資安事件新聞週報 2021/4/5 ~ 2021/4/9
1.重大弱點漏洞/後門/Exploit/Zero Day
美國政府警告Fortinet軟體漏洞恐遭國家駭客開採
https://www.ithome.com.tw/news/143629
Critical Auth Bypass Bug Found in VMware Data Center Security Product
https://thehackernews.com/2021/04/critical-auth-bypass-bug-found-in.html
還不快更新FortiOS?極惡勒索軟體Cring開始攻擊歐洲公司
https://reurl.cc/9Zqpv8
FBI及CISA發現有國家支持的駭客組織,正在針對尚未修補Fortinet軟體已知漏洞的使用單位發動滲透攻擊
https://reurl.cc/V3g13Y
思科修補SD-WAN vManage的遠端程式攻擊漏洞
https://www.ithome.com.tw/news/143708
Oracle PeopleSoft Enterprise PeopleTools存在未明漏洞
https://vul.wangan.com/a/CNVD-2018-08455
VMware 發布多種產品的安全更新
https://www.vmware.com/security/advisories/VMSA-2021-0004.html
VMware Security Advisory VMSA-2021-0005
https://www.vmware.com/security/advisories/VMSA-2021-0005.html
Cisco Security Advisories April 7 2021
https://reurl.cc/Kx5QpM
https://www.cnbeta.com/articles/tech/1110567.htm
SAP NetWeaver Application Server Java跨站脚本漏洞
https://vul.wangan.com/a/CNVD-2020-65561
Castel NextGen DVR 跨站請求偽造漏洞
https://vul.wangan.com/a/CNVD-2021-24901
Watch Out! Mission Critical SAP Applications Are Under Active Attack
https://thehackernews.com/2021/04/watch-out-mission-critical-sap.html
Microsoft Security Update for Edge
https://msrc.microsoft.com/update-guide/
https://msrc.microsoft.com/update-guide/releaseNote/2021-Apr
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-21199
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-21198
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-21197
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-21196
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-21195
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-21194
2.銀行/金融/保險/證券/支付系統/ 新聞及資安
安聯中國人事大調整,涉及壽險、財險、資管公司等
https://news.sina.com.tw/article/20210402/38096230.html
數位金融監理科技 宜在地化
https://www.chinatimes.com/newspapers/20210404000114-260202?chdtv
個資外洩疑慮! 金管會開放金融科技業也能看「個人信用評分」
https://tw.appledaily.com/property/20210405/RKXQAY6KDZCDPMGCLVEDEGC4QI/
金管會:將嚴審將來銀行資安內控
https://reurl.cc/jq2Gvq
揭露金融生態圈戰略! 金融大咖的野心與布局
https://reurl.cc/7yLEgl
3大純網銀對決 憑什麼爭出頭
http://n.yam.com/Article/20210405544690
企金數位需求大 花旗台灣追趕亞太級
https://www.chinatimes.com/realtimenews/20210408005254-260410?chdtv
虛擬券商藍圖未來將顛覆台灣證券市場
https://finance.ettoday.net/news/1956232
5-star customer service: fraudsters launch massive campaign against Indonesia’s major banks on Twitter
https://reurl.cc/zbLNbQ
Financial Cyberthreats in 2020
https://securelist.com/financial-cyberthreats-in-2020/101638/
3.電子支付/行動支付/pay/資安
台灣電子支付突破 1200 萬人使用!但支付 app 可能造成什麼不平等
https://buzzorange.com/2021/04/09/payment-app/
街口條款!金管會擬出手,明定電子支付平台不能賣共同基金
https://www.inside.com.tw/article/23091-jkos-clause-fsc
電子支付平台不得進行共同基金銷售活動
https://reurl.cc/yn0MAl
悠遊卡業績未達標 柯P怪林向愷抗命不做電子支付
https://www.chinatimes.com/realtimenews/20210409004874-260407?chdtv
LINE Pay Money即起開放繳納中信卡帳單
https://ec.ltn.com.tw/article/breakingnews/3494777
嗶悠遊卡方便但沒旅平險保障 跨縣旅行記得亮卡刷
https://www.mirrormedia.mg/story/20210409money002/
悠遊付進駐連鎖藥局 丁丁藥局滿額回饋10%
https://www.cardu.com.tw/news/detail.php?43001
政府剝不掉的「蝦皮」,下一步該怎麼走
https://www.inside.com.tw/article/23100-shopee-next-step
手機支付掛點!英男停車沒帶錢貼紙條「求別開單」 回來意外撿到一張黃牌
https://www.ettoday.net/dalemon/post/53971
中國央行四部委發文:支持符合條件的外資機構在海南依法獲取支付牌照
https://news.sina.com.tw/article/20210409/38165730.html
基隆稅局增「行動支付」 掃描QR-CODE條碼線上繳稅
https://reurl.cc/3NWYkL
汽機車牌照稅4月開徵 信用卡、行動支付繳稅回饋大車拚
https://news.cnyes.com/news/id/4623543
陸大媽買鞋行動支付 「惡劣小動作」輸入數字店員氣炸
https://reurl.cc/qm2Np0
四大超商今開始代收捐款 LINE Pay首度加入免手續費
https://tw.appledaily.com/life/20210405/I5JLFLTLMZE7RMLRXMAA5ZUMNQ/
4.加密貨幣/挖礦/區塊鍊/智能合約 資安
美國最大加密貨幣交易所Coinbase獲美SEC核准 4月14日直接上市
https://reurl.cc/NXLXVe
Archegos爆倉敲響金融警鐘 華爾街沒說的操盤秘密
https://www.chinatimes.com/realtimenews/20210403000026-260410?chdtv
ETH創歷史新高2,151|1.61億以太坊選擇權下週到期;Filecoin單月爆漲5倍上230美元
https://www.blocktempo.com/161m-ethereum-options-expiry-china-is-crazy-for-folecoin/
Trezor|冒牌冷錢包上架蘋果App Store!用戶不查遭詐「3,000萬台幣BTC」
https://www.blocktempo.com/app-store-scam-by-faking-trezor-app/
去中心化域名服務項目 Handshake 已修復通貨膨脹漏洞
https://www.chainnews.com/zh-hant/news/866906720286.htm
深度專欄|中國公安部研究員 : 基於區塊鏈的「數位貨幣犯罪資產」追蹤及取證
https://www.blocktempo.com/research-on-tracking-criminal-digital-currency-assets/
疫情加速電子支付普及化 香港宜打造環球數字貨幣中心
https://www.hkcd.com/content/2021-04/07/content_1260332.html
疫情加速美國成第 2 大行動支付市場,2025 年過半手機將採非接觸式支付
https://technews.tw/2021/04/07/contactless-mobile-payments-surpass-half-smartphone-users/
5.資安事件新聞
A.病毒木馬 / 殭屍網路 / 勒索軟體 / Adware /APT /後門程式/IOC
The "Fair" Upgrade Variant of Phobos Ransomware
https://blog.morphisec.com/the-fair-upgrade-variant-of-phobos-ransomware
勒索軟體 WannaCry 重出江湖!近半年受害者暴增 40 倍
https://3c.ltn.com.tw/news/43822
Muhstik殭屍網絡變種攻擊容器管理系統Kubernetes,漏洞危及2萬台服務器安全
https://s.tencent.com/research/report/1289.html
美國第6大學區遭勒索軟體入侵 傳支付逾1400萬元贖金
https://news.ltn.com.tw/news/world/breakingnews/3488288
美FCC籲堵華為禁令漏洞 荷媒爆華為藏後門
https://reurl.cc/KxL0dn
驚!日月光集團遭勒索病毒攻擊 一度關閉系統
https://tw.appledaily.com/property/20210405/JIX4LGXOQBFHZHK6NFTKPRYCOU/
要求4,000萬元贖金,傳支付逾50萬元脫困
https://reurl.cc/E2LmOv
駭客濫用GitHub Actions功能以於GitHub伺服器上挖礦
https://www.ithome.com.tw/news/143634
無線 IoT 設備製造商 Sierra Wireless 遭勒贖攻擊
https://www.informationsecurity.com.tw/article/article_detail.aspx?tv=12&aid=9138
Evolution and rise of the Avaddon Ransomware-as-a-Service
https://securityaffairs.co/wordpress/116282/cyber-crime/avaddon-ransomware-evolution.html
Cybercrime, great wave of IcedID attacks via mail zip attachments
https://www.difesaesicurezza.com/en/defence-and-security/cybercrime-great-wave-of-icedid-attacks-via-mail-zip-attachments/
Povlsomware Ransomware Features Cobalt Strike Compatibility
https://www.trendmicro.com/en_us/research/21/c/povlsomware-ransomware-features-cobalt-strike-compatibility.html?utm_medium=smk
Ransomware gang wanted $40 million in Florida schools cyberattack
https://www.bleepingcomputer.com/news/security/ransomware-gang-wanted-40-million-in-florida-schools-cyberattack/
Pre-Installed Malware Dropper Found On German Gigaset Android Phones
https://thehackernews.com/2021/04/pre-installed-malware-dropper-found-on.html
Experts uncover a new Banking Trojan targeting Latin American users
https://thehackernews.com/2021/04/experts-uncover-new-banking-trojan.html
Researchers uncover a new Iranian malware used in recent cyberattacks
https://thehackernews.com/2021/04/researchers-uncover-new-iranian-malware.html
Hackers Exploit Unpatched VPNs to Install Ransomware on Industrial Targets
https://thehackernews.com/2021/04/hackers-exploit-unpatched-vpns-to.html
PHP Site's User Database Was Hacked In Recent Source Code Backdoor Attack
https://thehackernews.com/2021/04/php-sites-user-database-was-hacked-in.html
Hackers Targeting professionals With 'more_eggs' Malware via LinkedIn Job Offers
https://thehackernews.com/2021/04/hackers-targeting-professionals-with.html
Yanbian Gang Malware Continues with Wide-Scale Distribution and C2
https://www.riskiq.com/blog/external-threat-management/yanbian-gang-malware-distribution/
Zeppelin Ransomware Threat Assessment
https://unit42.paloaltonetworks.com/ransomware-threat-assessments/3/
https://github.com/pan-unit42/iocs/blob/master/Zeppelin_IOCs.text
Aurora Campaign: Attacking Azerbaijan Using Multiple RATs
https://blog.malwarebytes.com/threat-analysis/2021/04/aurora-campaign-attacking-azerbaijan-using-multiple-rats/
A Technical Analysis of the Ares Banking Trojan
https://www.zscaler.com/blogs/security-research/ares-malware-grandson-kronos-banking-trojan
New Wormable Android Malware Spreads by Creating Auto-Replies to Messages in WhatsApp
https://research.checkpoint.com/2021/new-wormable-android-malware-spreads-by-creating-auto-replies-to-messages-in-whatsapp/
B.行動安全 / iPhone / Android /穿戴裝置 /App / 5G / 即時通訊
蘋果關閉iOS 14.4.1認證,無法從iOS 14.4.2 降級了
https://mrmad.com.tw/apple-stop-ios14-4-1-signing
中國駭客組織為竊取5G機密,鎖定全球電信業者
https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=9155
Can We Stop Pretending SMS Is Secure Now
https://krebsonsecurity.com/2021/03/can-we-stop-pretending-sms-is-secure-now/
Google limits which apps can access the list of installed apps on your device
https://thehackernews.com/2021/04/google-limits-which-apps-can-access.html
WhatsApp-based wormable Android malware spotted on the Google Play Store
https://thehackernews.com/2021/04/whatsapp-based-wormable-android-malware.html
Android to Support Rust Programming Language to Prevent Memory Flaws
https://thehackernews.com/2021/04/android-to-support-rust-programming.html
C.事件 / 駭客 / DDOS / APT / 雲端/ 暗網/ 徵才 / 國際資安事件
從太陽風網路戰談資安
https://talk.ltn.com.tw/article/paper/1440893
黑客威脅4大資訊安全+防範建議 防毒軟件、密碼必備仲要做樣嘢
https://reurl.cc/E2Lm9A
臺灣資安研究之光!戴夫寇爾勇奪Pwn2Own冠軍,首度有臺灣隊伍獲獎
https://www.ithome.com.tw/news/143753
涉嫌駭入移民局系統 反貪會逮捕4名技術員
https://reurl.cc/L0gMWa
北韓駭客Lazarus利用新的後門程式對南非貨運公司下手
https://www.ithome.com.tw/news/143751
陸監管機構批准騰訊私有化搜狗
https://www.chinatimes.com/realtimenews/20210409004103-260410?chdtv
狂勝歐陽妮妮! 中國記者採訪工安意外被阻擋 口袋莫名「多出8千塊」
https://reurl.cc/WEg1Gx
美國擬立法保護關鍵基礎設施抵禦駭客攻搫
https://blog.twnic.tw/2021/04/05/17808/
中國駭客入侵印度電力系統及疫苗生產商
https://www.ptt.cc/bbs/nCoV2019/M.1614830997.A.C5F.html
他們已鎖定能說好中國故事的「台灣素楷模」
https://reurl.cc/3Npxbj
中共如何全面統戰臺灣
https://reurl.cc/NXLrqx
中製硬碟 險成空軍雲端系統
https://news.ltn.com.tw/news/politics/paper/1441243
中共黑客如何侵入微軟?疑似通過事前竊取的個資
https://www.ntdtv.com/b5/2021/04/08/a103092011.html
從9歲童到歌手…中國政府被爆握700美國人黑名單
https://reurl.cc/WEg1N5
上海公安文件外洩 爆監控5千外國人
https://tw.appledaily.com/headline/20210402/MFNR4S3AWZHHZFNDFY7YIEK56M/
上海公安文件流出 驚見5000外國人被入庫、維吾爾人成「疑似恐怖分子」
https://tw.appledaily.com/international/20210401/U7DBAN4BAZHYXLH36KZNZM2EBA/
中共爆監控外國人信息 美國民眾:不會去旅遊
https://reurl.cc/mq4nxA
上海公安數據庫洩露揭示中國對維族人的監視
https://www.abc.net.au/chinese/2021-04-01/shanghai-files-shed-light-on-china-surveillance-state/100044228
中國宜堅持發展自主操作系統
https://www.eet-china.com/mp/a44937.html
胡劍江:基本法附件修訂案為「愛國者治港」奠定堅實保障
https://www.wenweipo.com/a/202104/03/AP6067f7cae4b04e1918cedde8.html
各界港青堅定支持完善選舉制度 落實「愛國者治港」原則
https://www.wenweipo.com/a/202104/02/AP6066d06ee4b04e1918ceb6db.html
人大為港完善選舉制度 助「一國兩制」行穩致遠
http://www.hkcd.com/content/2021-04/03/content_1259844.html
中聯辦指中央改善選舉制度獲香港各界支持
https://www.881903.com/news/local/2381707
中國外交部駐港公署:美方沒有資格打著價值觀的幌子插手香港事
http://www.hkcna.hk/content/2021/0402/889050.shtml
抓到宿敵把柄? 伊朗宣布逮捕「以色列間諜」
https://tw.appledaily.com/international/20210405/O7T7LHZMBJF3NOKAOLIFRJUYYE/
Biden's cyber executive order to include new rules for federal agencies, contractors
https://www.cyberscoop.com/cyber-executive-order-supply-chain-solarwinds/
Australians flagged in Shanghai security files which shed light on China's surveillance state and monitoring of Uyghurs
https://www.abc.net.au/news/2021-04-01/shanghai-files-shed-light-on-china-surveillance-state/100040896
Security threats increasing with 70% using personal devices for work
https://www.helpnetsecurity.com/2021/03/16/using-personal-devices-for-work/
FBI and CISA warn of state hackers attacking Fortinet FortiOS servers
https://www.bleepingcomputer.com/news/security/fbi-and-cisa-warn-of-state-hackers-attacking-fortinet-fortios-servers/
Myanmar orders wireless internet shutdown until further notice: telecoms sources
https://www.reuters.com/article/us-myanmar-politics-internet-idUSKBN2BO5H2
DeepDotWeb Admin Pleads Guilty to Money Laundering Charges
https://thehackernews.com/2021/04/deepdotweb-admin-pleads-guilty-to-money.html
NIST and HIPAA: Is There a Password Connection
https://thehackernews.com/2021/04/nist-and-hipaa-is-there-password.html
APT Actors Gaining Initial Access for Attacks
https://www.ic3.gov/Media/News/2021/210402.pdf
MITRE Madness: A Guide to Weathering the Upcoming Vendor Positioning Storm
https://thehackernews.com/2021/04/mitre-madness-guide-to-weathering.html
Hackers From China Target Vietnamese Military and Government
https://thehackernews.com/2021/04/hackers-from-china-target-vietnamese.html
資訊安全專員
https://www.104.com.tw/job/78mog
【資安所】業務經理
https://www.104.com.tw/job/78q4i
【IT】資安駐點工程師 - 2100178
https://www.104.com.tw/job/78hfu
業務專員 - 資安網路(無經驗可)
https://www.104.com.tw/job/78ftr
資安分析主任
https://nabi.104.com.tw/job/78qnf?moveto=skillList&content=10002948
D.資料外洩/個資法/GDPR/網路詐騙/網路釣魚/盜刷/假新聞
網傳「台灣空軍四架F16戰機叛逃...是駐紮在桃園機場第16航空聯隊的飛機...飛機編號為TY160531」
https://tfc-taiwan.org.tw/articles/5241
趨勢科技聯手165防詐騙專線,公布2021第一季三大熱門詐騙手法
https://www.ithome.com.tw/news/143700
駭客賤賣價值近4千萬美元的禮物卡資料,疑自禮物卡交易網站竊得
https://www.ithome.com.tw/news/143710
詐騙犯給反詐刑警發「通緝令」,全程哈哈哈哈
https://news.sina.com.tw/article/20210403/38099868.html
網路時代個資透明 免費Wi-Fi恐造成資安風險
https://www.peopo.org/news/524955
假冒Netflix「免費看2個月」 500用戶信用卡個資遭竊
https://reurl.cc/4yOpdY
Google Play驚見假Netflix!誘拐用戶下載竊個資
https://newtalk.tw/news/view/2021-04-09/561102
「追劇兩個月免錢」! 惡意軟體騙多人上當 500人個資遭竊取
https://gotv.ctitv.com.tw/2021/04/1746466.htm
駭客把臉書總裁小紮的電話掛到了互聯網上
https://gnews.org/zh-hant/1067713/
臉書5億個資外洩!台灣73萬用戶上榜 傳創辦人祖克柏也受害
https://www.chinatimes.com/realtimenews/20210404002871-260410?chdtv
驚! 臉書5億餘筆個資外洩 台灣逾73萬名用戶資訊恐遭駭客利用
https://news.ltn.com.tw/news/world/breakingnews/3489389
Facebook 又爆個資外洩,5.33 億用戶個資被發布在駭客論壇上
https://technews.tw/2021/04/04/facebook-hudson/
5.33億Facebook用戶數據被洩露,發言人:2年前的舊消息
https://finance.sina.com.cn/tech/2021-04-04/doc-ikmxzfmk3253016.shtml
【臉書遭駭】台灣73萬用戶受害 連薩克柏手機號碼也曝光
https://tw.appledaily.com/international/20210404/DJWGPNGWBNH7BLIABFODORV35M/
快查!Facebook爆台灣73萬用戶個資遭竊 超神網站讓你秒查自己是否「中招」
https://reurl.cc/E2yRja
【臉書遭駭】香港300萬中國67萬個資外洩 專家:改密碼、防詐騙簡訊
https://tw.appledaily.com/international/20210404/EBAYXMRF7FC2HDRGQNWBAWLGLY/
5 億 3,300 萬 Facebook 用戶個人資料被放上駭客討論區任人下載
https://www.pcmarket.com.hk/533-million-facebook-user-personal-information-leaked/
逾5億用戶個資遭貼至駭客論壇 臉書:2019年事件早已修復
https://www.cna.com.tw/news/firstnews/202104040010.aspx
逾5億臉書用戶個資 張貼線上駭客論壇免費使用
https://udn.com/news/story/7088/5364685?from=udn-ch1_breaknews-1-0-news
逾5億用戶個資外洩 臉書:有心人抓取非遭駭
https://www.truemii.com.tw/content/20210408400429-990105
香港300萬中國67萬個資外洩 專家:改密碼、防詐騙簡訊
https://tw.appledaily.com/international/20210404/EBAYXMRF7FC2HDRGQNWBAWLGLY/
FB資料外洩涉300萬香港用戶 林鄭行會立會成員中招
https://reurl.cc/DvLxoN
私隱專員公署就FB用戶資料疑遭外洩展開循規審查
https://reurl.cc/yn4O5E
自己資料自己救!極嚴重保安漏洞:Facebook 資料外洩事件
https://reurl.cc/WEMzaZ
Facebook 個資5.33 億外洩,但官方不打算告訴你「因為知道了也沒用」
https://www.techbang.com/posts/85781-facebook-responds-533-million-data-leak-notify-users
政府收緊公司查冊 財庫局許正宇:有人將資料武器化 應堵漏洞
https://reurl.cc/yn47Ra
只有黨能查!限公司查冊遭批 港府反控:有人將資料武器化
https://ec.ltn.com.tw/article/breakingnews/3489613
LinkedIn 三分之二用戶資料遭轉售 駭客4位數拍賣用戶資料
https://reurl.cc/2bemjm
LinkedIn驚爆資安疑慮!5億用戶個資被放上駭客論壇拍賣
https://newtalk.tw/news/view/2021-04-09/560997
假資安公司「SecuriElite」針對資安人員發起社交工程攻擊
https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=9158
隱私全被看光!特斯拉 Model 3 車內鏡頭遭破解,駭客釋出多段車廂內影片
https://technews.tw/2021/04/09/greentheonly-tesla-model-3/
網傳車內監控畫面曝光 特斯拉:北美以外錄影功能未開通
https://reurl.cc/dVgWn2
好友皆可看!美女師15min啪啪片PO網 學生群組廣傳:要告訴老師嗎
https://gotv.ctitv.com.tw/2021/04/1746337.htm
533 Million Facebook Users' Phone Numbers and Personal Data Leaked Online
https://thehackernews.com/2021/04/533-million-facebook-users-phone.html
Phishing Trends with PDF Files in 2020
https://unit42.paloaltonetworks.com/phishing-trends-with-pdf-files/
E.研究報告
EP42 - 資安攻擊的七個步驟|網路攻擊鏈
https://open.firstory.me/story/ckn3lteeyz99e0823evu40upd
新世代主動式防禦興起,牽制駭客也成攻防手段之一(上)
https://www.ithome.com.tw/tech/143477
新世代主動式防禦興起,牽制駭客也成攻防手段之一(下)
https://www.ithome.com.tw/tech/143478
Hancitor's Use of Cobalt Strike and a Noisy Network Ping Tool
https://unit42.paloaltonetworks.com/hancitor-infections-cobalt-strike/
360發布“安全漏洞”雙報告政產學研發聲力挺“白帽黑客”
http://www.chinanews.com/business/2021/04-03/9447033.shtml
「安全漏洞」頻發敲響警鐘360 攜手政產學研為「白帽群體」保駕護航
http://www.geekpark.net/news/276152
復現影響79款Netgear路由器高危漏洞
https://zhuanlan.zhihu.com/p/361885899
用Rust重寫Linux內核,這可能嗎
https://www.sohu.com/a/458893575_355140
CTF-WEB中上傳漏洞的經典考法
https://zhuanlan.zhihu.com/p/362148183
Zero click vulnerability in Apple’s macOS Mail
https://mikko-kenttala.medium.com/zero-click-vulnerability-in-apples-macos-mail-59e0c14b106c
THIS MAN THOUGHT OPENING A TXT FILE IS FINE, HE THOUGHT WRONG. MACOS CVE-2019-8761
https://www.paulosyibelo.com/2021/04/this-man-thought-opening-txt-file-is.html
Koadic
https://github.com/zerosum0x0/koadic
Attackers are abusing GitHub infrastructure to mine cryptocurrency
https://securityaffairs.co/wordpress/116294/malware/github-infrastructure-attacks-miner.html
RedTeamCCode
https://github.com/Mr-Un1k0d3r/RedTeamCCode/blob/main/unhook_crowdstrike_64.c
Code Scanning a GitHub Repository using GitHub Advanced Security within an Azure DevOps Pipeline by Kevin Alwell
https://hakin9.org/code-scanning-a-github-repository-using-github-advanced-security/
Cybercrime, grande ondata di attacchi IcedID via allegati zip
https://www.difesaesicurezza.com/areariservatacat/cybercrime-grande-ondata-di-attacchi-icedid-via-allegati-zip/
ToothPicker - An In-Process, Coverage-Guided Fuzzer For iOS
https://hakin9.org/toothpicker-an-in-process-coverage-guided-fuzzer-for-ios/
Navigating Transformation with Managed Cybersecurity Services
https://www.tripwire.com/state-of-security/security-data-protection/navigating-transformation-with-managed-cybersecurity-services/
FBI: APTs Actively Exploiting Fortinet VPN Security Holes
https://threatpost.com/fbi-apts-actively-exploiting-fortinet-vpn-security-holes/165213/
Feds say hackers are likely exploiting critical Fortinet VPN vulnerabilities
https://arstechnica.com/gadgets/2021/04/feds-say-hackers-are-likely-exploiting-critical-fortinet-vpn-vulnerabilities/
APT10: sophisticated multi-layered loader Ecipekac discovered in A41APT campaign
https://securelist.com/apt10-sophisticated-multi-layered-loader-ecipekac-discovered-in-a41apt-campaign/101519/
Play Wi-Fi Hacking Games Using Microcontrollers to Practice Wi-Fi Attacks Legally
https://null-byte.wonderhowto.com/how-to/play-wi-fi-hacking-games-using-microcontrollers-practice-wi-fi-attacks-legally-0238563/
ElegyRAT-C-Sharp
https://github.com/zhaoweiho/ElegyRAT-C-Sharp
Fuzzing sockets: Apache HTTP, Part 1: Mutations
https://securitylab.github.com/research/fuzzing-apache-1/
Pentesting a banking FTP service
https://blog.lexfo.fr/pentesting-pesit-ftp.html
Why Banks Are Still A Top Target For DDoS Attacks
https://www.imperva.com/blog/why-banks-are-still-a-top-target-for-ddos-attacks/
Navigating Cyber 2021
https://www.fsisac.com/hubfs/GIOReport2021/NavigatingCyber2021.pdf
11 Useful Security Tips for Securing Your AWS Environment
https://thehackernews.com/2021/04/11-useful-security-tips-for-securing.html
Rocke Group Actively Targeting the Cloud: Wants Your SSH Keys
https://www.intezer.com/blog/cloud-security/rocke-group-actively-targeting-the-cloud-wants-your-ssh-keys/
EtterSilent: The Underground’s New Favorite Maldoc Builder
https://intel471.com/blog/ettersilent-maldoc-builder-macro-trickbot-qbot/
Iran’s APT34 Returns with an Updated Arsenal
https://research.checkpoint.com/2021/irans-apt34-returns-with-an-updated-arsenal/
What is Astro Locker Team
https://news.sophos.com/en-us/2021/03/31/sophos-mtr-in-real-time-what-is-astro-locker-team/
https://github.com/sophoslabs/IoCs/blob/master/Ransomware-MountLocker.csv
https://github.com/sophoslabs/IoCs/blob/master/Ransomware-AstroLocker.csv
APT-C-23 Threat Group Uses Voice Changing Software in Espionage Attempt
https://www.cadosecurity.com/post/threat-group-uses-voice-changing-software-in-espionage-attempt
The Leap of a Cycldek-related Threat Actor
https://securelist.com/the-leap-of-a-cycldek-related-threat-actor/101243/
F.商業
電信三雄強攻新創 加碼孵金蛋
https://money.udn.com/money/story/5612/5364434
AWS網頁應用程式防火牆現可辨識並阻擋機器人流量
https://www.ithome.com.tw/news/143619
Cisco推出全新SASE架構全面保護端點至雲端,並優化雲端原生平台SecureX
https://www.informationsecurity.com.tw/article/article_detail.aspx?tv=11&aid=9141
Armv9 是 Arm 針對未來人工智慧、安全性與特定運算需求的解決方案
https://www.informationsecurity.com.tw/article/article_detail.aspx?tv=11&aid=9143
帆宣攜手逢甲 打造亞太區第1座5G專網智慧城市實驗場域
https://money.udn.com/money/story/5612/5377340
Fujitsu與趨勢科技合作企業 5G 專網資安
https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=9153
主動防禦遠端存取的資安威脅
http://n.yam.com/Article/20210409221631
G.政府
打造資安國家隊逾900人才缺口 政府多管道補強
https://news.ltn.com.tw/news/politics/breakingnews/3488173
國安局忠誠儀測室有四部冷氣直吹 「儀測員」送美受訓
https://udn.com/news/story/10930/5355698
國安局引用法核潛艦南海活動公開情報 指區域情勢不安
https://udn.com/news/story/10930/5361231
紅鏈滲透 國安局:情況非常嚴峻
https://ec.ltn.com.tw/article/paper/1440517
國安局新狙擊槍模組完成測試 採購五千發狙擊彈護層峰
https://udn.com/news/story/10930/5355817
國安局:中共111年召開20大 恐增台灣國安壓力
https://www.cna.com.tw/news/aipl/202103310313.aspx
台灣軍情萎縮 影響情報外交
https://reurl.cc/4yvyqL
資安疑慮》立委促建立供應商制度 過濾資格
https://news.ltn.com.tw/news/politics/paper/1441244
政府網防機制 國安局揪五大問題
https://news.ltn.com.tw/news/politics/paper/1441245
第六期國家資通安全法:佈建「主動防禦」聯網,躍升亞太資安樞紐
https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=9142
防範公務機密被駭 南市工務局辦講習強化資安維護
https://m.news.sina.com.tw/article/20210409/38162406.html
台積電、世芯晶片助中國製飛彈?王美花:未涉軍用
https://buzzorange.com/techorange/2021/04/09/china-missiles-use-tsmc-chip/
立院審太空發展法草案 吳政忠備詢
https://reurl.cc/R6gXLn
科技部定於4月28日舉辦「沙崙智慧綠能科學城C區資安暨智慧科技產業研發大樓招商說明會」
https://reurl.cc/g83Mep
110年「智慧製造資安強化推動計畫」
https://tiip.itnet.org.tw/newsPage.php?pk=391
H.工控系統/ICS/SCADA/IOT/物聯網/車聯網/電動車 相關資安
Another Mirai variant used in attempted hacks on routers, switches
https://www.cyberscoop.com/mirai-unit-42-research-botnet/
智慧家庭裝置帶來了方便 卻讓家暴受害者比例漸增
https://reurl.cc/AgLA9K
嬰兒房監視器傳詭異「救救我」求助聲 網友驚:超恐怖
https://reurl.cc/zb4Qm0
SCADAfence: OT高端網路安全解決方案解決製造業的安全挑戰
https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=9140
IT/OT稽核關鍵指標: ISO 27001及 IEC 62443
https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=9154
ICS Advisory ICSA-21-091-01
https://us-cert.cisa.gov/ics/advisories/icsa-21-091-01
I.教育訓練
Reverse Engineering 101
https://infosecwriteups.com/reverse-engineering-101-7acd1e6abfd8
Reverse-Engineering
https://github.com/mytechnotalent/Reverse-Engineering
How Cyrebro Can Unify Multiple Cybersecurity Defenses to Optimize Protection
https://thehackernews.com/2021/04/how-cyrebro-can-unify-multiple.html
Get Started in Cybersecurity
https://www.sans.org/cybersecurity-careers/?utm_source=Twitter&utm_campaign=New%20to%20Cyber
How the Work-From-Home Shift Impacts SaaS Security
https://thehackernews.com/2021/04/how-work-from-home-shift-impacts-saas.html
How Cyrebro Can Unify Multiple Cybersecurity Defenses to Optimize Protection
https://thehackernews.com/2021/04/how-cyrebro-can-unify-multiple.html
J.人工智慧/AI/ML/人臉辨識
人工智慧加速產業轉型 AI數據替製造業接上明日新電力
https://www.digitimes.com.tw/iot/article.asp?cat=130&cat1=40&cat2=13&id=0000607579_MWF47DB88SVDWJ8JVZP5X
有賴通訊科技軟實力打造專網智慧工廠
https://udn.com/news/story/11726/5376280
YouTube「違規影片收視率」大幅降低 透過 AI 人工智慧有效過濾違規影片
https://www.cool3c.com/article/160861
6.近期資安活動及研討會
定期小聚暨GDG Taoyuan - GCP 4/11
https://www.meetup.com/GDGTaoyuan/events/277144104
MLDM Monday @ 三創育成 | 不平衡數據之機器學習分析流程:Python 程式手把手實作 4/12
https://www.meetup.com/Taiwan-R/events/277082073/
Android Code Club(Taipei) 4/14
https://www.meetup.com/Taiwan-Android-Developer-Study-Group/events/bkzcmryccgbsb/
高雄 Rails Meetup 4/14
https://www.meetup.com/rails-taiwan/events/qxfvjkyccgbsb/
Scala Taiwan #38 - Mini One-afternoon Conference 4/17
https://www.meetup.com/Scala-Taiwan-Meetup/events/277230320/
技術管理者論壇 - 商業與技術的平衡 4/17
https://techxleadership.kktix.cc/events/techxleadership-2021-apr
CHECK POINT EXPERIENCE APAC 2021 4/20 ~ 4/21
https://virtual-cpx-apac.checkpoint.com/
高雄 Rails Meetup 4/21
https://www.meetup.com/rails-taiwan/events/qxfvjkyccgbcc/
Android Code Club(Taipei) 4/21
https://www.meetup.com/Taiwan-Android-Developer-Study-Group/events/bkzcmryccgbcc/
Ubuntu Core 20 台北研討會 4/21
https://docs.google.com/forms/d/e/1FAIpQLScUZVv4yiSOBG87vOsRbhKRG50KXWIMw5ESIWzKDLBUV6VIqQ/viewform
Figma: a wireframe/mockup/graphic design tool for beginners 4/23
https://www.meetup.com/taiwan-code-camp/events/277230481/
6h UI UX Weekend Crash Course 4/24
https://www.meetup.com/taiwan-code-camp/events/276965238/
工業控制系統資通安全論壇 4/26
https://acfd2019.kktix.cc/events/831e3194
MLDM Monday @ 三創育成 | TBD (可能與機器人相關主題) 4/26
https://www.meetup.com/Taiwan-R/events/277082078/
國家高速網路與計算中心 教育訓練 【資安中階課程】你被已毒了嗎? - 初探行動應用APP安全風險檢驗 4/27
https://reurl.cc/6y74ly
How to Improve, Continuously? 如何能夠「持續地」改進 4/28
https://www.meetup.com/the-liberators-network-taiwan-user-group-taipei-taiwan/events/276003453/
Why Self-Organization Matters For Scrum Teams 5/20
https://www.meetup.com/the-liberators-network-taiwan-user-group-taipei-taiwan/events/276003653/
國家高速網路與計算中心 教育訓練 「大數據程式開發平台(VM版本)」建置與開發實務課程 5/21
https://edu.nchc.org.tw/course/one_course_introduction.asp?lms_auto_course_id=3945&from_course_list_url=course_index
學生計算機年會 SITCON 2021
https://sitcon.org/2021/
2021製造業資安論壇 6/10
https://docs.google.com/forms/d/e/1FAIpQLSeJEpc_ePmJGx2RO6hlSJQnmsFTzBT-2zkzjcnPHbdYS2UAhQ/viewform
行動應用APP安全檢測與實務(可抵內稽) 6/11
https://www.caa.org.tw/coursedetail-3515.html
Maximize the Output, or Optimize the Outcome 6/24
https://www.meetup.com/the-liberators-network-taiwan-user-group-taipei-taiwan/events/276003947/
沒有留言:
張貼留言