資安事件新聞週報 2021/4/5 ~ 2021/4/9

 

資安事件新聞週報 2021/4/5  ~  2021/4/9

1.重大弱點漏洞/後門/Exploit/Zero Day
美國政府警告Fortinet軟體漏洞恐遭國家駭客開採
https://www.ithome.com.tw/news/143629

Critical Auth Bypass Bug Found in VMware Data Center Security Product
https://thehackernews.com/2021/04/critical-auth-bypass-bug-found-in.html

還不快更新FortiOS?極惡勒索軟體Cring開始攻擊歐洲公司
https://reurl.cc/9Zqpv8

FBI及CISA發現有國家支持的駭客組織,正在針對尚未修補Fortinet軟體已知漏洞的使用單位發動滲透攻擊
https://reurl.cc/V3g13Y

思科修補SD-WAN vManage的遠端程式攻擊漏洞
https://www.ithome.com.tw/news/143708

Oracle PeopleSoft Enterprise PeopleTools存在未明漏洞
https://vul.wangan.com/a/CNVD-2018-08455

VMware 發布多種產品的安全更新
https://www.vmware.com/security/advisories/VMSA-2021-0004.html

VMware Security Advisory VMSA-2021-0005
https://www.vmware.com/security/advisories/VMSA-2021-0005.html

Cisco Security Advisories April 7 2021
https://reurl.cc/Kx5QpM

AMD承認Zen 3 CPU易受新型類Spectre攻擊影響但暫時問題不大
https://www.cnbeta.com/articles/tech/1110567.htm

SAP NetWeaver Application Server Java跨站脚本漏洞
https://vul.wangan.com/a/CNVD-2020-65561

Castel NextGen DVR 跨站請求偽造漏洞
https://vul.wangan.com/a/CNVD-2021-24901

Watch Out! Mission Critical SAP Applications Are Under Active Attack
https://thehackernews.com/2021/04/watch-out-mission-critical-sap.html

Microsoft Security Update for Edge
https://msrc.microsoft.com/update-guide/
https://msrc.microsoft.com/update-guide/releaseNote/2021-Apr
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-21199
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-21198
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-21197
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-21196
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-21195
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-21194

2.銀行/金融/保險/證券/支付系統/ 新聞及資安
安聯中國人事大調整,涉及壽險、財險、資管公司等
https://news.sina.com.tw/article/20210402/38096230.html

數位金融監理科技 宜在地化
https://www.chinatimes.com/newspapers/20210404000114-260202?chdtv

個資外洩疑慮! 金管會開放金融科技業也能看「個人信用評分」
https://tw.appledaily.com/property/20210405/RKXQAY6KDZCDPMGCLVEDEGC4QI/

金管會:將嚴審將來銀行資安內控
https://reurl.cc/jq2Gvq

揭露金融生態圈戰略! 金融大咖的野心與布局
https://reurl.cc/7yLEgl

3大純網銀對決 憑什麼爭出頭
http://n.yam.com/Article/20210405544690

企金數位需求大 花旗台灣追趕亞太級
https://www.chinatimes.com/realtimenews/20210408005254-260410?chdtv

虛擬券商藍圖未來將顛覆台灣證券市場
https://finance.ettoday.net/news/1956232

5-star customer service: fraudsters launch massive campaign against Indonesia’s major banks on Twitter
https://reurl.cc/zbLNbQ

Financial Cyberthreats in 2020
https://securelist.com/financial-cyberthreats-in-2020/101638/

3.電子支付/行動支付/pay/資安
台灣電子支付突破 1200 萬人使用!但支付 app 可能造成什麼不平等
https://buzzorange.com/2021/04/09/payment-app/

街口條款!金管會擬出手,明定電子支付平台不能賣共同基金
https://www.inside.com.tw/article/23091-jkos-clause-fsc

電子支付平台不得進行共同基金銷售活動
https://reurl.cc/yn0MAl

悠遊卡業績未達標 柯P怪林向愷抗命不做電子支付
https://www.chinatimes.com/realtimenews/20210409004874-260407?chdtv

LINE Pay Money即起開放繳納中信卡帳單
https://ec.ltn.com.tw/article/breakingnews/3494777

嗶悠遊卡方便但沒旅平險保障 跨縣旅行記得亮卡刷
https://www.mirrormedia.mg/story/20210409money002/

悠遊付進駐連鎖藥局 丁丁藥局滿額回饋10%
https://www.cardu.com.tw/news/detail.php?43001

政府剝不掉的「蝦皮」,下一步該怎麼走
https://www.inside.com.tw/article/23100-shopee-next-step

手機支付掛點!英男停車沒帶錢貼紙條「求別開單」 回來意外撿到一張黃牌
https://www.ettoday.net/dalemon/post/53971

中國央行四部委發文:支持符合條件的外資機構在海南依法獲取支付牌照
https://news.sina.com.tw/article/20210409/38165730.html

基隆稅局增「行動支付」 掃描QR-CODE條碼線上繳稅
https://reurl.cc/3NWYkL

汽機車牌照稅4月開徵 信用卡、行動支付繳稅回饋大車拚
https://news.cnyes.com/news/id/4623543

陸大媽買鞋行動支付 「惡劣小動作」輸入數字店員氣炸
https://reurl.cc/qm2Np0

四大超商今開始代收捐款 LINE Pay首度加入免手續費
https://tw.appledaily.com/life/20210405/I5JLFLTLMZE7RMLRXMAA5ZUMNQ/

4.加密貨幣/挖礦/區塊鍊/智能合約 資安
美國最大加密貨幣交易所Coinbase獲美SEC核准 4月14日直接上市
https://reurl.cc/NXLXVe

Archegos爆倉敲響金融警鐘 華爾街沒說的操盤秘密
https://www.chinatimes.com/realtimenews/20210403000026-260410?chdtv

ETH創歷史新高2,151|1.61億以太坊選擇權下週到期;Filecoin單月爆漲5倍上230美元
https://www.blocktempo.com/161m-ethereum-options-expiry-china-is-crazy-for-folecoin/

Trezor|冒牌冷錢包上架蘋果App Store!用戶不查遭詐「3,000萬台幣BTC」
https://www.blocktempo.com/app-store-scam-by-faking-trezor-app/

去中心化域名服務項目 Handshake 已修復通貨膨脹漏洞
https://www.chainnews.com/zh-hant/news/866906720286.htm

深度專欄|中國公安部研究員 : 基於區塊鏈的「數位貨幣犯罪資產」追蹤及取證
https://www.blocktempo.com/research-on-tracking-criminal-digital-currency-assets/

疫情加速電子支付普及化 香港宜打造環球數字貨幣中心
https://www.hkcd.com/content/2021-04/07/content_1260332.html

疫情加速美國成第 2 大行動支付市場,2025 年過半手機將採非接觸式支付
https://technews.tw/2021/04/07/contactless-mobile-payments-surpass-half-smartphone-users/

5.資安事件新聞

A.病毒木馬 / 殭屍網路 / 勒索軟體 / Adware /APT /後門程式/IOC
The "Fair" Upgrade Variant of Phobos Ransomware
https://blog.morphisec.com/the-fair-upgrade-variant-of-phobos-ransomware

勒索軟體 WannaCry 重出江湖!近半年受害者暴增 40 倍
https://3c.ltn.com.tw/news/43822

Muhstik殭屍網絡變種攻擊容器管理系統Kubernetes,漏洞危及2萬台服務器安全
https://s.tencent.com/research/report/1289.html

美國第6大學區遭勒索軟體入侵 傳支付逾1400萬元贖金
https://news.ltn.com.tw/news/world/breakingnews/3488288

美FCC籲堵華為禁令漏洞 荷媒爆華為藏後門
https://reurl.cc/KxL0dn

驚!日月光集團遭勒索病毒攻擊 一度關閉系統
https://tw.appledaily.com/property/20210405/JIX4LGXOQBFHZHK6NFTKPRYCOU/

要求4,000萬元贖金,傳支付逾50萬元脫困
https://reurl.cc/E2LmOv

駭客濫用GitHub Actions功能以於GitHub伺服器上挖礦
https://www.ithome.com.tw/news/143634

無線 IoT 設備製造商 Sierra Wireless 遭勒贖攻擊
https://www.informationsecurity.com.tw/article/article_detail.aspx?tv=12&aid=9138

Evolution and rise of the Avaddon Ransomware-as-a-Service
https://securityaffairs.co/wordpress/116282/cyber-crime/avaddon-ransomware-evolution.html

Cybercrime, great wave of IcedID attacks via mail zip attachments
https://www.difesaesicurezza.com/en/defence-and-security/cybercrime-great-wave-of-icedid-attacks-via-mail-zip-attachments/

Povlsomware Ransomware Features Cobalt Strike Compatibility
https://www.trendmicro.com/en_us/research/21/c/povlsomware-ransomware-features-cobalt-strike-compatibility.html?utm_medium=smk

Ransomware gang wanted $40 million in Florida schools cyberattack
https://www.bleepingcomputer.com/news/security/ransomware-gang-wanted-40-million-in-florida-schools-cyberattack/

Pre-Installed Malware Dropper Found On German Gigaset Android Phones
https://thehackernews.com/2021/04/pre-installed-malware-dropper-found-on.html

Experts uncover a new Banking Trojan targeting Latin American users
https://thehackernews.com/2021/04/experts-uncover-new-banking-trojan.html

Researchers uncover a new Iranian malware used in recent cyberattacks
https://thehackernews.com/2021/04/researchers-uncover-new-iranian-malware.html

Hackers Exploit Unpatched VPNs to Install Ransomware on Industrial Targets
https://thehackernews.com/2021/04/hackers-exploit-unpatched-vpns-to.html

PHP Site's User Database Was Hacked In Recent Source Code Backdoor Attack
https://thehackernews.com/2021/04/php-sites-user-database-was-hacked-in.html

Hackers Targeting professionals With 'more_eggs' Malware via LinkedIn Job Offers
https://thehackernews.com/2021/04/hackers-targeting-professionals-with.html

Yanbian Gang Malware Continues with Wide-Scale Distribution and C2
https://www.riskiq.com/blog/external-threat-management/yanbian-gang-malware-distribution/

Zeppelin Ransomware Threat Assessment
https://unit42.paloaltonetworks.com/ransomware-threat-assessments/3/
https://github.com/pan-unit42/iocs/blob/master/Zeppelin_IOCs.text

Aurora Campaign: Attacking Azerbaijan Using Multiple RATs
https://blog.malwarebytes.com/threat-analysis/2021/04/aurora-campaign-attacking-azerbaijan-using-multiple-rats/

A Technical Analysis of the Ares Banking Trojan
https://www.zscaler.com/blogs/security-research/ares-malware-grandson-kronos-banking-trojan

New Wormable Android Malware Spreads by Creating Auto-Replies to Messages in WhatsApp
https://research.checkpoint.com/2021/new-wormable-android-malware-spreads-by-creating-auto-replies-to-messages-in-whatsapp/

B.行動安全 / iPhone / Android /穿戴裝置 /App / 5G / 即時通訊
蘋果關閉iOS 14.4.1認證,無法從iOS 14.4.2 降級了
https://mrmad.com.tw/apple-stop-ios14-4-1-signing

中國駭客組織為竊取5G機密,鎖定全球電信業者
https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=9155

Can We Stop Pretending SMS Is Secure Now
https://krebsonsecurity.com/2021/03/can-we-stop-pretending-sms-is-secure-now/

Google limits which apps can access the list of installed apps on your device
https://thehackernews.com/2021/04/google-limits-which-apps-can-access.html

WhatsApp-based wormable Android malware spotted on the Google Play Store
https://thehackernews.com/2021/04/whatsapp-based-wormable-android-malware.html

Android to Support Rust Programming Language to Prevent Memory Flaws
https://thehackernews.com/2021/04/android-to-support-rust-programming.html

C.事件 / 駭客 / DDOS / APT / 雲端/ 暗網/ 徵才 / 國際資安事件
從太陽風網路戰談資安
https://talk.ltn.com.tw/article/paper/1440893

黑客威脅4大資訊安全+防範建議 防毒軟件、密碼必備仲要做樣嘢
https://reurl.cc/E2Lm9A

臺灣資安研究之光!戴夫寇爾勇奪Pwn2Own冠軍,首度有臺灣隊伍獲獎
https://www.ithome.com.tw/news/143753

涉嫌駭入移民局系統 反貪會逮捕4名技術員
https://reurl.cc/L0gMWa

北韓駭客Lazarus利用新的後門程式對南非貨運公司下手
https://www.ithome.com.tw/news/143751

陸監管機構批准騰訊私有化搜狗
https://www.chinatimes.com/realtimenews/20210409004103-260410?chdtv

狂勝歐陽妮妮! 中國記者採訪工安意外被阻擋 口袋莫名「多出8千塊」
https://reurl.cc/WEg1Gx

美國擬立法保護關鍵基礎設施抵禦駭客攻搫
https://blog.twnic.tw/2021/04/05/17808/

中國駭客入侵印度電力系統及疫苗生產商
https://www.ptt.cc/bbs/nCoV2019/M.1614830997.A.C5F.html

他們已鎖定能說好中國故事的「台灣素楷模」
https://reurl.cc/3Npxbj

中共如何全面統戰臺灣
https://reurl.cc/NXLrqx

中製硬碟 險成空軍雲端系統
https://news.ltn.com.tw/news/politics/paper/1441243

中共黑客如何侵入微軟?疑似通過事前竊取的個資
https://www.ntdtv.com/b5/2021/04/08/a103092011.html

從9歲童到歌手…中國政府被爆握700美國人黑名單
https://reurl.cc/WEg1N5

上海公安文件外洩 爆監控5千外國人
https://tw.appledaily.com/headline/20210402/MFNR4S3AWZHHZFNDFY7YIEK56M/

上海公安文件流出 驚見5000外國人被入庫、維吾爾人成「疑似恐怖分子」
https://tw.appledaily.com/international/20210401/U7DBAN4BAZHYXLH36KZNZM2EBA/

中共爆監控外國人信息 美國民眾:不會去旅遊
https://reurl.cc/mq4nxA

上海公安數據庫洩露揭示中國對維族人的監視
https://www.abc.net.au/chinese/2021-04-01/shanghai-files-shed-light-on-china-surveillance-state/100044228

中國宜堅持發展自主操作系統
https://www.eet-china.com/mp/a44937.html

胡劍江:基本法附件修訂案為「愛國者治港」奠定堅實保障
https://www.wenweipo.com/a/202104/03/AP6067f7cae4b04e1918cedde8.html

各界港青堅定支持完善選舉制度 落實「愛國者治港」原則
https://www.wenweipo.com/a/202104/02/AP6066d06ee4b04e1918ceb6db.html

人大為港完善選舉制度 助「一國兩制」行穩致遠
http://www.hkcd.com/content/2021-04/03/content_1259844.html

中聯辦指中央改善選舉制度獲香港各界支持
https://www.881903.com/news/local/2381707

中國外交部駐港公署:美方沒有資格打著價值觀的幌子插手香港事
http://www.hkcna.hk/content/2021/0402/889050.shtml

抓到宿敵把柄? 伊朗宣布逮捕「以色列間諜」
https://tw.appledaily.com/international/20210405/O7T7LHZMBJF3NOKAOLIFRJUYYE/

Biden's cyber executive order to include new rules for federal agencies, contractors
https://www.cyberscoop.com/cyber-executive-order-supply-chain-solarwinds/

Australians flagged in Shanghai security files which shed light on China's surveillance state and monitoring of Uyghurs
https://www.abc.net.au/news/2021-04-01/shanghai-files-shed-light-on-china-surveillance-state/100040896

Security threats increasing with 70% using personal devices for work
https://www.helpnetsecurity.com/2021/03/16/using-personal-devices-for-work/

FBI and CISA warn of state hackers attacking Fortinet FortiOS servers
https://www.bleepingcomputer.com/news/security/fbi-and-cisa-warn-of-state-hackers-attacking-fortinet-fortios-servers/

Myanmar orders wireless internet shutdown until further notice: telecoms sources
https://www.reuters.com/article/us-myanmar-politics-internet-idUSKBN2BO5H2

DeepDotWeb Admin Pleads Guilty to Money Laundering Charges
https://thehackernews.com/2021/04/deepdotweb-admin-pleads-guilty-to-money.html

NIST and HIPAA: Is There a Password Connection
https://thehackernews.com/2021/04/nist-and-hipaa-is-there-password.html

APT Actors Gaining Initial Access for Attacks
https://www.ic3.gov/Media/News/2021/210402.pdf

MITRE Madness: A Guide to Weathering the Upcoming Vendor Positioning Storm
https://thehackernews.com/2021/04/mitre-madness-guide-to-weathering.html

Hackers From China Target Vietnamese Military and Government
https://thehackernews.com/2021/04/hackers-from-china-target-vietnamese.html

資訊安全專員
https://www.104.com.tw/job/78mog

【資安所】業務經理
https://www.104.com.tw/job/78q4i

【IT】資安駐點工程師 - 2100178
https://www.104.com.tw/job/78hfu

業務專員 - 資安網路(無經驗可)
https://www.104.com.tw/job/78ftr

資安分析主任
https://nabi.104.com.tw/job/78qnf?moveto=skillList&content=10002948

D.資料外洩/個資法/GDPR/網路詐騙/網路釣魚/盜刷/假新聞
網傳「台灣空軍四架F16戰機叛逃...是駐紮在桃園機場第16航空聯隊的飛機...飛機編號為TY160531」
https://tfc-taiwan.org.tw/articles/5241

趨勢科技聯手165防詐騙專線,公布2021第一季三大熱門詐騙手法
https://www.ithome.com.tw/news/143700

駭客賤賣價值近4千萬美元的禮物卡資料,疑自禮物卡交易網站竊得
https://www.ithome.com.tw/news/143710

詐騙犯給反詐刑警發「通緝令」,全程哈哈哈哈
https://news.sina.com.tw/article/20210403/38099868.html

網路時代個資透明 免費Wi-Fi恐造成資安風險
https://www.peopo.org/news/524955

假冒Netflix「免費看2個月」 500用戶信用卡個資遭竊
https://reurl.cc/4yOpdY

Google Play驚見假Netflix!誘拐用戶下載竊個資
https://newtalk.tw/news/view/2021-04-09/561102

「追劇兩個月免錢」! 惡意軟體騙多人上當 500人個資遭竊取
https://gotv.ctitv.com.tw/2021/04/1746466.htm

駭客把臉書總裁小紮的電話掛到了互聯網上
https://gnews.org/zh-hant/1067713/

臉書5億個資外洩!台灣73萬用戶上榜 傳創辦人祖克柏也受害
https://www.chinatimes.com/realtimenews/20210404002871-260410?chdtv

驚! 臉書5億餘筆個資外洩 台灣逾73萬名用戶資訊恐遭駭客利用
https://news.ltn.com.tw/news/world/breakingnews/3489389

Facebook 又爆個資外洩,5.33 億用戶個資被發布在駭客論壇上
https://technews.tw/2021/04/04/facebook-hudson/

5.33億Facebook用戶數據被洩露,發言人:2年前的舊消息
https://finance.sina.com.cn/tech/2021-04-04/doc-ikmxzfmk3253016.shtml

【臉書遭駭】台灣73萬用戶受害 連薩克柏手機號碼也曝光
https://tw.appledaily.com/international/20210404/DJWGPNGWBNH7BLIABFODORV35M/

快查!Facebook爆台灣73萬用戶個資遭竊 超神網站讓你秒查自己是否「中招」
https://reurl.cc/E2yRja

【臉書遭駭】香港300萬中國67萬個資外洩 專家:改密碼、防詐騙簡訊
https://tw.appledaily.com/international/20210404/EBAYXMRF7FC2HDRGQNWBAWLGLY/

5 億 3,300 萬 Facebook 用戶個人資料被放上駭客討論區任人下載
https://www.pcmarket.com.hk/533-million-facebook-user-personal-information-leaked/

逾5億用戶個資遭貼至駭客論壇 臉書:2019年事件早已修復
https://www.cna.com.tw/news/firstnews/202104040010.aspx

逾5億臉書用戶個資 張貼線上駭客論壇免費使用
https://udn.com/news/story/7088/5364685?from=udn-ch1_breaknews-1-0-news

逾5億用戶個資外洩 臉書:有心人抓取非遭駭
https://www.truemii.com.tw/content/20210408400429-990105

香港300萬中國67萬個資外洩 專家:改密碼、防詐騙簡訊
https://tw.appledaily.com/international/20210404/EBAYXMRF7FC2HDRGQNWBAWLGLY/

FB資料外洩涉300萬香港用戶 林鄭行會立會成員中招
https://reurl.cc/DvLxoN

私隱專員公署就FB用戶資料疑遭外洩展開循規審查
https://reurl.cc/yn4O5E

自己資料自己救!極嚴重保安漏洞:Facebook 資料外洩事件
https://reurl.cc/WEMzaZ

Facebook 個資5.33 億外洩,但官方不打算告訴你「因為知道了也沒用」
https://www.techbang.com/posts/85781-facebook-responds-533-million-data-leak-notify-users

政府收緊公司查冊 財庫局許正宇:有人將資料武器化 應堵漏洞
https://reurl.cc/yn47Ra

只有黨能查!限公司查冊遭批 港府反控:有人將資料武器化
https://ec.ltn.com.tw/article/breakingnews/3489613

LinkedIn 三分之二用戶資料遭轉售 駭客4位數拍賣用戶資料
https://reurl.cc/2bemjm

LinkedIn驚爆資安疑慮!5億用戶個資被放上駭客論壇拍賣
https://newtalk.tw/news/view/2021-04-09/560997

假資安公司「SecuriElite」針對資安人員發起社交工程攻擊
https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=9158

隱私全被看光!特斯拉 Model 3 車內鏡頭遭破解,駭客釋出多段車廂內影片
https://technews.tw/2021/04/09/greentheonly-tesla-model-3/

網傳車內監控畫面曝光 特斯拉:北美以外錄影功能未開通
https://reurl.cc/dVgWn2

好友皆可看!美女師15min啪啪片PO網 學生群組廣傳:要告訴老師嗎
https://gotv.ctitv.com.tw/2021/04/1746337.htm

533 Million Facebook Users' Phone Numbers and Personal Data Leaked Online
https://thehackernews.com/2021/04/533-million-facebook-users-phone.html

Phishing Trends with PDF Files in 2020
https://unit42.paloaltonetworks.com/phishing-trends-with-pdf-files/

E.研究報告
EP42 - 資安攻擊的七個步驟|網路攻擊鏈
https://open.firstory.me/story/ckn3lteeyz99e0823evu40upd

新世代主動式防禦興起,牽制駭客也成攻防手段之一(上)
https://www.ithome.com.tw/tech/143477

新世代主動式防禦興起,牽制駭客也成攻防手段之一(下)
https://www.ithome.com.tw/tech/143478

Hancitor's Use of Cobalt Strike and a Noisy Network Ping Tool
https://unit42.paloaltonetworks.com/hancitor-infections-cobalt-strike/

360發布“安全漏洞”雙報告政產學研發聲力挺“白帽黑客”
http://www.chinanews.com/business/2021/04-03/9447033.shtml

「安全漏洞」頻發敲響警鐘360 攜手政產學研為「白帽群體」保駕護航
http://www.geekpark.net/news/276152

復現影響79款Netgear路由器高危漏洞
https://zhuanlan.zhihu.com/p/361885899

用Rust重寫Linux內核,這可能嗎
https://www.sohu.com/a/458893575_355140

CTF-WEB中上傳漏洞的經典考法
https://zhuanlan.zhihu.com/p/362148183

Zero click vulnerability in Apple’s macOS Mail
https://mikko-kenttala.medium.com/zero-click-vulnerability-in-apples-macos-mail-59e0c14b106c

THIS MAN THOUGHT OPENING A TXT FILE IS FINE, HE THOUGHT WRONG. MACOS CVE-2019-8761
https://www.paulosyibelo.com/2021/04/this-man-thought-opening-txt-file-is.html

Koadic
https://github.com/zerosum0x0/koadic

Attackers are abusing GitHub infrastructure to mine cryptocurrency
https://securityaffairs.co/wordpress/116294/malware/github-infrastructure-attacks-miner.html

RedTeamCCode
https://github.com/Mr-Un1k0d3r/RedTeamCCode/blob/main/unhook_crowdstrike_64.c

Code Scanning a GitHub Repository using GitHub Advanced Security within an Azure DevOps Pipeline by Kevin Alwell
https://hakin9.org/code-scanning-a-github-repository-using-github-advanced-security/

Cybercrime, grande ondata di attacchi IcedID via allegati zip
https://www.difesaesicurezza.com/areariservatacat/cybercrime-grande-ondata-di-attacchi-icedid-via-allegati-zip/

ToothPicker - An In-Process, Coverage-Guided Fuzzer For iOS
https://hakin9.org/toothpicker-an-in-process-coverage-guided-fuzzer-for-ios/

Navigating Transformation with Managed Cybersecurity Services
https://www.tripwire.com/state-of-security/security-data-protection/navigating-transformation-with-managed-cybersecurity-services/

FBI: APTs Actively Exploiting Fortinet VPN Security Holes
https://threatpost.com/fbi-apts-actively-exploiting-fortinet-vpn-security-holes/165213/

Feds say hackers are likely exploiting critical Fortinet VPN vulnerabilities
https://arstechnica.com/gadgets/2021/04/feds-say-hackers-are-likely-exploiting-critical-fortinet-vpn-vulnerabilities/

APT10: sophisticated multi-layered loader Ecipekac discovered in A41APT campaign
https://securelist.com/apt10-sophisticated-multi-layered-loader-ecipekac-discovered-in-a41apt-campaign/101519/

Play Wi-Fi Hacking Games Using Microcontrollers to Practice Wi-Fi Attacks Legally
https://null-byte.wonderhowto.com/how-to/play-wi-fi-hacking-games-using-microcontrollers-practice-wi-fi-attacks-legally-0238563/

ElegyRAT-C-Sharp
https://github.com/zhaoweiho/ElegyRAT-C-Sharp

Fuzzing sockets: Apache HTTP, Part 1: Mutations
https://securitylab.github.com/research/fuzzing-apache-1/

Pentesting a banking FTP service
https://blog.lexfo.fr/pentesting-pesit-ftp.html

Why Banks Are Still A Top Target For DDoS Attacks
https://www.imperva.com/blog/why-banks-are-still-a-top-target-for-ddos-attacks/

Navigating Cyber 2021
https://www.fsisac.com/hubfs/GIOReport2021/NavigatingCyber2021.pdf

11 Useful Security Tips for Securing Your AWS Environment
https://thehackernews.com/2021/04/11-useful-security-tips-for-securing.html

Rocke Group Actively Targeting the Cloud: Wants Your SSH Keys
https://www.intezer.com/blog/cloud-security/rocke-group-actively-targeting-the-cloud-wants-your-ssh-keys/

EtterSilent: The Underground’s New Favorite Maldoc Builder
https://intel471.com/blog/ettersilent-maldoc-builder-macro-trickbot-qbot/

Iran’s APT34 Returns with an Updated Arsenal
https://research.checkpoint.com/2021/irans-apt34-returns-with-an-updated-arsenal/

What is Astro Locker Team
https://news.sophos.com/en-us/2021/03/31/sophos-mtr-in-real-time-what-is-astro-locker-team/
https://github.com/sophoslabs/IoCs/blob/master/Ransomware-MountLocker.csv
https://github.com/sophoslabs/IoCs/blob/master/Ransomware-AstroLocker.csv

APT-C-23 Threat Group Uses Voice Changing Software in Espionage Attempt
https://www.cadosecurity.com/post/threat-group-uses-voice-changing-software-in-espionage-attempt

The Leap of a Cycldek-related Threat Actor
https://securelist.com/the-leap-of-a-cycldek-related-threat-actor/101243/

F.商業
電信三雄強攻新創 加碼孵金蛋
https://money.udn.com/money/story/5612/5364434

AWS網頁應用程式防火牆現可辨識並阻擋機器人流量
https://www.ithome.com.tw/news/143619

Cisco推出全新SASE架構全面保護端點至雲端,並優化雲端原生平台SecureX
https://www.informationsecurity.com.tw/article/article_detail.aspx?tv=11&aid=9141

Armv9 是 Arm 針對未來人工智慧、安全性與特定運算需求的解決方案
https://www.informationsecurity.com.tw/article/article_detail.aspx?tv=11&aid=9143

帆宣攜手逢甲 打造亞太區第1座5G專網智慧城市實驗場域
https://money.udn.com/money/story/5612/5377340

Fujitsu與趨勢科技合作企業 5G 專網資安
https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=9153

主動防禦遠端存取的資安威脅
http://n.yam.com/Article/20210409221631

G.政府
打造資安國家隊逾900人才缺口 政府多管道補強
https://news.ltn.com.tw/news/politics/breakingnews/3488173

國安局忠誠儀測室有四部冷氣直吹 「儀測員」送美受訓
https://udn.com/news/story/10930/5355698

國安局引用法核潛艦南海活動公開情報 指區域情勢不安
https://udn.com/news/story/10930/5361231

紅鏈滲透 國安局:情況非常嚴峻
https://ec.ltn.com.tw/article/paper/1440517

國安局新狙擊槍模組完成測試 採購五千發狙擊彈護層峰
https://udn.com/news/story/10930/5355817

國安局:中共111年召開20大 恐增台灣國安壓力
https://www.cna.com.tw/news/aipl/202103310313.aspx

台灣軍情萎縮 影響情報外交
https://reurl.cc/4yvyqL

資安疑慮》立委促建立供應商制度 過濾資格
https://news.ltn.com.tw/news/politics/paper/1441244

政府網防機制 國安局揪五大問題
https://news.ltn.com.tw/news/politics/paper/1441245

第六期國家資通安全法:佈建「主動防禦」聯網,躍升亞太資安樞紐
https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=9142

防範公務機密被駭 南市工務局辦講習強化資安維護
https://m.news.sina.com.tw/article/20210409/38162406.html

台積電、世芯晶片助中國製飛彈?王美花:未涉軍用
https://buzzorange.com/techorange/2021/04/09/china-missiles-use-tsmc-chip/

立院審太空發展法草案 吳政忠備詢
https://reurl.cc/R6gXLn

科技部定於4月28日舉辦「沙崙智慧綠能科學城C區資安暨智慧科技產業研發大樓招商說明會」
https://reurl.cc/g83Mep

110年「智慧製造資安強化推動計畫」
https://tiip.itnet.org.tw/newsPage.php?pk=391

H.工控系統/ICS/SCADA/IOT/物聯網/車聯網/電動車 相關資安
Another Mirai variant used in attempted hacks on routers, switches
https://www.cyberscoop.com/mirai-unit-42-research-botnet/

智慧家庭裝置帶來了方便 卻讓家暴受害者比例漸增
https://reurl.cc/AgLA9K

嬰兒房監視器傳詭異「救救我」求助聲 網友驚:超恐怖
https://reurl.cc/zb4Qm0

SCADAfence: OT高端網路安全解決方案解決製造業的安全挑戰
https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=9140

IT/OT稽核關鍵指標: ISO 27001及 IEC 62443
https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=9154

ICS Advisory ICSA-21-091-01
https://us-cert.cisa.gov/ics/advisories/icsa-21-091-01

I.教育訓練
Reverse Engineering 101
https://infosecwriteups.com/reverse-engineering-101-7acd1e6abfd8

Reverse-Engineering
https://github.com/mytechnotalent/Reverse-Engineering

How Cyrebro Can Unify Multiple Cybersecurity Defenses to Optimize Protection
https://thehackernews.com/2021/04/how-cyrebro-can-unify-multiple.html

Get Started in Cybersecurity
https://www.sans.org/cybersecurity-careers/?utm_source=Twitter&utm_campaign=New%20to%20Cyber

How the Work-From-Home Shift Impacts SaaS Security
https://thehackernews.com/2021/04/how-work-from-home-shift-impacts-saas.html

How Cyrebro Can Unify Multiple Cybersecurity Defenses to Optimize Protection
https://thehackernews.com/2021/04/how-cyrebro-can-unify-multiple.html

J.人工智慧/AI/ML/人臉辨識
人工智慧加速產業轉型 AI數據替製造業接上明日新電力
https://www.digitimes.com.tw/iot/article.asp?cat=130&cat1=40&cat2=13&id=0000607579_MWF47DB88SVDWJ8JVZP5X

有賴通訊科技軟實力打造專網智慧工廠
https://udn.com/news/story/11726/5376280

YouTube「違規影片收視率」大幅降低 透過 AI 人工智慧有效過濾違規影片
https://www.cool3c.com/article/160861

6.近期資安活動及研討會
定期小聚暨GDG Taoyuan - GCP 4/11
https://www.meetup.com/GDGTaoyuan/events/277144104

MLDM Monday @ 三創育成 | 不平衡數據之機器學習分析流程:Python 程式手把手實作 4/12
https://www.meetup.com/Taiwan-R/events/277082073/

Android Code Club(Taipei) 4/14
https://www.meetup.com/Taiwan-Android-Developer-Study-Group/events/bkzcmryccgbsb/

高雄 Rails Meetup 4/14
https://www.meetup.com/rails-taiwan/events/qxfvjkyccgbsb/

Scala Taiwan #38 - Mini One-afternoon Conference 4/17
https://www.meetup.com/Scala-Taiwan-Meetup/events/277230320/

技術管理者論壇 - 商業與技術的平衡 4/17
https://techxleadership.kktix.cc/events/techxleadership-2021-apr

CHECK POINT EXPERIENCE APAC 2021  4/20 ~ 4/21
https://virtual-cpx-apac.checkpoint.com/

高雄 Rails Meetup 4/21
https://www.meetup.com/rails-taiwan/events/qxfvjkyccgbcc/

Android Code Club(Taipei) 4/21
https://www.meetup.com/Taiwan-Android-Developer-Study-Group/events/bkzcmryccgbcc/

Ubuntu Core 20 台北研討會 4/21
https://docs.google.com/forms/d/e/1FAIpQLScUZVv4yiSOBG87vOsRbhKRG50KXWIMw5ESIWzKDLBUV6VIqQ/viewform

Figma: a wireframe/mockup/graphic design tool for beginners 4/23
https://www.meetup.com/taiwan-code-camp/events/277230481/

6h UI UX Weekend Crash Course 4/24
https://www.meetup.com/taiwan-code-camp/events/276965238/

工業控制系統資通安全論壇 4/26
https://acfd2019.kktix.cc/events/831e3194

MLDM Monday @ 三創育成 | TBD (可能與機器人相關主題) 4/26
https://www.meetup.com/Taiwan-R/events/277082078/

國家高速網路與計算中心 教育訓練  【資安中階課程】你被已毒了嗎? - 初探行動應用APP安全風險檢驗 4/27
https://reurl.cc/6y74ly

How to Improve, Continuously? 如何能夠「持續地」改進 4/28
https://www.meetup.com/the-liberators-network-taiwan-user-group-taipei-taiwan/events/276003453/

Why Self-Organization Matters For Scrum Teams 5/20
https://www.meetup.com/the-liberators-network-taiwan-user-group-taipei-taiwan/events/276003653/

國家高速網路與計算中心 教育訓練  「大數據程式開發平台(VM版本)」建置與開發實務課程 5/21
https://edu.nchc.org.tw/course/one_course_introduction.asp?lms_auto_course_id=3945&from_course_list_url=course_index

學生計算機年會 SITCON 2021
https://sitcon.org/2021/

2021製造業資安論壇 6/10
https://docs.google.com/forms/d/e/1FAIpQLSeJEpc_ePmJGx2RO6hlSJQnmsFTzBT-2zkzjcnPHbdYS2UAhQ/viewform

行動應用APP安全檢測與實務(可抵內稽)  6/11
https://www.caa.org.tw/coursedetail-3515.html

Maximize the Output, or Optimize the Outcome 6/24
https://www.meetup.com/the-liberators-network-taiwan-user-group-taipei-taiwan/events/276003947/


沒有留言:

張貼留言

資安事件新聞週報 2021/9/6 ~ 2021/9/10

  資安事件新聞週報 2021/9/6  ~  2021/9/10 1.重大弱點漏洞/後門/Exploit/Zero Day Cisco 發布Enterprise NFV Infrastructure Software(NFVIS)軟體安全更新 https://us-cert.c...