoin-atm-warehouse-wall/

5.資安事件新聞

A.病毒木馬 / 殭屍網路 / 勒索軟體 / Adware /APT /後門程式
Adwind木馬新變種曝光Google修復Chrome中3個高危漏洞
https://zhuanlan.zhihu.com/p/89524176

Gafgyt新變體威脅超3萬台路由器某國內大廠遭殃
https://www.cnbeta.com/articles/tech/906225.htm

北韓駭客組織HIDDEN COBRA利用之惡意程式HOPLIGHT變種
http://net.nthu.edu.tw/2009/mailing:announcement:20191104_02

變種勒索軟體不但加密檔案,還會變更Windows登入密碼
https://www.ithome.com.tw/news/134040

行動惡意軟體攻擊加劇!2020 網路資安預測 9大關鍵要點
https://3c.ltn.com.tw/news/38542

QNAP NAS遭QSnatch感染,QNAP已提出安全建議以清除惡意程式
https://www.twcert.org.tw/tw/cp-104-3043-0f363-1.html

後門程式利用盜版外掛散佈,感染力強成WordPress最大威脅
https://www.ithome.com.tw/news/134061

拍賣史上最毒筆電!拿「21世紀6大病毒」煉蠱..價格竟飆破XX萬? 網笑翻: HAO123、金山毒霸勒
http://bit.ly/34INlHz

首都大アドレス、最大1万8千件流出か…PCウイルス感染
https://www.yomiuri.co.jp/national/20191102-OYT1T50271/

Emotet Trojan Brings a Malware Scare with Halloween Emails
https://www.bleepingcomputer.com/news/security/emotet-trojan-brings-a-malware-scare-with-halloween-emails/

At least 13 managed service providers were used to push ransomware this year
https://www.zdnet.com/article/at-least-13-managed-service-providers-were-used-to-push-ransomware-this-year/

6 New MSPs and/or Cloud-Based Service Providers Compromised by Ransomware, A Total of 13 for 2019, Reports Armor
https://www.armor.com/reports/new-msps-compromised-reports-armor/

QSnatch Malware Infects Thousands of NAS Devices, Steals Credentials
https://www.bleepingcomputer.com/news/security/qsnatch-malware-infects-thousands-of-nas-devices-steals-credentials/

Ransomware School: The Rise of GandCrab Disciples
https://www.bankinfosecurity.com/ransomware-school-rise-gandcrab-disciples-a-13335

Ransomware: Average Ransom Payout Increases to $41,000
https://www.bankinfosecurity.in/ransomware-average-ransom-payout-increases-to-41000-a-13333

Cybersicherheit in der Schweiz: Die Bedrohungslage ist akut
https://www.it-markt.ch/news/2019-11-04/cybersicherheit-in-der-schweiz-die-bedrohungslage-ist-akut

WhatsApp Pegasus Malware
http://bit.ly/32bD3y6

Antimalware Day 2019: Building a culture of cybersecurity awareness
https://www.welivesecurity.com/2019/11/03/antimalware-day-2019-building-culture-cybersecurity-awareness/

Emotet continues to bypass many email security products
https://www.virusbulletin.com/blog/2019/11/emotet-continues-bypass-many-email-security-products/

Mobile Anti-Malware Market Is Thriving Worldwide | Symantec, Sophos, Mcafee
https://istechnologytrend.com/mobile-anti-malware-market-is-thriving-worldwide-symantec-sophos-mcafee/

Ransomware hits Spanish companies sparking WannaCry panic
https://www.zdnet.com/article/ransomware-hits-spanish-companies-sparking-wannacry-panic/#ftag=RSSbaffb68

BlueKeep attacks are happening, but it's not a worm
https://www.zdnet.com/article/bluekeep-attacks-are-happening-but-its-not-a-worm/#ftag=RSSbaffb68

BlueKeep Attacks Arrive, Bearing Cryptomining Malware
https://www.bankinfosecurity.com/bluekeep-attacks-arrive-bearing-cryptomining-malware-a-13341

Ransomware Gangs' Not-So-Secret Attack Vector: RDP Exploits
https://www.bankinfosecurity.com/ransomware-gangs-not-so-secret-attack-vector-rdp-exploits-a-13342

Ransomware: Average Ransom Payout Increases to $41,000
https://www.bankinfosecurity.com/ransomware-average-ransom-payout-increases-to-41000-a-13333

Analiza techniczna trojana bankowego Cerberus
https://www.cert.pl/news/single/analiza-techniczna-trojana-bankowego-cerberus/

C2 With It All: From Ransomware To Carding
https://blog.talosintelligence.com/2019/11/c2-with-it-all.html

Targeted Ransomware Attacks Hit Several Spanish Companies
https://thehackernews.com/2019/11/everis-spain-ransomware-attack.html

Nemty Ransomware Expands Its Reach, Also Delivered by Trik Botnet
https://www.symantec.com/blogs/threat-intelligence/nemty-ransomware-trik-botnet

Threat Spotlight: Neshta File Infector Endures
https://threatvector.cylance.com/en_us/home/threat-spotlight-neshta-file-infector-endures.html

Ciberataques Ransomware - 04 de noviembre 2019
https://www.dsn.gob.es/en/actualidad/sala-prensa/ciberataques-ransomware-04-noviembre-2019

Canadian Nunavut government systems crippled by ransomware
https://www.zdnet.com/article/canadian-nunavut-government-systems-crippled-by-ransomware/#ftag=RSSbaffb68

Get ready for Trump fake ransomware: ‘trump.exe’ and ‘Trump Screen of Death’
https://www.cso.com.au/article/668307/get-ready-trump-fake-ransomware-trump-exe-trump-screen-death/

Experts: Don't reboot your computer after you've been infected with ransomware
https://www.zdnet.com/article/experts-dont-reboot-your-computer-after-youve-been-infected-with-ransomware/

Wizard Spider Upgrades Ryuk Ransomware to Reach Deep into LANs
https://threatpost.com/wizard-spider-upgrades-ryuk-ransomware/149853/

WIZARD SPIDER Adds New Features to Ryuk for Targeting Hosts on LAN
https://www.crowdstrike.com/blog/wizard-spider-adds-new-feature-to-ryuk-ransomware/

Kaspersky: Indonesia Mencatat Deteksi Mobile Malware Paling Banyak di Asia Tenggara
https://akurat.co/iptek/id-847381-read-kaspersky-indonesia-mencatat-deteksi-mobile-malware-paling-banyak-di-asia-tenggara

Carbanak threat details and protection using Trend Micro products
http://bit.ly/2JUm0tW

Banking Trojan targets users of Australian government services
https://australiancybersecuritymagazine.com.au/banking-trojan-targets-users-of-australian-government-services-2/

Emotet, Trickbot, Ryuk – ein explosiver Malware-Cocktail
https://www.heise.de/security/artikel/Emotet-Trickbot-Ryuk-ein-explosiver-Malware-Cocktail-4573848.html

Emotet resurgence packs in new binaries, Trickbot functions
https://www.zdnet.com/article/emotet-resurgence-packs-in-new-binaries-malicious-functions/#ftag=RSSbaffb68

The Malicious Macros Problem May Be Solved Soon
https://www.bankinfosecurity.asia/malicious-macros-problem-may-be-solved-soon-a-13361

Threat Actors Demonstrate Persistent Interest in ATM Malware
https://www.flashpoint-intel.com/blog/threat-actors-demonstrate-persistent-interest-in-atm-malware/

Emotet - What's Changed
https://www.netscout.com/blog/asert/emotet-whats-changed

Specially Crafted ZIP Files Used to Bypass Secure Email Gateways
https://www.bleepingcomputer.com/news/security/specially-crafted-zip-files-used-to-bypass-secure-email-gateways/

Double Loaded Zip File Delivers Nanocore
https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/double-loaded-zip-file-delivers-nanocore/

Emotet resurgence packs in new binaries, Trickbot functions
https://www.zdnet.com/article/emotet-resurgence-packs-in-new-binaries-malicious-functions/

TA542 Brings Back Emotet with Late September Spike
https://www.darkreading.com/threat-intelligence/ta542-brings-back-emotet-with-late-september-spike/d/d-id/1336302

German Dridex spam campaign is unfashionably large
https://www.virusbulletin.com/blog/2019/11/german-malspam-campaign-unfashionably-large/

B.行動安全 / iPhone / Android /穿戴裝置 /App
美國盟邦的政府官員都是WhatsApp惡意程式的攻擊目標
https://www.ithome.com.tw/news/133960

惡意的監控黑鏡:安全網破洞?WhatsApp駭客入侵風暴
https://global.udn.com/global_vision/story/8664/4138954

WhatsApp漏洞遭駭 20國高官手機被接管
https://www.cdns.com.tw/articles/46934

WhatsApp據報大洩用戶資料 牽連20國政要
http://bit.ly/36tKvrx

中國駭客入侵電信商監看簡訊 誰反中就被鎖定攔截
http://m.match.net.tw/pc/news/international/20191101/5075861

間諜軟體監控手機通訊 印度團體籲訂隱私法
https://money.udn.com/money/story/5599/4140690

超7成金融App存漏洞 監管加碼互金App告別野蠻生長
https://news.sina.com.tw/article/20191106/33216292.html

iOS 用戶也中招?蘋果 App Store 有 17 款 App 藏木馬
https://3c.ltn.com.tw/news/38519

蘋果中鏢! 17款惡意App藏木馬病毒
https://www.chinatimes.com/realtimenews/20191105001152-260405?chdtv

信通院評測了13萬個金融類App 70%存高危漏洞
https://www.cnbeta.com/articles/tech/906279.htm

TikTok抖音資安存疑 傳美國政府發動調查
https://www.setn.com/News.aspx?NewsID=628537

Google提供Android資安小提醒,簡單幾步維護自身安全
https://www.techbang.com/posts/73938-google-offers-android-alerts-to-keep-yourself-safe-in-a-few-easy-steps

小心錢包莫名被坑一筆!下載破千萬的安卓鍵盤 App 遭爆當小偷
https://3c.ltn.com.tw/news/38510

Android 表情符號鍵盤暗藏惡意訂閱詐騙機制,四千萬用戶受害
https://www.twcert.org.tw/tw/cp-104-3034-25bdf-1.html

Richart再出招 用手機為手機投保
https://m.ctee.com.tw/livenews/aj/a02611002019102319231414?area=

Android NFC漏洞可被黑客拿來傳播植入惡意軟件
https://www.cnbeta.com/articles/tech/906697.htm

駭客利用Android的NFC漏洞,就能在手機上植入惡意程式
https://www.ithome.com.tw/news/133995

Android NFC 功能出現漏洞 Google 建議暫時停用
http://bit.ly/2WOVlUy

用中國手機很危險!《衛報》專訪澳洲資安專家:中共盜取用戶個資、影響觀點、左右選舉
https://musou.watchout.tw/read/fkM0XYMar1Y96qfBE3I7

騰訊將電影情節變成真?指紋留玻璃杯也可解鎖手機
http://bit.ly/2JZgkz1

谷歌Android 移動操作系統中的零日漏洞被攻擊者利用
https://my.oschina.net/u/3585265/blog/3126825

被自己的手機監控?3種個資最容易外洩
https://www.secretchina.com/news/b5/2019/11/08/912894.html

Google找三家安全廠商幫忙檢查Play Store惡意程式
https://www.ithome.com.tw/news/134075

Android bug lets hackers plant malware via NFC beaming
https://www.zdnet.com/article/android-bug-lets-hackers-plant-malware-via-nfc-beaming/#ftag=RSSbaffb68

Govt. Officials in 20 Nations Targeted Via WhatsApp: Report
https://www.bankinfosecurity.com/govt-officials-in-20-nations-targeted-via-whatsapp-report-a-13337

WhatsApp in Plain Sight: Where and How You Can Collect Forensic Artifacts
https://www.group-ib.com/blog/whatsapp_forensic_artifacts

C.事件 / 駭客 / DDOS / APT / 雲端/暗網/徵才 / 國際資安事件
雷射光就能駭入語音裝置!Amazon Echo、Google Home、iPhone 都中鏢
https://www.inside.com.tw/article/18008-iphone-and-homepod-vulnerable-to-line-of-sight-attacks-using-lasers

Akamai:Google Analytics遭網釣駭客用來改善攻擊成效,但同樣也可用來追蹤網釣活動
https://www.ithome.com.tw/news/134074

五福旅遊網站遭受駭客攻擊!網站暫時停止服務
https://m.ctee.com.tw/livenews/aj/a98623002019110713474526?area=

五福旅遊網站遭受駭客攻擊 已於晚間恢復正常
https://m.ctee.com.tw/livenews/aj/a98623002019110719224418?area=

中山大學逾10位兩岸研究學者 電郵疑遭駭3年
https://www.cna.com.tw/news/firstnews/201911070210.aspx

中山大學10餘學者 電郵遭監看3年
https://m.ltn.com.tw/news/life/paper/1330428

中山大學學者電郵遭駭 陸委會籲校方維護資安
https://living.taronews.tw/2019/11/07/521919/

利用系統漏洞創假帳號 逾10大學教授電郵遭監視3年
https://hk.on.cc/hk/bkn/cnt/cnnews/20191107/bkn-20191107183948273-1107_00952_001.html

兩岸關係學者電郵遭駭 中山大學交叉比對揪出可疑帳號
https://udn.com/news/story/7323/4151633

中山大學多名學者電郵遭駭 陸委會質疑兇手就是中國
http://bit.ly/32oBgpj

中山大學教授電郵遭監控 韓國政團召集人廖達琪也受害
https://www.chinatimes.com/realtimenews/20191107005060-260407?chdtv

防堵中共竊密!台學者籲政府補強大學資安
http://bit.ly/34EluIu

卡巴斯基發現 Chrome 0day 安全漏洞,由朝鮮黑客組織 Lazarus 發起
https://www.chainnews.com/zh-hant/news/223218820169.htm

不能再高了!台大生快查成績…教務處系統遭駭人人87分
https://www.setn.com/News.aspx?NewsID=630835

利用BlueKeep漏洞的攻擊被觀察到但它似乎沒那麼可怕
https://www.cnbeta.com/articles/tech/907427.htm

資安人員發現 BlueKeep 漏洞首宗大規模攻擊事件,用以安裝挖礦程式
https://www.twcert.org.tw/tw/cp-104-3042-fa811-1.html

如果網站還有 Flash 內容,未來 Google 搜尋將直接跳過
https://technews.tw/2019/11/04/the-slow-death-of-flash-continues-as-google-begins-to-remove-it-from-search/

Uber向駭客低頭,用加密貨幣支付10萬美元「封口費」...如今卻被罰了1.48億
http://news.knowing.asia/news/55c13d71-a089-4d00-825e-866fe865fd72

害怕客戶技術遭竊,GitLab 討論禁聘中國和俄羅斯員工
http://technews.tw/2019/11/05/gitlab-considers-ban-hire-in-china-and-russia/

繼電子支付網站後· 馬大內部系統無法登入
https://www.sinchew.com.my/content/content_2134531.html

捷克資安公司 Avast 驚傳遭駭
https://www.twcert.org.tw/tw/cp-104-3041-49071-1.html

資安事件推陳出新 咖啡機也會被駭客入侵
https://www.chinatimes.com/realtimenews/20191102003249-260410?chdtv

駭客入侵線上購物事件頻仍 網購4招自保
http://www.epochtimes.com/b5/19/10/29/n11619844.htm

受思科防火牆漏洞影響,美國電廠遭網路攻擊
https://nosec.org/home/detail/3122.html

俄國駭客消除冬奧禁藥紀錄 魚叉式網路釣魚運用最廣
https://www.ettoday.net/news/20191029/1567791.htm

中國大陸京廣多地超2萬台電腦被挖礦,攻擊者利用永恒之藍漏洞橫向擴散
https://www.bishijie.com/shendu_63228

中國警方破跨國電腦罪案拘10人 對逾2000網站植木馬程式
https://hk.on.cc/hk/bkn/cnt/cnnews/20191102/bkn-20191102050532413-1102_00952_001.html

中國邯鄲警方破獲一起特大破壞計算機信息系統案件
http://www.he.xinhuanet.com/xinwen/2019-11/02/c_1125183537.htm

電玩比毒藥還可怕!中國新規定:年輕電玩迷每天只能玩90分、最晚到晚上10點
http://bit.ly/33EOM9C

打擊電玩成癮的絕招?中國嚴令:晚上10點18歲以下「強制下線」
https://global.udn.com/global_vision/story/8662/4149641

報告:中共駭客瞄準6國竊密
http://bit.ly/2pJZFZ6

印度核電公司證實遭北韓網軍入侵核電廠
http://bit.ly/2JV9vP1

印度某核電廠內網被駭客入侵,目前已有一座反應堆被關閉
https://ek21.com/news/tech/155671/

FireEye:駭客集團大量解析電信網路的簡訊流量
https://www.ithome.com.tw/news/133962

傳中國駭客入侵電信商監看簡訊 鎖定反中內容
https://www.cna.com.tw/news/firstnews/201911010269.aspx

中國黑客組織瞄準六國政府機構 竊機密信息
http://www.epochtimes.com/b5/19/11/4/n11633050.htm

開源軟體 Notepad ++ 新版本命名「解放維吾爾族」,遭中國網軍 DDoS攻擊
https://www.inside.com.tw/article/17981-text-editor-notepad-free-uyghur-edition-china-spam

中共推情緒識別系統 專家:比人臉識別更可怕
http://www.epochtimes.com/b5/19/11/3/n11629742.htm

中共新網規 恐危害美國知識產權
http://www.epochtimes.com/b5/19/11/1/n11626698.htm

中共操作輿論戰 傷害民主自由
https://www.ydn.com.tw/News/358841

中共製造國產大客機的祕密
http://www.epochtimes.com/b5/19/10/19/n11598517.htm

中共國家資助的駭客組織截獲了全球短信
https://news.guo.media/zh/9032/

自由之家:中國網路自由度連續四年墊底
https://www.rti.org.tw/news/view/id/2040470

歐盟電子身份識別系統有漏洞,可讓駭客冒充公民身份
https://times.hinet.net/news/22630551

德國外交部長:華為參與5G建設 資安有疑慮
https://www.chinatimes.com/realtimenews/20191105001744-260408?chdtv

美大規模調查生物醫學竊密 涉案多為華裔
https://www.ntdtv.com/b5/2019/11/05/a102700924.html

美內政部停飛陸製無人機
https://udn.com/news/story/12639/4139859

美內政部 停用陸製無人機 曾被國土安全部質疑竊密 含中國零件也禁飛
https://tw.appledaily.com/international/20191102/AA2YEKCF4ZBJSISMUUMLHDFPQM/

美參議員要求國防部拆除中國監控設備
https://www.voacantonese.com/a/rubio-ask-pentagon-to-remove-chinese-cameras-20191106/5156299.html

參議員致函國防部 促拆除現存華製監控設備
https://hk.on.cc/hk/bkn/cnt/amenews/20191107/bkn-20191107130348317-1107_00972_001.html

美企非法進口販售中國製監控設備給美軍!FBI突擊搜索總部 7人被起訴
https://www.ettoday.net/news/20191108/1575020.htm

美國公司訛稱中國製監控設備本地生產 七人被起訴
http://bit.ly/33rqW13

美國總統個人律師及網路安全顧問朱利安尼遭爆網安意識草率 忘記手機密碼竟求助店家
http://bit.ly/2qfGy9h

美國聯邦調查局FBI示警 美反擊中共人海諜戰及網絡諜戰
https://www.ntdtv.com/b5/2019/11/01/a102698392.html

美智庫分析 中國散播假訊息難影響台灣大選
https://www.cna.com.tw/news/firstnews/201911080020.aspx

國安至上!FCC 嚴防華為設備安裝在美國軍事基地附近
https://news.cnyes.com/news/id/4405610

英移民執法部門前負責人:應建聯合防偷渡情報系統
https://3g.163.com/all/article/ET05CEU10001899N.html

分析百位資安專家思考模式!劍橋科學家的 AI 系統清楚抓出網攻所有細節
https://buzzorange.com/techorange/2019/11/05/cambridge-online-security-ai/

iTutorGroup 稱自己是中國公司網路熱議,平台業者恐成法律漏洞
https://technews.tw/2019/11/06/itutorgroup-claims-that-it-is-a-hot-topic-for-chinese-companies-and-that-platform-operators-are-afraid-of-legal-loopholes/

Chinese APT Group Targets Mobile Networks: FireEye Mandiant
https://www.bankinfosecurity.com/chinese-apt-group-targets-mobile-networks-fireeye-mandiant-a-13345

Cyber-attack hits Utah wind and solar energy provider
https://www.zdnet.com/article/cyber-attack-hits-utah-wind-and-solar-energy-provider/#ftag=RSSbaffb68

Facebook, Mozilla, and Cloudflare announce new TLS Delegated Credentials standard
https://www.zdnet.com/article/facebook-mozilla-and-cloudflare-announce-new-tls-delegated-credentials-standard/#ftag=RSSbaffb68

Your WordPress site is at risk: These precautions and plugins can keep it secure
https://www.zdnet.com/article/18-security-precautions-and-plugins-for-your-wordpress-site/#ftag=RSSbaffb68

An inside look at WP-VCD, today's largest WordPress hacking operation
https://www.zdnet.com/article/an-inside-look-at-wp-vcd-todays-largest-wordpress-hacking-operation/

BlueKeep Attacks Arrive, Bearing Cryptomining Malware
https://www.bankinfosecurity.com/bluekeep-attacks-arrive-bearing-cryptomining-malware-a-13341

BlueKeep exploitation activity seen in the wild
https://doublepulsar.com/bluekeep-exploitation-activity-seen-in-the-wild-bd6ee6e599a6

Microsoft warns users to stay alert for more BlueKeep attacks
https://www.zdnet.com/article/microsoft-warns-users-to-stay-alert-for-more-bluekeep-attacks/

Chinese police arrest operators of 200,000-strong DDoS botnet
https://www.zdnet.com/article/chinese-police-arrest-operators-of-200000-strong-ddos-botnet/#ftag=RSSbaffb68

'Soviet Tactics': Russia Tries Prisoner Swap for Hacker
https://www.bankinfosecurity.asia/blogs/soviet-tactics-russia-tries-prisoner-swap-for-hacker-p-2814

Was North Korea Behind Attack at Indian Nuclear Power Plant
https://www.bankinfosecurity.asia/was-north-korea-behind-attack-at-indian-nuclear-power-plant-a-13363

資訊部-資安儲備人員
https://www.104.com.tw/job/6s7eh

D.資料外洩/個資法/GDPR/網路詐騙/網路釣魚/盜刷/假新聞
雄獅個資遭竊團訟敗訴 消基會要上訴
https://www.cna.com.tw/news/ahel/201911010345.aspx

詐騙駭客開採Firefox臭蟲,讓使用者誤以為系統被駭了
https://ithome.com.tw/news/134055

QR Code支付詐騙頻傳 金管會明訂兩大規範
http://bit.ly/36ximQp

漏洞規則、威脅恐嚇,Airbnb 平臺騙局大揭祕
https://www.chainnews.com/zh-hant/articles/919467256352.htm

你的密碼是生日或123456嗎?BBC教你怎麼設計一組不易被破解的好記密碼
https://www.storm.mg/article/1903327

轉乘便利!捷運民權西路站 警逮7詐騙車手
http://bit.ly/2JMXKKp

錢櫃疑個資大外洩 近70消費者接詐騙電話
https://www.chinatimes.com/realtimenews/20191106001740-260402?chdtv

開心唱歌也有事?錢櫃遭駭洩個資 衰男被騙走60萬辛苦錢
https://www.setn.com/News.aspx?NewsID=630899

錢櫃KTV個資外洩! 詐騙電話「1周35件」遭列高風險平台
https://www.ettoday.net/news/20191106/1573579.htm

疑個資外洩 錢櫃會員逾70人遇詐騙
http://www.ksnews.com.tw/index.php/news/contents_page/0001316795

錢櫃個資外洩 85人K歌被詐
http://bit.ly/2JZhCd4

小心被「盜臉」!個資威脅大魔王:臉部辨識
https://www.cw.com.tw/article/article.action?id=5097552

Booking.com 的網站有漏洞,今天被盜刷了
https://www.backpackers.com.tw/forum/showthread.php?t=10376490

FB再曝隱私漏洞:100位軟體開發者違規訪問用戶數據
https://news.sina.com.tw/article/20191106/33216934.html

Facebook被發現疑用人面辨識 要自拍核實帳號?官方澄清開發動機
http://bit.ly/2pJmaO6

陸「殺豬盤」網戀詐騙!誆單身男女投資騙錢
https://news.tvbs.com.tw/world/1229955

千騙萬騙不離ATM  老梗詐騙莫輕忽
https://times.hinet.net/news/22639852

又來了!Facebook 坦承 Groups API 漏洞讓百名開發人員可存取使用者資料
https://finance.technews.tw/2019/11/07/facebook-groups-api-flaw-exposed-data-to-100-developers/

渣打fb交代「獨立調查」 澄清冇泄客戶資料
http://bit.ly/2K2qNtv

日本經濟新聞遭企業郵件詐騙攻擊,損失超過 32 億日元
https://www.twcert.org.tw/tw/cp-104-3047-7165a-1.html

Canada Credit Union Data Breach Bigger Than First Thought: Desjardins
https://www.securityweek.com/canada-credit-union-data-breach-bigger-first-thought-desjardins

McAfee: Malicious Voicemails Target Office365 Users
https://www.bankinfosecurity.com/mcafee-malicious-voicemails-target-office365-users-a-13327

Scammers are now faking voicemail notifications to steal Office 365 login credentials
https://thenextweb.com/security/2019/10/31/scammers-are-now-faking-voicemail-notifications-to-steal-office-365-login-credentials/

Trio of Web Registrars Disclose 22 Million Accounts Breached
https://www.bankinfosecurity.in/trio-web-registrars-disclose-22-million-accounts-breached-a-13332

Italy's UniCredit: Breach Went Undetected for Four Years
https://www.bankinfosecurity.com/italys-unicredit-breach-went-undetected-for-four-years-a-13347

NCSC Stopped One Million Criminal Frauds
https://www.cybersecurityintelligence.com/blog/ncsc-stopped-one-million-criminal-frauds-4594.html

SSL/TLS Decryption Can Help with GDPR Compliance
https://blog.paloaltonetworks.com/2019/10/network-ssl-decryption-and-gdpr/

Russia’s sovereign internet law comes into force
https://nakedsecurity.sophos.com/2019/11/04/russias-sovereign-internet-law-comes-into-force/

Half of Americans do not believe deepfake news could target them online
https://www.zdnet.com/article/half-of-americans-do-not-believe-deepfake-news-could-target-them-online/#ftag=RSSbaffb68

Business Email Compromise: Battling Advanced Attackers
https://www.bankinfosecurity.com/business-email-compromise-battling-advanced-attackers-a-13353

Phishing Campaign Uses Salary Increase Ploy: Report
https://www.bankinfosecurity.com/phishing-campaign-uses-salary-increase-ploy-report-a-13352

New Credential Phish Targets Employees with Salary Increase Scam
https://cofense.com/new-credential-phish-targets-employees-salary-increase-scam/

Latest BEC Victims: Nikkei, City of Ocala
https://www.bankinfosecurity.com/latest-bec-victims-nikkei-city-ocala-a-13351

Matter concerning transfer of funds at Nikkei Inc.'s US subsidiary
http://www.nikkei.co.jp/nikkeiinfo/en/news/press/597.html

State of Stolen Credentials in the Dark Web from Fortune 500 Companies
https://www.immuniweb.com/blog/stolen-credentials-dark-web-fortune-500.html

Leading Web Domain Name Registrars Disclose Data Breach
https://thehackernews.com/2019/10/domain-name-registrars-hacked.html

5 Places Where Hackers Are Stealthily Stealing Your Data In 2019
https://thehackernews.com/2019/10/hacking-data-breach-protection.html

This is how Google Analytics is abused by phishing scammers
https://www.zdnet.com/article/this-is-how-google-analytics-is-abused-by-phishing-scammers/#ftag=RSSbaffb68

Trend Micro reveals rogue employee sold data of up to 120,000 customers
https://www.zdnet.com/article/trend-micro-reveals-insider-threat-exposing-customer-data/#ftag=RSSbaffb68

Facebook reveals another privacy breach, this time involving developers
https://www.zdnet.com/article/facebook-reveals-another-data-breach-this-time-involving-developers/#ftag=RSSbaffb68

This is the impact of a data breach on enterprise share prices
https://www.zdnet.com/article/this-is-how-a-data-breach-at-your-company-can-hit-share-prices/#ftag=RSSbaffb68

PHISHING DETECTION VIA ANALYTIC NETWORKS
https://blogs.akamai.com/sitr/2019/11/phishing-detection-via-analytic-networks.html

Defenders can discover phishing sites through web analytics IDs
https://www.itworld.com/article/3451987/defenders-can-discover-phishing-sites-through-web-analytics-ids.html

E.研究報告
WebLogic 反序列化漏洞(CVE-2019-2890)分析
https://paper.seebug.org/1069/

防範針對性攻擊( Targeted Attack)入侵的三項建議
https://blog.trendmicro.com.tw/?p=62253

CVE-2019-15846:Exim遠程獲取root權限漏洞分析
https://kknews.cc/code/zy5583q.html

Apache Solr 最新RCE漏洞分析
http://www.sohu.com/a/350953818_354899

Dlink路由器RCE漏洞復現
https://www.jishuwen.com/d/pgDD/zh-tw

分析多款D-Link路由器中未經授權的RCE漏洞
https://www.freebuf.com/vuls/216142.html

uniFuzzer:一款基於Unicorn和LibFuzzer的閉源模糊測試工具
http://www.sohu.com/a/351201968_354899

Android應用邏輯漏洞半自動化挖掘思路
https://zhuanlan.zhihu.com/p/89762770

Web安全-SSRF漏洞利用從淺到深
https://www.cnblogs.com/-qing-/p/11785067.html

Microsoft SharePoint BDC 服務反序列化代碼執行漏洞的分析(CVE-2019-1257)
https://www.4hou.com/vulnerable/21259.html

Penta:一款開源的多合一自動化滲透測試命令行工具
http://www.sohu.com/a/351354060_354899

使用Ghidra對WhatsApp VOIP Stack 溢出漏洞的補丁對比分析
https://www.4hou.com/vulnerable/21141.html

網路攻擊橫向移動說明
https://blog.trendmicro.com.tw/?p=61737

夠Python,一行指令輸出大心
https://cheng-min-i-taiwan.blogspot.com/2019/11/python.html

一行Python代碼畫心型
https://www.twblogs.net/a/5c6ecd89bd9eee7f92eab8e9

查殼好幫手 – Exeinfo PE
https://www.uuu.com.tw/Public/content/article/19/20191028.htm

黑客利用最新的Firefox漏洞誘導用戶尋求“技術支持”
https://www.freebuf.com/news/219216.html

網軍利用谷歌Chrome瀏覽器漏洞,針對朝鮮目標發起水坑攻擊
https://zhuanlan.zhihu.com/p/90018487

谷歌安全研究員發現Libarchive 漏洞影響Linux、FreeBSD和BSD
http://hackernews.cc/archives/28133

增強組織雲端安全,防止資料暴露的六個方法
https://blog.trendmicro.com.tw/?p=62490

CVE-2019-7609 Kibana 遠程代碼執行漏洞攻擊方法和漏洞原理分析
https://www.chainnews.com/zh-hant/articles/866342610095.htm

Chakra漏洞調試筆記5-CVE-2019-0861復現
https://www.anquanke.com/post/id/190533

Pwn2Own競賽第一天就發放195000美元漏洞獎勵
https://nosec.org/home/detail/3143.html

PSIRT Services Framework
https://www.jpcert.or.jp/research/psirtSF.html

Lemon_Duck - IoCs & Attack Scripts
https://github.com/guardicore/labs_campaigns/tree/d8f2cc9d86964bdbfdc035a285e854e7ceca00b3/Lemon_Duck

Top 10 API Management Tools
https://hakin9.org/top-10-api-management-tools/

Let's Learn: In-Depth Reversing of Qakbot "qbot" Banker Part 1
https://www.vkremez.com/2018/07/lets-learn-in-depth-reversing-of-qakbot.html

wuseman/EMAGNET
https://github.com/wuseman/EMAGNET

gchq/CyberChef
https://github.com/gchq/CyberChef

nyxgeek/ntlmscan
https://github.com/nyxgeek/ntlmscan

Analysis of Two Newly Patched Kubernetes Vulnerabilities
https://blog.paloaltonetworks.com/2019/10/cloud-kubernetes-vulnerabilities/

Introducing Cloud Managed Prisma Access
https://blog.paloaltonetworks.com/2019/10/cloud-managed-prisma-access/

Kaspersky identifies mysterious APT mentioned in 2017 Shadow Brokers leak
https://www.zdnet.com/article/kaspersky-identifies-mysterious-apt-mentioned-in-2017-shadow-brokers-leak/#ftag=RSSbaffb68

DarkUniverse – the mysterious APT framework #27
https://securelist.com/darkuniverse-the-mysterious-apt-framework-27/94897/

Kamerka OSINT tool shows your country's internet-connected critical infrastructure
https://www.zdnet.com/article/kamerka-osint-tool-shows-your-countrys-internet-connected-critical-infrastructure/#ftag=RSSbaffb68

ꓘamerka 2.0 aka FIST (Flickr, Instagram, Shodan, Twitter)
https://github.com/woj-ciech/kamerka

Inside the Sophos 2020 Threat Report
https://www.bankinfosecurity.com/interviews/inside-sophos-2020-threat-report-i-4499

BlueKeep exploitation activity seen in the wild
https://doublepulsar.com/bluekeep-exploitation-activity-seen-in-the-wild-bd6ee6e599a6

DNS-over-HTTPS will eventually roll out in all major browsers, despite ISP opposition
https://www.zdnet.com/article/dns-over-https-will-eventually-roll-out-in-all-major-browsers-despite-isp-opposition/#ftag=RSSbaffb68

Playbook Fridays: Component IOC All Data Pull
https://threatconnect.com/blog/playbook-fridays-component-ioc-all-data-pull

F.商業
揮別電商雙11大當機夢魘,momo今年做了哪些準備拚業績、流量都翻倍
http://bit.ly/2PKQvWW

不跟 Chrome 硬拼,微軟發表新版 Edge、Bing 重新定為企業內部專用軟體
https://www.inside.com.tw/article/18000-new-Microsoft-Edge-and-Bing

Team T5深入專研資安 原創研究連美國資安公司都買單
https://www.ithome.com.tw/news/92825

中小企業網路安全設備 研發新世代防火牆
https://www.digitimes.com.tw/tech/dt/n/shwnws.asp?cnlid=&id=0000571967_4BR8U5G47QODYO6U3D07A

Open WebMail 非 Openfind 產品 ,郵件資安防護不容忽視
https://www.openfind.com.tw/taiwan/news_detail.php?news_id=10204

Mozilla to stop supporting sideloaded extensions in Firefox
https://www.zdnet.com/article/mozilla-to-stop-supporting-sideloaded-extensions-in-firefox/#ftag=RSSbaffb68

Check Point發布2020年網路安全趨勢預測
https://www.chinatimes.com/realtimenews/20191105002182-260410?chdtv

Red Hat Enterprise Linux 8.1 adds live Linux kernel patching
https://www.zdnet.com/article/red-hat-enterprise-linux-8-1-adds-live-linux-kernel-patching/#ftag=RSSbaffb68

Zoho hits 50 million business users, launches WorkDrive
https://www.zdnet.com/article/zoho-hits-50-million-business-users-launches-workdrive/#ftag=RSSbaffb68

G.政府
北市資安預算年年升 資安事件年年增
https://www.chinatimes.com/realtimenews/20191101003681-260405?chdtv

北市資安預算增 資安事件跟著增
https://udn.com/news/story/11322/4139782

資安漏洞!議員揭北市府高達27機關資安人力不足
https://news.ltn.com.tw/news/politics/breakingnews/2964850

台美首網路攻防演練 政院資安處:台每月被攻擊3千萬次
https://money.udn.com/money/story/5648/4143093

台美首次舉辦聯合網攻演練!資安處:台灣每月遭攻擊 3000 萬次,比歐洲多上千倍
https://buzzorange.com/techorange/2019/11/05/cyber-security-war/

美台首度網路攻防演練下週登場 實戰測試資
https://living.taronews.tw/2019/10/31/514120/

美台聯手!11/4網路攻防演練逾10國的資安專家參與
https://newtalk.tw/news/view/2019-11-01/320040

台美逾十國網攻實兵演練 美方助台強化資安
https://m.ltn.com.tw/news/politics/breakingnews/2964997

台美網路攻防演練 10餘國參與
https://news.ltn.com.tw/news/politics/paper/1329813

美台創新合作 AIT:強化網路安全確保智財權
https://www.cna.com.tw/news/firstnews/201911020040.aspx

台美合作基礎 AIT:網路安全
http://www.epochtimes.com/b5/19/11/6/n11637417.htm

資安攻防玩真的!政院邀國內外攻擊好手「實兵演練」
https://udn.com/news/story/6656/4147330

美台網路攻防演練 10國測試資安
https://news.pchome.com.tw/politics/idn/20191031/index-57252380388729224001.html

臺美首度聯手舉辦大規模網路攻防演練,臺銀行組藍隊聯隊對抗紅隊攻擊
https://www.ithome.com.tw/news/134003

針對朝鮮?美國和台灣地區首次演練網絡攻防
http://www.hkcna.hk/content/2019/1105/792517.shtml

政院:台美合作辦理資安攻防演練 開創國際資安合作新猷
https://www.ey.gov.tw/Page/9277F759E41CCD91/97b38e63-544c-46d5-a5d5-87350487c4b9

大突破!台美網路軍演將登場 王定宇:兩國首度官方合作
https://www.setn.com/News.aspx?NewsID=628721

美台聯手!11/4網路攻防演練逾10國的資安專家參與
https://zi.media/@newtalktw/post/W2MK2D

網路攻防演練模擬北韓駭客攻擊 AIT:保護民主選舉是主要目標
https://news.ltn.com.tw/news/politics/breakingnews/2966560

美台國際網路攻防演習 4日登場
http://www.worldpeoplenews.com/content/news/319574

台美首度資安實兵演練 進行3天跨國網路攻防
https://www.cna.com.tw/news/firstnews/201911060078.aspx

資安攻防玩真的!政院邀國內外攻擊好手「實兵演練」
https://money.udn.com/money/story/7307/4147330

政府每月遭3000萬次網攻 99%成功攔截
https://m.ltn.com.tw/news/politics/paper/1329814

AIT數位對話論壇 交流台灣資安議題(1) (圖)
http://bit.ly/32t2jQm

AIT數位對話論壇 交流台灣資安議題(2) (圖)
http://bit.ly/2rhEuhu

台美首度資安實兵演練 進行3天跨國網路攻防
https://living.taronews.tw/2019/11/06/520295/

總統:建立安全系統 防選舉被網攻或假訊息攻破
https://www.rti.org.tw/news/view/id/2040400

中國對台網攻嚴重 政院:我們面臨難纏對手
https://news.ltn.com.tw/news/politics/breakingnews/2965007

國軍耗資百餘億建置天眼型警監系統 人臉辨識遭攔下
https://udn.com/news/story/10930/4141612

美軍買大陸DJI空拍機 國軍落實資通紀律支持美製Gopro
https://udn.com/news/story/10930/4141588

台美首度舉行網路攻防演練 AIT:保護選舉是主要挑戰
https://udn.com/news/story/6656/4142979

我與AIT首度演練金融網攻
http://bit.ly/32jRboS

台灣政府網站每月遭攻擊3千萬次 各國來台演練網路攻防大戰一週
https://wp.taronews.tw/2019/11/04/517967/

網攻頻率高居國際前段班 台美合辦國際聯合網路演練
http://bit.ly/2WGXKk4

抵禦境外網攻 美台首度聯合演習
http://bit.ly/33haArV

通訊設備引資安疑慮 立委促把關
https://udn.com/news/story/6656/4144400

TWNIC、TWCERT╱CC年會主題 善用資安聯防 降低資安風險
http://bit.ly/2JQAbjJ

打造資安環境 行政處為受稽單位培訓防護種子
https://www.kmdn.gov.tw/1117/1271/1272/312210/

對台26條 軍聞社IG也遭網軍滲透
http://bit.ly/36InHVg

NCC選前召集全體新聞台「政令宣導」:別搶快、別灌票
https://www.chinatimes.com/realtimenews/20191104003874-260410?chdtv

向已開發國家看齊!科技部盼5年增200億預算充實基礎研究
http://bit.ly/2r68AEy

沈榮津出席資安人培成果發表暨頒獎典禮
http://bit.ly/2Nfjali

金管會修正保險業辦理電子商務應注意事項
http://bit.ly/2ran8D9

金管會公告修正本會排除電子簽章法適用之項目,並自即日生效
http://bit.ly/36CZnnK

台鐵花2千萬辦人臉監控 侵隱私喊卡
http://bit.ly/36xAeL7

楊金龍:央行數位貨幣可能成零售支付最後一哩路
https://www.cna.com.tw/news/afe/201911070161.aspx

中央銀行貨幣與零售支付系統 ―兼論財金公司扮演之角色
https://www.cbc.gov.tw/public/Attachment/911711545071.pdf

資安合作 唐鳳:台美捍衛共同理念
https://udn.com/news/story/6656/4151415

假訊息目的 唐鳳:污染言論環境
http://www.epochtimes.com/b5/19/11/7/n11639900.htm

臺灣AI雲智慧資安升級 提升網路使用環境安全
https://money.udn.com/money/story/10860/4152379

H.ICS/SCADA 工控系統
ZDI將舉辦鎖定工控系統的Pwn2Own駭客競賽
http://pneumatic.ai/?p=226208

保障工業物聯網 (IIoT) 安全:防範醫療界 IIoT 風險
https://blog.trendmicro.com.tw/?p=62218

施耐德電機 成ISA全球網路安全聯盟創始成員
https://udn.com/news/story/7240/4146305

I.教育訓練
TOP 5 Latest Cyber Security Books (2017-2019) | Best & Latest Must-Reads For Any Aspiring or Seasoned Hacker
https://pentestmag.com/top-5-latest-cyber-security-books-2017-2019-best-latest-must-reads-for-any-aspiring-or-seasoned-hacker/

J.物聯網/IOT/人工智慧/車聯網/光聯網/深度學習/機器學習/無人機/人臉辨識
IoT 技術中心斥資上億 德國萊因用物聯三箭打造連網用戶安全體驗
https://www.bnext.com.tw/article/55328/iot_informationsecurity_t%C3%9Cv-rheinland

台電首辦電力資通展開幕 物聯網讓供電更智慧
http://n.yam.com/Article/20191102460070

6.近期資安活動及研討會
 BSides Charleston 11/9
 https://infosec-conferences.com/events-in-2019/bsides-charleston/

 ISDA 白帽駭客入門〈3〉 11/9
 https://www.accupass.com/event/1910240847068228620890

 Kotlin/Everywhere GDG Taoyuan - 運用 Ktor 建置一個以 Kotlin 打造的後端服務  11/9
 https://www.meetup.com/GDGTaoyuan/events/264776152/

 資安健診 11/12
 https://edu.nchc.org.tw/course/one_course_introduction.asp?lms_auto_course_id=3871&from_course_list_url=course_index

 OpenInfra Day Taiwan 11/12
 http://openinfra.digitimes.com.tw/

 108年政府組態基準(GCB)實作研習 11/12 ~ 11/22
 https://register.nccst.nat.gov.tw/Active/registerDetail.do?activeId=1285&activeType=course

 CLEAR Cyber Leaders Conference 11/12 ~ 11/13
 https://infosec-conferences.com/events-in-2019/clear-cyber-leaders-conference/

 108年資安法律案例分享說明會 11/13
 https://register.nccst.nat.gov.tw/Active/registerDetail.do?activeId=1286&activeType=conf

 HITCON DEFENSE CONTEST 企業資安攻防大賽 & SUMMIT 企業安全會議 2019  11/13
 https://hitcon.kktix.cc/events/hitcon-defense-2019?locale=ja

 Windows檔案系統及檔案還原 (6hr)  11/14
 http://www.tabf.org.tw/Training/CourseDetail.aspx?PID=384541

 Digital Internet Summit 11/14
 https://infosec-conferences.com/events-in-2019/digital-internet-summit/

 INTERFACE – Nebraska 11/14
 https://infosec-conferences.com/events-in-2019/interface-nebraska/

 2019 資訊安全論壇 11/14
 http://events.businesstoday.com.tw/2019/ACSI/#signup-sec

 Mozilla 開發者小聚-台灣站  11/15
 https://www.accupass.com/event/1910230900235341736900

 SecureWV – Hack3rCon  11/15 ~ 11/17
 https://infosec-conferences.com/events-in-2019/securewv-hack3rcon/

 2019 Hack ‘n’Roll 駭客嘉年華  11/16 ~ 11/17
 http://hacknroll.splashthat.com/IThomeBanners

 交通大學亥客書院-P006:高階網頁滲透測試 11/16
 https://hackercollege.nctu.edu.tw/?p=1092

 FS-ISAC Fall Summit 11/17 ~ 11/20
 https://infosec-conferences.com/events-in-2019/fs-isac-fall-summit/

 Microsoft IoT in Action 11/20
 https://www.iotinactionevents.com/event/taipei

 LINE將於11月舉辦LINE DEVELOPER DAY 2019  11/20 ~ 11/21
 https://www.digitimes.com.tw/tech/dt/n/shwnws.asp?cnlid=14&id=0000570636_HL57CPQM2H1ZHE71YVI2W

 Infosecurity ISACA North America Expo and Conference 11/20 ~ 11/21
 https://infosec-conferences.com/events-in-2019/isaca-north-america-expo-conference/

 檔案特徵值比對與關鍵字搜尋 (2hr) Open Source數位鑑識工具實務操作 (5hr) 11/21
 http://www.tabf.org.tw/Training/CourseDetail.aspx?PID=384542

 2019 BSI 國際資安標準管理年會  11/22
 https://www.accupass.com/event/1910070533451342891420

 Trend Micro CTF 2019 // Raimund Genes Cup  FINAL / NOVEMBER 23–24, 2019
 https://www.trendmicro.com/en_us/campaigns/capture-the-flag.html

 資安檢核核心技術及進階技術研討會11月26日至11月28日
 http://bit.ly/2TN2UtD

 人資人員必修的職安法規定 11/26
 https://www.accupass.com/event/1909121441141977826554

 模擬案例鑑識分析實務 (6hr)  11/28
 http://www.tabf.org.tw/Training/CourseDetail.aspx?PID=384543

 Global Cybersecurity Coference 11/28~11/29
 https://2019.group-ib.com/

 Cybersecurity Framework 擴大資安視野 Seminar CYBERSEC 101 研討會  11/29
 https://signupcybersec101.ithome.com.tw/

 交通大學亥客書院-B015:惡意程式檢測 11/30
 https://hackercollege.nctu.edu.tw/?p=1098

 亞洲‧矽谷學院108年免費認證考試 11/30
 https://college.asvda.org.tw/

 The Dungeons of Hackers Conference 2019 - 駭客的地下城 11/30
 https://tdohackerparty.kktix.cc/events/tdoh-conf-2019

 Digital Summit Dallas  12/4
 https://infosec-conferences.com/events-in-2019/digital-summit-dallas/

 Kansas City Cyber Security Conference 12/5
 https://infosec-conferences.com/events-in-2019/kc-cyber-security-conference/

 CyberMaryland Conference 12/5 ~ 12/6
 https://infosec-conferences.com/events-in-2019/cybermaryland-conference/

 FutureCon Nashville Cyber Security Conference 12/11
 https://infosec-conferences.com/events-in-2019/futurecon-nashville/

 Utility Cyber Security Forum December 12/11
 https://infosec-conferences.com/events-in-2019/utility-cyber-security-forum-dec/

 交通大學亥客書院-A018:企業網域控管-Active Directory攻擊與防禦  12/14
 https://hackercollege.nctu.edu.tw/?p=1094

 Japan Security Analyst Conference
 https://jsac.jpcert.or.jp/

 PWN2OWN MIAMI – BRINGING ICS INTO THE PWN2OWN WORLD 2020/1/21~23
 https://www.zerodayinitiative.com/blog/2019/10/28/pwn2own-miami-bringing-ics-into-the-pwn2own-world

留言

這個網誌中的熱門文章

9月份資安社群及教育訓練活動分享

9月份資安社群及教育訓練活動分享


 HITCON HackDoor 駭入辦公室 7/2 ~ 9/28
 https://www.accupass.com/event/1906050355291064968019

 MLDM Monday|用開放資料玩出政府創新應用 : 當雨神來臨時  9/2
 https://www.meetup.com/Taiwan-R/events/262992081/

 Taipei Rails Meetup  9/3
 https://www.meetup.com/rails-taiwan/events/dlgzljyzmbfb/

 高雄 Rails Meetup 9/4
 https://www.meetup.com/rails-taiwan/events/qxfvjkyzmbgb/

 Android Code Club(Taipei) 9/4
 https://www.meetup.com/Taiwan-Android-Developer-Study-Group/events/bsctnqyzmbgb/

 SyntaxError 9/4
 https://www.meetup.com/pythonhug/events/tnzzgpyzmbgb/

 工業控制系統資安研討會 9/5
 http://bit.ly/2NsMvt5

 HackingThursday 固定聚會 9/5
 https://www.meetup.com/hackingthursday/events/vkhnnqyzmbhb/

 TWJUG 201909 聚會 9/5
 https://www.meetup.com/taiwanjug/events/264123847/



8月份資安社群及教育訓練活動分享

8月份資安社群及教育訓練活動分享

 HITCON HackDoor 駭入辦公室 7/2 ~ 9/28
 https://www.accupass.com/event/1906050355291064968019

 The Virus Bulletin Conference 2019 8/1
 https://www.virusbulletin.com/blog/2019/06/free-vb2019-tickets-students/

【社群】8/1(四) RASPBERRY PI + ROS,實現無人自駕
 https://ctsphub.tw/20190801_robotnight/

 HackingThursday 固定聚會 8/1
 https://www.meetup.com/hackingthursday/events/vkhnnqyzlbcb/

 資安事件調查實務(上)  8/2
 https://tp2rc.tanet.edu.tw/node/306?fbclid=IwAR11YQmw-28fOA6LUrsNiFKd7ccaAiMa5cZsYf22iRfTUR5LPYXwjqZNo2I

 【CIT週末玩程式】- (8月)認識電腦與程式邏輯訓練(I) 8/3
 https://www.meetup.com/Women-Who-Code-Taipei/events/jtcjfryzlbfb/

 Python 基礎工作坊@TMU 8/6
 https://www.meetup.com/Women-Who-Code-Taipei/events/mfnfcryzlbjb/

5月份資安、社群活動分享

5月份資安、社群活動分享

 108年度資安初學者挑戰活動 (MyFirstCTF) 5/1 ~ 5/10 報名
 https://ais3.org/mfctf/

 HackingThursday 固定聚會  5/2
 https://www.meetup.com/hackingthursday/events/vkhnnqyzhbdb/

 Python 商務網站 * 極速學習 (2019春季 - 台北)  5/2
 https://cjltsod.kktix.cc/events/django-2019-spring-taipei

 國票金控「純網銀鯰魚與資安技術漣漪」日本樂天技術結合台灣AI 人工智慧發表會  5/2
 https://www.accupass.com/event/1904111400151860776797

 資安法 X 技術實務論壇  5/2
 https://csa.kktix.cc/events/csa190502

 國立交通大學 亥客書院 - 基礎網站安全建構實務  5/4
 https://hackercollege.nctu.edu.tw/?p=1045

 ISDA 白帽菁英萌芽計劃II 0505 
 https://reg.shield.org.tw/info.php?no=54

 Pwn入門  5/5
 https://hackersir.kktix.cc/events/fcu190505

 Elixir台灣 台北 Meetup # Monday, May 6, 2019
 https://www.meetup.com/elixirtw-taipei/events/njjhvpyzhbjb/

 公部門之AI資安防護新思維研討會 5/7
 http://www.cisanet.org.tw/News/activity_more?id=MTQzOA==

 向資安服務看齊 我們一起讓資安從「有做」到「有效」  5/8 ~ 5/10
 https://www.informationsecurity.com.tw/Seminar/2019_all/

 資安危機 - 進擊的勒索加密軟體 2019-05-09(四) 14:45 ~ 17:00
 https://www.accupass.com/event/19041703435474776…