資安事件新聞週報 2023/7/24 ~ 2023/7/28

1.重大弱點漏洞/後門/Exploit/Zero Day Ubuntu存在權限提升漏洞，約4成用戶受到波及 https://www.wiz.io/blog/ubuntu-overlayfs-vulnerability VMware修補容器管理平臺Tanzu的資訊洩露漏洞 https://www.vmware.com/security/advisories/VMSA-2023-0016.html 遠端登入工具OpenSSH存在漏洞，可能讓攻擊者對於Linux作業系統發動命令注入攻擊 https://blog.qualys.com/vulnerabilities-threat-research/2023/07/19/cve-2023-38408-remote-code-execution-in-opensshs-forwarded-ssh-agent New OpenSSH Vulnerability Exposes Linux Systems to Remote Command Injection https://thehackernews.com/2023/07/new-openssh-vulnerability-exposes-linux.html TETRA:BURST — 5 New Vulnerabilities Exposed in Widely Used Radio Communication System https://thehackernews.com/2023/07/tetraburst-5-new-vulnerabilities.html 研究人員揭露AMD處理器漏洞Zenbleed，攻擊者可攔截處理器的敏感資訊 https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7008.html Zenbleed: New Flaw in AMD Zen 2 Processors Puts Encryption Keys and Passwords at Risk https://thehackernews.com/2023/07/zenbleed-new-flaw-in-amd-zen-2.html Altassian修補旗下Confluence與Bamboo的高風險漏洞 https://confluence.atlassian.com/security/security-bulletin-july-18-2023-1251417643.html Atlassian Releases Patches for Critical Flaws in Confluence and Bamboo https://thehackernews.com/2023/07/atlassian-releases-patches-for-critical.html Ivanti修補行動裝置管理平臺的零時差漏洞 https://www.bleepingcomputer.com/news/security/ivanti-patches-mobileiron-zero-day-bug-exploited-in-attacks/ 挪威政府傳出遭到零時差漏洞攻擊，被駭客侵入的系統是Ivanti行動裝置管理平臺 https://www.bleepingcomputer.com/news/security/norway-says-ivanti-zero-day-was-used-to-hack-govt-it-systems/ https://www.dss.dep.no/aktuelle-saker/departementer-utsatt-for-dataangrep/ https://nsm.no/aktuelt/nulldagssarbarhet-i-ivanti-endpoint-manager-mobileiron-core 挪威公部門又被駭 12個政府部會遭網路攻擊 https://news.cts.com.tw/cna/international/202307/202307242206632.html Ivanti Releases Urgent Patch for EPMM Zero-Day Vulnerability Under Active Exploitation https://thehackernews.com/2023/07/ivanti-releases-urgent-patch-for-epmm.html 逾1.5萬臺Citrix Netscaler伺服器曝露於CVE-2023-3519的風險當中 https://www.bleepingcomputer.com/news/security/over-15k-citrix-servers-vulnerable-to-cve-2023-3519-rce-attacks/ Citrix NetScaler ADC and Gateway Devices Under Attack: CISA Urges Immediate Action https://thehackernews.com/2023/07/citrix-netscaler-adc-and-gateway.html 軟體開發問題追蹤系統Jira的外掛程式路徑穿越漏洞被用於攻擊行動 https://www.securityweek.com/two-jira-plugin-vulnerabilities-in-attacker-crosshairs/ 物流業者DHL證實遭到MOVEit Transfer零時差漏洞攻擊波及 https://therecord.media/dhl-moveit-breach-investigation AMI基板管理控制器MegaRAC出現重大漏洞，恐導致伺服器服務中斷 https://eclypsium.com/research/bmcc-lights-out-forever/ 2.銀行/金融/保險/證券/金融監理新聞及資安政大籌設資安研究中心，以金融資安為主軸 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10579 2023年台灣的銀行及投資服務業IT支出達845億 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10587 開源軟體供應鏈攻擊針對銀行產業而來 https://checkmarx.com/blog/first-known-targeted-oss-supply-chain-attacks-against-the-banking-sector/ Banking Sector Targeted in Open-Source Software Supply Chain Attacks https://thehackernews.com/2023/07/banking-sector-targeted-in-open-source.html 金融木馬Casbaneiro繞過使用者帳號控制機制發動攻擊 https://blog.sygnia.co/breaking-down-casbaneiro-infection-chain-part2 Casbaneiro Banking Malware Goes Under the Radar with UAC Bypass Technique https://thehackernews.com/2023/07/casbaneiro-banking-malware-goes-under.html 「開放銀行」要來了　未來不用下載一堆銀行APP？業者：大家似乎想得很美 https://www.cmmedia.com.tw/home/articles/41279 中國促進網絡安全保險規范發展 http://big5.news.cn/gate/big5/www.news.cn/tech/20230724/e0ea22d899fc476daa719c55b66c06f2/c.html 台灣遭網攻是全球3倍　金融機構成最大目標 https://www.mirrormedia.mg/story/20230727edi063/ 創台灣金融業首例，中國信託完成VMware雲端災備技術架構驗證 https://reurl.cc/7kq23Q 金融建言白皮書減碳與資安議題聚焦 https://www.merit-times.com/NewsPage.aspx?unid=851934 3.信用卡/電子支付/行動支付/pay/支付系統/資安開啟雙重驗證也沒綁定卡網紅臉書被駭遭盜刷RM1500 https://reurl.cc/LAojye 行動支付服務再擴大！中華郵政i郵箱即起增「全支付」付款 https://www.ettoday.net/news/20230726/2547772.htm 颱風還沒發威！民眾搶購防颱物資全聯行動支付「刷到當機」 https://reurl.cc/LAo1Xa OTP驗證失靈？銀行將增加門號核對阻詐國際行動支付盜刷 https://udn.com/news/story/7239/7323025 金管會出手防支付綁卡盜刷 https://money.udn.com/money/story/5613/7275980 4.加密貨幣/數位貨幣/挖礦/區塊鍊/智能合約/WEB3 資安業者齊聚打造元宇宙資安仍為考量重點 https://reurl.cc/11Wj0Y 注意！CoinList 推特遭駭發「假空投消息」！勿點任何代幣連結 https://www.blocktempo.com/coinlist-twitter-account-has-been-hacked/ CoinList推特賬號被黑並發布虛假空投資訊，請用戶注意風險 https://news.cnyes.com/news/id/5259925?exp=a 加密初創公司Shield3推出智能合約評估服務 https://news.cnyes.com/news/id/5259995 安全公司：Alphapo錢包中至少有3100萬美元被盜走 https://news.cnyes.com/news/id/5260032 鏈上賭金被劫？結算平台Alphapo傳遭駭3100萬鎂！澄清：存提款恢復中 https://www.blocktempo.com/alphapo-hot-wallets-hacked-for-over-31-million/ ZachXBT揭真相：鏈上賭金平台Alphapo被盜真兇疑北韓駭客拉撒路 https://www.blocktempo.com/alphapo-hot-wallets-hacked-for-over-60-million/ 東京 vs 京都日本加密雙城記 https://news.knowing.asia/news/d60523ad-5a5a-4f5e-9771-f8ec9f84537d 幣圈兩大毒瘤：北韓駭客和美國SEC主席 https://www.blocktempo.com/left-or-right-north-korean-hacker-group-and-u-s-sec-chairman/ 世界幣計畫上線結合認證數位身分及加密貨幣金融 https://www.worldjournal.com/wj/story/121477/7322204 Palmswap：駭客如轉回資金則不採取法律行動 https://news.cnyes.com/news/id/5262272 Connext和Alchemix推出跨鏈代幣標準，以減少駭客攻擊損失 https://news.knowing.asia/news/435505a8-8b72-4b5c-ae0e-d38d1ac3ed21 DeFi收益聚合器Yearn針對v3版本發起駭客公開挑戰計劃 https://news.cnyes.com/news/id/5263130 UEZ Markets宣稱遭駭客入侵爆倉，大量投資人帳號失效、無法出金，網傳為FVP Trade新資金盤 https://www.wikifx.com/zh/newsdetail/202307262954263491.html zkSync借貸龍頭EraLend遭漏洞利用攻擊，損失逾340萬美元 https://abmedia.io/zksync-eralend-reentrancy-attack-lost-3-4-million 幣安推出高風險代幣標籤，CREAM、FTT 等已被標記為「需監控」 https://www.blocktempo.com/binance-will-introducing-seed-tags-monitoring-tags/ 慢霧：CoinsPaid、Atomic與Alphapo攻擊者或均為朝鮮駭客組織Lazarus https://news.cnyes.com/news/id/5264589 CoinsPaid：駭客攻擊為Lazarus Group策劃，客戶資金完好無損 https://news.cnyes.com/news/id/5264718 5.資安事件新聞 A.病毒木馬 / 殭屍網路 / 勒索軟體 / Adware /APT /後門程式/IOC Sophos遭新勒索軟體SophosEncrypt冒充 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10583 勒索軟體駭客Clop傳出從MOVEit零時差漏洞攻擊的受害組織得到1億美元 https://www.securityweek.com/moveit-hack-could-earn-cybercriminals-100m-as-number-of-confirmed-victims-grows/ 勒索軟體駭客Clop建置可透過網際網路存取的網站，公布受害組織的內部資料 https://www.bleepingcomputer.com/news/security/clop-now-leaks-data-stolen-in-moveit-attacks-on-clearweb-sites/ 為了向受害組織施加更多壓力，勒索軟體BlackCat為資料外洩網站加入API、Python爬蟲 https://www.bleepingcomputer.com/news/security/alphv-ransomware-adds-data-leak-api-in-new-extortion-strategy/ 加拿大山葉傳出遭勒索軟體Black Byte、Akira攻擊 https://therecord.media/yamaha-confirms-cyberattack-after-multiple-ransomware-gangs-claim 勒索軟體Mallox鎖定微軟SQL Server而來 https://unit42.paloaltonetworks.com/mallox-ransomware APT41 駭侵團體利用 WyrmSpy、DragonEgg 間諜軟體攻擊 Android 使用者 https://www.twcert.org.tw/tw/cp-104-7265-82fab-1.html “大头”勒索软件三宗罪：伪装Windows更新、勒索、开后门 https://www.aqniu.com/vendor/98203.html 駭客鎖定製造業發動目標式勒索和 DDoS 攻擊，成為新常態 https://news.owlting.com/articles/5314 駭客模仿流行VPN　下載頁面傳播惡意軟體 https://www.technice.com.tw/cloudtech/infosecurity/60798/ 惡意軟體HotRat透過盜版軟體散布 https://decoded.avast.io/martinchlumecky/hotrat-the-risks-of-illegal-software-downloads-and-hidden-autohotkey-script-within/ 殭屍網路Fenix鎖定拉丁美洲使用者而來 https://www.metabaseq.com/fenix-botnet/ Fenix Cybercrime Group Poses as Tax Authorities to Target Latin American Users https://thehackernews.com/2023/07/fenix-cybercrime-group-poses-as-tax.html 竊資軟體Realst鎖定macOS用戶，目標是加密貨幣錢包 https://iamdeadlyz.gitbook.io/malware-research/july-2023/fake-blockchain-games-deliver-redline-stealer-and-realst-stealer-a-new-macos-infostealer-malware#realst-stealer-macos Rust-based Realst Infostealer Targeting Apple macOS Users' Cryptocurrency Wallets https://thehackernews.com/2023/07/rust-based-realst-infostealer-targeting.html 惡意軟體DecoyDog濫用DNS與C2進行通訊 https://blogs.infoblox.com/cyber-threat-intelligence/decoy-dog-is-no-ordinary-pupy-distinguishing-malware-via-dns/ 駭客利用惡意軟體Nitrogen發動勒索軟體攻擊 http://news.sophos.com/en-us/2023/07/26/into-the-tank-with-nitrogen/ Lazarus Threat Group Attacking Windows Servers to Use as Malware Distribution Points https://asec.ahnlab.com/en/55369/ HotRat: The Risks of Illegal Software Downloads and Hidden AutoHotkey Script Within https://decoded.avast.io/martinchlumecky/hotrat-the-risks-of-illegal-software-downloads-and-hidden-autohotkey-script-within/ The threat level for accountants is increasing: the UAC-0006 group carried out the third cyber attack in 10 days (CERT-UA#7065, CERT-UA#7076) https://otx.alienvault.com/pulse/64be7b3dbe9c2467c5461227 First-ever Open-Source Software Supply Chain Attacks https://cybersecuritynews.com/first-ever-open-source-supply-chain-attack/ 多個 DDoS 殭屍網路綁架 Zyxel設備發動攻擊 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10590 DDoS Botnets Hijacking Zyxel Devices to Launch Devastating Attacks https://thehackernews.com/2023/07/ddos-botnets-hijacking-zyxel-devices-to.html DDoS Botnets Target Zyxel Vulnerability CVE-2023-28771 https://www.fortinet.com/blog/threat-research/ddos-botnets-target-zyxel-vulnerability-cve-2023-28771 PurpleFox Distributed to MS-SQL Servers https://asec.ahnlab.com/ko/55302/ Sliver C2 in circulation through domestic program developers https://asec.ahnlab.com/ko/55524/ New Reptile Rootkit Malware Attacking Linux Systems Using Port Knocking https://asec.ahnlab.com/ko/55379/ Mysterious Decoy Dog malware toolkit still lurks in DNS shadows https://www.bleepingcomputer.com/news/security/mysterious-decoy-dog-malware-toolkit-still-lurks-in-dns-shadows/ Botnet Fenix: New botnet going after tax payers in Mexico and Chile https://otx.alienvault.com/pulse/64c1336884593c36acc3e40e Amadey Threat Analysis and Detections https://www.splunk.com/en_us/blog/security/amadey-threat-analysis-and-detections.html Evolution of Russian APT29 – New Attacks and Techniques Uncovered https://www.avertium.com/resources/threat-reports/evolution-of-russian-apt29-new-attacks-and-techniques-uncovered Apple Crimeware | Massive Rust Infostealer Campaign Aiming for macOS Sonoma Ahead of Public Release https://www.sentinelone.com/blog/apple-crimeware-massive-rust-infostealer-campaign-aiming-for-macos-sonoma-ahead-of-public-release/ Decoy Dog: New Breed of Malware Posing Serious Threats to Enterprise Networks https://thehackernews.com/2023/07/decoy-dog-new-breed-of-malware-posing.html HotRat: New Variant of AsyncRAT Malware Spreading Through Pirated Software https://thehackernews.com/2023/07/hotrat-new-variant-of-asyncrat-malware.html Sophisticated BundleBot Malware Disguised as Google AI Chatbot and Utilities https://thehackernews.com/2023/07/sophisticated-bundlebot-malware.html Local Governments Targeted for Ransomware – How to Prevent Falling Victim https://thehackernews.com/2023/07/local-governments-targeted-for.html Into the tank with Nitrogen https://news.sophos.com/en-us/2023/07/26/into-the-tank-with-nitrogen/ https://github.com/sophoslabs/IoCs/blob/master/Nitrogen%202023-07.csv B.行動安全 / iPhone / Android /穿戴裝置 /App / 5G / 即時通訊蘋果修補瀏覽器排版引擎WebKit、系統核心的零時差漏洞 https://www.bleepingcomputer.com/news/apple/apple-fixes-new-zero-day-used-in-attacks-against-iphones-macs/ https://twitter.com/oct0xor/status/1683563098571931648 Apple Rolls Out Urgent Patches for Zero-Day Flaws Impacting iPhones, iPads and Macs https://thehackernews.com/2023/07/apple-rolls-out-urgent-patches-for-zero.html Apple Threatens to Pull iMessage and FaceTime from U.K. Amid Surveillance Demands https://thehackernews.com/2023/07/apple-threatens-to-pull-imessage-and.html 廣受軍警單位採用的無線電通訊協定TETRA加密機制存在漏洞，恐被攻擊者用於干擾通訊 https://tetraburst.com/ https://www.vice.com/en/article/4a3n3j/backdoor-in-police-radios-tetra-burst https://www.theregister.com/2023/07/24/tetra_hardware_backdoor_opened_by/ 日本安卓用戶遭遇惡意軟體SpyNote攻擊 https://www.mcafee.com/blogs/other-blogs/mcafee-labs/android-spynote-attacks-electric-and-water-public-utility-users-in-japan/ 手機資安不可忽視！8個關鍵措施讓你安心使用 https://www.wowlavie.com/article/ae2300764 抖音危害大跨部會研議大半年無下文 https://news.ltn.com.tw/news/politics/paper/1595752 iOS 16.6 正式版更新什麼？6 個值得注意重點更新細節整理 https://mrmad.com.tw/apple-new-ios-166-security iOS16.6修復安全漏洞快更新！但這3款舊手機恐是「最後一次大更新」 https://today.line.me/tw/v2/article/0Me17Ln 卡巴斯基多位高層和員工iPhone被入侵 https://www.ptt.cc/bbs/iOS/M.1690431895.A.5D0.html 網路切片技術成5G特色　美政府籲謹慎面對資安風險 https://www.technice.com.tw/techmanage/telecom/60476/ C.事件 / 駭客 / DDOS / APT / 雲端/ 暗網/ 徵才 / 國際資安事件 / 資安人力喊500萬挖人才! 資安人才少企業高薪聘 https://www.youtube.com/watch?v=DceOlxrxHo8 Gartner：資安防護不能只靠資安人員，企業應從這些面向提升免疫力 https://buzzorange.com/techorange/2023/07/19/gartner-cybersecurity-predictions/ Google資安維運經驗大公開，克服5大常見挑戰，從人、流程、技術等層面思考 https://www.huidu.io/news/6338/ 傷害資安從業人員的七大錯誤心態與正確的看待方式 https://news.owlting.com/articles/416535 中華汽車遭遇網路攻擊，傳出部分產線停工 https://www.ftvnews.com.tw/news/detail/2023724F06M1 中華汽車遭惡意資安攻擊部分產線停產檢修 https://reurl.cc/2LOM5n 資安即國安接招資訊戰數位韌性、民眾個資都重要 https://2030.tw/article/Digital-Strategy-for-Defence-032-INDSR 時刻保持警覺慎防中共監視竊密 https://www.ydn.com.tw/news/newsInsidePage?chapterID=1602150 中外長秦剛失蹤疑雲桃色風波暗藏資安危機 https://www.youtube.com/watch?v=Nrw6orEqAow 中國駭客組織入侵多國電郵！傳美駐中大使、亞太助卿都遭駭 https://news.ltn.com.tw/news/world/breakingnews/4370854 中情局長首度承認美在中國情報網被破壞幹員流失逾十年 https://udn.com/news/story/6813/7318965?from=udn-catebreaknews_ch2 中國武漢地震監測中心遭駭「源頭指向美國」　陸外交部予以譴責 https://www.ettoday.net/news/20230726/2547967.htm 與美有關？武漢地震監測中心被駭玉淵譚天：可藉此找出軍事基地 https://udn.com/news/story/7331/7326523 報告：中企在美組織華府抗議活動 https://reurl.cc/x78DxV 報告稱，加拿大情報部門37年前就已擔憂中國干涉 https://reurl.cc/Ovo7O3 美國FBI欲延外國情監法拿兩岸衝突當理由 https://turnnewsapp.com/choice/299560.html 美國中情局長：習近平對攻打台灣心存顧慮 https://reurl.cc/AAln5j 美中情局長稱：對中情報獲進展毛寧反嗆：「中國會採取一切行動自保」 https://newtalk.tw/news/view/2023-07-24/881172 中共網軍攻擊乾淨世界輸出仇恨言論 https://reurl.cc/Ovo7xv 「中國無疑構成最重大威脅！」拜登政府公布網路安全計畫《外交政策》：差距仍存在 https://www.storm.mg/article/4843171?page=1 數字入侵全球中共黑客團隊接連被曝光 https://www.ntdtv.com/b5/2023/07/24/a103754231.html 研究人員發現JumpCloud資安事故新證據，指出駭客與北韓軍情單位有關 https://www.mandiant.com/resources/blog/north-korea-supply-chain 北韓奧步撈錢？駭客入侵美IT公司試圖竊取加密貨幣 https://news.ltn.com.tw/news/world/breakingnews/4370817 韓國IIS網頁伺服器遭到北韓駭客Lazarus鎖定，將其用於散布惡意程式 https://asec.ahnlab.com/en/55369/ 烏克蘭警方破獲大型機器人機房，查獲 15 萬張 SIM 卡 https://www.twcert.org.tw/tw/cp-104-7267-ce8bf-1.html 紐西蘭成立單一機構加強網絡安全 https://www.trademag.org.tw/page/newsid1/?id=7885582&iz=6 macOS Under Attack: Examining the Growing Threat and User Perspectives https://thehackernews.com/2023/07/macos-under-attack-examining-growing.html North Korean Nation-State Actors Exposed in JumpCloud Hack After OPSEC Blunder https://thehackernews.com/2023/07/north-korean-nation-state-actors.html Russia was expected to wipe out Ukraine in cyberwarfare. It hasn’t. https://moonlock.com/russia-ukraine-cyber-war Group-IB Co-Founder Sentenced to 14 Years in Russian Prison for Alleged High Treason https://thehackernews.com/2023/07/group-ib-co-founder-sentenced-to-14.html 美國SEC新規定：上市公司要在4天內披露重大資安事件 https://www.ithome.com.tw/news/157967 New SEC Rules Require U.S. Companies to Reveal Cyber Attacks Within 4 Days https://thehackernews.com/2023/07/new-sec-rules-require-us-companies-to.html 資訊安全顧問師 https://job.taiwanjobs.gov.tw/Internet/Index/JobDetail.aspx?EMPLOYER_ID=2374573&HIRE_ID=12033303&R2=1 資安人員(資訊部) https://www.104.com.tw/job/82btl?jobsource=googlejobs 網路資安工程師(Cloudflare資安技術顧問) https://www.104.com.tw/job/82cb9?jobsource=googlejobs 【海外】資安主管 https://www.104.com.tw/job/7pazq?jobsource=googlejobs 資訊安全稽核師_稽核處 https://www.104.com.tw/job/7ms71?jobsource=jolist_b_relevance 證券內部稽核人員 https://www.104.com.tw/job/6rw45?jobsource=jolist_b_relevance 元大證券-稽核部-資訊稽核人員 https://www.104.com.tw/job/8278m?jobsource=jolist_b_relevance 電腦稽核人員 https://www.104.com.tw/job/72bdx?jobsource=jolist_b_relevance 稽核_資安稽核人員 https://www.104.com.tw/job/7982z?jobsource=jolist_b_relevance 【運營企劃】內部稽核人員(電腦稽核) https://www.104.com.tw/job/7zosw?jobsource=jolist_b_relevance G133 資深稽核人員(可遠端工作) https://www.104.com.tw/job/6ju85?jobsource=jolist_b_relevance 稽核總處-資深稽核人員 https://www.104.com.tw/job/7u311?jobsource=jolist_b_relevance 電腦稽核 https://www.104.com.tw/job/7zyox?jobsource=jolist_b_relevance 《總公司稽核室》資安資訊稽核 https://www.104.com.tw/job/81478?jobsource=jolist_b_relevance 資訊安全顧問 https://www.104.com.tw/job/82cyw?jobsource=googlejobs D.資料外洩/個資法/GDPR/網路詐騙/網路釣魚/盜刷/假新聞/網路霸凌/帳號安全 GitHub示警：Lazarus對軟體開發者進行社交工程攻擊 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10594 駭客製作AI網路犯罪工具FraudGPT，號稱不只能製作釣魚郵件，還能用於打造破解工具 https://netenrich.com/blog/fraudgpt-the-villain-avatar-of-chatgpt New AI Tool 'FraudGPT' Emerges, Tailored for Sophisticated Attacks https://thehackernews.com/2023/07/new-ai-tool-fraudgpt-emerges-tailored.html 駭客組織SiegedSec鎖定北約組織而來，外洩入口網站數百份文件 https://www.hackread.com/siegedsec-hacktivist-hack-nato-data-leak/ 竊資軟體盜走逾40萬家公司的雲端服務帳密 https://flare.io/learn/resources/stealer-logs-and-corporate-access/ 竊資軟體Doenerium假冒ChatGPT或其他AI工具，透過臉書貼文進行散布 https://blog.checkpoint.com/security/facebook-flooded-with-fake-ads-for-chatgpt-google-bard-and-other-ai-services-tricking-users-into-downloading-malware 惡意軟體分析平臺VirusTotal對於資料外洩事件進行公開說明 https://blog.virustotal.com/2023/07/apology-and-update-on-recent-accidental.html 愛情詐騙增加 …失財傷心法律難解 https://udn.com/news/story/123627/7318582 高風險賣場曝光！7-11賣貨便、臉書、蝦皮全上榜警盼企業強化資安協力阻詐 https://news.m.pchome.com.tw/society/ctinews/20230722/index-69001910077136309002.html 積極抵禦認知作戰反制中共「後門外交」 https://www.ydn.com.tw/news/newsInsidePage?chapterID=1602323&type=universal 使用相同帳號密碼危險多　資安專家：可用Chrome一套小工具來幫你 https://today.line.me/tw/v2/article/0MjkXyn 避免電匯失敗，「技術支援詐欺犯」誘導受害者將錢藏入雜誌寄送 https://technews.tw/2023/07/24/tech-support-scams-now-use-shipping-companies-to-collect-cash/ 近日詐騙集團冒用馬祖海上訂位購票系統詐騙　交旅局提出說明 https://www.matsu-news.gov.tw/news/article/212760 微軟防堵帳密遭網釣竊取！Windows 11 增添實用防護功能手動開啟這樣做 https://3c.ltn.com.tw/news/54277 台電爆「假電費帳單」流竄，3特徵千萬別點開！實用4方法再也不收詐騙垃圾信 https://www.edh.tw/lohas/article/31452 加拿大網路安全中心：駭客正在用AI傳播假消息 https://www.technice.com.tw/issues/ai/60356/ 實況主Sandy春光片外流！男問「有人要上車嗎？」遭求償3百萬　結果曝光 https://www.setn.com/News.aspx?NewsID=1328663 旅宿網站資料遭竊！顧客慘遭騙49萬　警：詐團有駭客組 https://www.ettoday.net/news/20230725/2547002.htm 斥利用社群平台認知作戰外交部：中國作賊喊捉賊 https://news.ltn.com.tw/news/politics/paper/1595753 抖音「美誘使台海戰爭」散播假訊息外交部批認知作戰 https://news.pts.org.tw/article/647926 警告！Apple Store最新惡意釣魚APP，開啟雙重認證仍可能被盜 https://www.blocktempo.com/apple-releases-critical-security-update/ 警局也玩抖音？台中市刑大駁斥遭冒用 https://reurl.cc/01ezxY 北京假新聞大外宣滲透美媒體網站 https://news.ltn.com.tw/news/world/paper/1595967 中共假訊息無所不在! 美國資安公司踢爆"72假新聞網"助中大外宣行銷公司+外包平台助攻 https://www.youtube.com/watch?v=C75-GArbYWw 臉書資安APP「暗中收集用戶資訊」　Meta被澳洲罰款4.2億 https://www.ettoday.net/news/20230726/2547798.htm 收到政府槍決通知？數位部：中國詐騙簡訊改編 https://www.1111.com.tw/news/jobns/152524 小甜甜衰遭發死訊疑駭客用來宣傳資安服務 https://reurl.cc/eDo53L E.研究報告/工具研究人員針對微軟MSMQ訊息佇列漏洞公布細節 https://www.fortinet.com/blog/threat-research/microsoft-message-queuing-service-vulnerabilities 針對中國駭客濫用的微軟帳號簽章，有研究人員警告影響範圍廣泛，攻擊者能用來存取其他微軟服務 https://www.wiz.io/blog/storm-0558-compromised-microsoft-key-enables-authentication-of-countless-micr 安全人員宣稱微軟 MSA 帳號金鑰遭竊影響範圍超過 Exchange 與 Outlook.com https://netmag.tw/2023/07/24/msa-key-breach-wider-impact 零信任與多因素身分認證是現今資安環境的治本關鍵 https://www.digitimes.com.tw/tech/dt/n/shwnws.asp?CnlID=14&cat=60&id=0000669402_DQU5WPO6LHDQ5J3NSIXZC 軟體開發前,你是否需要使用ssdlc查檢表 https://www.pintech.com.tw/blog_list/542/should-you-use-ssdlc-checklist-before-software-development 自由及開放原始碼軟體是什麼？關於它的 7 個誤解 https://www.kocpc.com.tw/archives/501608 新型DDoS攻击？基于QUIC协议的DDoS反射放大攻击研究 https://www.anquanke.com/post/id/289906 攻防演练场景资产失陷后常见加密流量概况 https://www.4hou.com/posts/EXqm 新书|（第2版）《ATT&CK框架实践指南》正式发布 https://www.aqniu.com/vendor/98227.html How MDR Helps Solve the Cybersecurity Talent Gap https://thehackernews.com/2023/07/how-mdr-helps-solve-cybersecurity.html The Alarming Rise of Infostealers: How to Detect this Silent Threat https://thehackernews.com/2023/07/the-alarming-rise-of-infostealers-how.html The 4 Keys to Building Cloud Security Programs That Can Actually Shift Left https://thehackernews.com/2023/07/the-4-keys-to-building-cloud-security.html Hackers Target Apache Tomcat Servers for Mirai Botnet and Crypto Mining https://thehackernews.com/2023/07/hackers-target-apache-tomcat-servers.html The Alarming Rise of Infostealers: How to Detect this Silent Threat https://thehackernews.com/2023/07/the-alarming-rise-of-infostealers-how.html Azure AD Token Forging Technique in Microsoft Attack Extends Beyond Outlook, Wiz Reports https://thehackernews.com/2023/07/azure-ad-token-forging-technique-in.html F.商業資安業者Thales以36億美元買下Imperva https://www.thalesgroup.com/en/worldwide/security/press_release/thales-create-world-class-global-cybersecurity-leader-acquiring-us 7大業者承諾促進AI安全 https://www.whitehouse.gov/briefing-room/statements-releases/2023/07/21/fact-sheet-biden-harris-administration-secures-voluntary-commitments-from-leading-artificial-intelligence-companies-to-manage-the-risks-posed-by-ai/ 宏碁資訊雲端需求續強 https://reurl.cc/mDQ6rl 精誠導入生成式AI https://reurl.cc/2LOMzv 達友科技宣布代理BlackBerry Cylance以智慧AI抵禦威脅 https://www.digitalwall.com/scripts/displaypr.asp?UID=88867 自動更新官方警示IP清單　海量有害位址輕鬆過濾管理 NSX微分段防火牆絕配　惡意位址阻擋功能上線 https://www.netadmin.com.tw/netadmin/zh-tw/technology/258B97522EE243AEB7C4705975B89368 數位轉型後遺症! 專家示警台企"資安危機" https://news.ustv.com.tw/newsdetail/20230725A044 OpenAI、Meta 等七巨頭聯手，打造 AI 時代「防偽身分證」 https://technews.tw/2023/07/26/ai-id/ 內容行銷當道新時代！博弘雲端如何用 DevOps 助攻行銷平台將品牌流量最大化？ https://buzzorange.com/techorange/2023/07/26/kolable/ G.政府 22年政府通報資安事件共765件，數發部提五大建議 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10584 漢光演習24日登場將演練海纜中斷備援及無人機防禦 https://www.cna.com.tw/news/aipl/202307230065.aspx 唐鳳與韓國駐台代表會面盼台韓攜手強化資安聯防 https://reurl.cc/kXWNOr 唐鳳接見歐洲議會外委會訪團共倡資安聯防 https://ec.ltn.com.tw/article/breakingnews/4377999 衡指所7/17喪失指管功能？軍方：僅直通語音及數據傳輸受影響 https://def.ltn.com.tw/article/breakingnews/4372985 衡山與蟾蜍山失能　備援是什麼 https://vocus.cc/article/64bcfdb9fd89780001185499 連閣揆也遭冒用！學者：應訂網詐專法 https://anntw.com/articles/20230724-5vm0 法務部調查局澎湖縣調查站與衛生福利部澎湖醫院簽署資通安全合作備忘錄 https://www.mjib.gov.tw/news/Details/1/883 陳揆：數位部正評估不同APP下載都需立法執行 https://turnnewsapp.com/livenews/finance/A11608002023072510245995 總統視導國家關鍵基礎設施防護演練要求加強資安防護 https://www.rti.org.tw/news/view/id/2174757 H.工控系統/ICS/SCADA/IOT/物聯網/車聯網/電動車/人工智慧/AI/ML/人臉辨識/醫療相關資安美國計畫針對安全性較高的智慧裝置推出網路安全認證標章「Cyber Trust Mark」 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10585 MikroTik路由器存在漏洞，恐讓攻擊者取得超級管理員權限 https://vulncheck.com/blog/mikrotik-foisted-revisited Critical MikroTik RouterOS Vulnerability Exposes Over Half a Million Devices to Hacking https://thehackernews.com/2023/07/critical-mikrotik-routeros.html 台灣無人機產業鏈完整可望創造國防經濟 https://www.agesnews.com/archives/550923 趨勢科技最新報告指出營運技術(OT)可視性與人才管理是兩大挑戰 https://www.techbang.com/posts/107951-it-ot-convergence-helps-optimize-risk-management-according-to OT資安防護多從網路架構/遠端連線切入 https://reurl.cc/dDozn8 I.教育訓練 iPAS資訊安全工程師中級筆記 https://hackmd.io/@Not/iPASInformationSecuritySpecialist iPas資安工程師證照考前研習 https://reurl.cc/GEbA3p Coursera 盤點 7 項雲端資安認證，高薪跳板都在這了！ https://buzzorange.com/techorange/2022/07/12/cloud-security-certificates/ 全球網絡安全勞動力失衡 (ISC)2免費課程及考試填補人才缺口 https://reurl.cc/m39MDj CISSP資安認證的8大領域 https://2formosa.blogspot.com/2022/12/CISSP-topic-domains.html CISSP考試心得 https://reurl.cc/KbY83j CISSP考試心得 – Benson https://reurl.cc/GbWvxd 目標導向-20天光速考過CISSP https://reurl.cc/2Zq6zn CISSP證照考試實戰心得第一章：初期準備工作 https://netmag.tw/2022/06/17/the-cissp-has-learned-the-first-chapter-in-actual-combat CISSP證照考試實戰心得第二章：規律且有紀律的讀書策略 https://netmag.tw/2022/07/01/the-cissp-is-in-the-field-of-combat-chapter-two-regular-and-disciplined-reading-strategies CISSP證照考試實戰心得第三章：終極一戰 https://netmag.tw/2022/07/12/the-cissp-has-learned-a-third-chapter-in-actual-combat-experience-the-ultimate-battle Quick CISSP Infographic for IPSec https://www.studynotesandtheory.com/single-post/quick-cissp-infographic-for-ipsec CSSLP Certification - Security models in F# https://github.com/vbocan/csslp Certified Secure Software Lifecycle Professional in bullet points https://github.com/joeyhage/csslp-notes CPSA(CREST Practitioner Security Analyst) 資安分析師考試心得 https://tech-blog.cymetrics.io/posts/huli/crest-cpsa-prepare/ EC-Council CEH v11 考試心得、改版資訊以及準備方向 2021、2022 https://reurl.cc/1oyEM8 CEH v11 考試心得與準備方式 https://blog.sean.taipei/2022/01/ceh CEH https://github.com/a3cipher/CEH CodeRed by EC-Council https://github.com/codered-by-ec-council ECSA v10 考試心得與讀書資料分享/ ECSA v10 Review and Study Materials https://medium.com/blacksecurity/ecsa-v10-1ec76c0eb7d4 EC-Council ECSA資安分析專家 v10 考試心得分享 https://javaxtalk.blogspot.com/2019/05/ec-council-ecsa-v10.html 20180817 EC-Council ECSA v10 PASS https://www.ptt.cc/bbs/License/M.1534571704.A.5BA.html 關於EC-Council CPENT和LPT Master滲透測試證照準備方式及心得分享 https://medium.com/@ChadSecurity/%E9%97%9C%E6%96%BCec-council-cpent%E5%92%8Clpt-master%E6%BB%B2%E9%80%8F%E6%B8%AC%E8%A9%A6%E8%AD%89%E7%85%A7%E6%BA%96%E5%82%99%E6%96%B9%E5%BC%8F%E5%8F%8A%E5%BF%83%E5%BE%97%E5%88%86%E4%BA%AB-efb63de00a8d 深度解析 CPENT 考試心得、以及與 OSCP 的比較 https://reurl.cc/41eL8v EC-Council CPENT v1 滲透測試認證 – 內容及心得分享 https://hackercat.org/pentesting/ec-council-cpent-v1-experience-review CPENT 從暴力到破解 https://hackmd.io/@3WAsoRFgSlyy7pm10p60kg/ByO0zs295 Ec-Council CPENT心得 - 資安菜鳥從CEH到LPT Master https://4hsienyang.medium.com/cpent-lpt-master-ccaebf2dbc7f CPENT考試心得分享：一次拿到 LPT 滲透測試大師認證 https://ucom.uuu.com.tw/web/Testimony/Article/4404 kaizensecurity/CPENT https://github.com/kaizensecurity/CPENT/tree/master CPENT : Pentesting like NO OTHERS ! https://www.linkedin.com/pulse/cpent-pentesting-like-others-belly-rachdianto/ Journey of My CPENT Exam https://medium.com/techiepedia/journey-of-my-cpent-exam-3a5d7ee6d917 [備考心得]CompTIA Security+ (SY0–601) 上篇 https://reurl.cc/M053DK [備考心得]CompTIA Security+ (SY0–601) 下篇 https://reurl.cc/M053Gv comptia-security-plus https://github.com/ajfuto/comptia-security-plus security-plus https://github.com/fjavierm/security-plus CompTIA Security+ Certification Practice Test Questions https://www.examcompass.com/comptia/security-plus-certification/free-security-plus-practice-tests#google_vignette 不只是工程師才要懂的 App 資訊安全：取得資安檢測合格證書血淚史（iT邦幫忙鐵人賽系列書） https://news.pchome.com.tw/living/books/20220202/index-64375841669874292009.html OSEP (Evasion Techniques and Breaching Defenses (PEN-300) 心得分享 https://hackmd.io/@henry-ko/HyQ56e8eF ISACA Certified Information Systems Auditor® (CISA) 國際電腦稽核師認證準備歷程心得、申請流程分享- 2023年 https://reurl.cc/aVLoX9 Learn NIST Inside Out With 21 Hours of Training @ 86% OFF https://thehackernews.com/2022/06/learn-nist-inside-out-with-21-hours-of.html 駭客與國家: 網路攻擊與地緣政治新常態 The hacker and the state: cyber attacks and the new normal of geopolitic https://reurl.cc/D3nKKj Practical Network Penetration Tester (PNPT) Certification Review https://tmc222.medium.com/practical-network-penetration-tester-pnpt-certification-review-4280e4e164df WUSON常用的基本詞彙 https://choson.lifenet.com.tw/?p=1958 證照仍是學習資安基本功的主要管道，有專家打造「資安證照地圖」 https://www.ithome.com.tw/news/156754 用證照證明自己實力之餘，更應將證照視為督促學習的最大動力 https://www.ithome.com.tw/news/156756 打破證照誤解與迷思，資安專家帶你釐清資安證照的意義 https://www.ithome.com.tw/news/156755 Accelerate Your Career with the Global Leader in Cyber Security Training https://www.sans.org/mlp/promo-partnership-hacker-news/ 6.近期資安活動及研討會緯育TibaMe「第二屆IT人才求職趣」大型人才招募活動 2023/7/29 https://tibametibame.kktix.cc/events/goodjob729even 【舒虎教育】《區塊鏈初階課程》假日班 2023/7/29 ~ 2023/7/30 https://www.accupass.com/event/2305280843202058678448 COSCUP 2023 2023/07/29 ~ 2023/07/30 https://coscup.org/2023/zh-TW/landing 112 年度政大區網中心研討會 2023/7/31 https://tp2rc.tanet.edu.tw/seminar 入門 AI 開源的生態系平台 Hugging Face 2023/7/31 https://www.meetup.com/rladies-taipei/events/294283382/ Hugging Face : Automatic Speech Recognition 2023/8/1 https://www.meetup.com/tensorflow-user-group-taipei/events/295006076/ AI X 數位人權亞洲契機交流會 Intersection：Exchange Activities for AI x Digital Rights 2023/8/1 https://ocftw.kktix.cc/events/aixdigitalrights InfoSec Taiwan 2023 國際資安大會 2023/8/1 ~ 2023/8/3 https://csa.kktix.cc/events/infosectaiwan2023 SyntaxError 2023/8/2 https://www.meetup.com/pythonhug/events/294781166/ Machine Learning Tech Talks 2023/8/2 https://www.meetup.com/machine-learning-tech-talks/events/294896206/ 跨域轉生 Fintech 前端／開發工程師的使用說明書：國泰×緯育TibaMe 2023/8/2 https://theinfinitylab.kktix.cc/events/changecareers2fintech0727 HackingThursday 固定聚會@2023 -- 台北 Taipei 2023/8/3 https://www.meetup.com/hackingthursday/events/294804392/ Airflow Taiwan User Meetup #7 2023/8/3 https://www.meetup.com/taipei-py/events/294760894/ 2023 ACW SOUTH 沙崙資安國際研討會 2023/8/4 https://www.accupass.com/event/2305230146231633182225 第一屆Web3資安論壇：⟪區塊鏈資安三部曲⟫ 共識、共進、共榮│攜手共創資安新升級 2023/8/4 https://www.accupass.com/event/2307040352321704671309 LangChain Taipei 2023/8/8 https://www.meetup.com/taipei_langchain/events/294403718/ Elixir meetup 2023/8/8 https://www.meetup.com/elixirtw-taipei/events/295023511/ 大數據分析進階班 2023/8/10 ~ 2023/8/11 https://www.chtti.cht.com.tw/general/course_info.jsp?activity_id=611 DEF CON 32 2023/8/10 ~ 2023/8/13 https://defcon.org/index.html 2023網路信賴基礎環境應用導入論壇 2023/8/15 https://www.accupass.com/event/2307130333072035570544 國家高速網路與計算中心台灣杉一號用戶教育訓練 2023/8/15 https://edu.nchc.org.tw/course/one_course_introduction.asp?lms_auto_course_id=4044&from_course_list_url=homepage 國家高速網路與計算中心台灣杉三號用戶教育訓練 2023/8/16 https://edu.nchc.org.tw/course/one_course_introduction.asp?lms_auto_course_id=4040&from_course_list_url=homepage Zero Trust 新世代資安防線-零信任部署分享座談 2023/8/16 https://jamf.kktix.cc/events/zerotrust0816 【Monosparta】②⓪②③ 第三梯次軟體開發實戰訓練營➠線上說明會 2023/8/16 https://trunk-studio.kktix.cc/events/monosparta-202309 【文件加密軟體免費試用】線上資安研討會，保護研發機密這樣做 2023/8/16 https://www.accupass.com/event/2307071251221833519225 AIoT應用實作研習班 2023/8/16 ~ 2023/8/17 https://www.chtti.cht.com.tw/general/course_info.jsp?activity_id=601 HITCON CMT 2023 2023/08/18 ~ 2023/08/19 https://hitcon.org/2023/CMT/ GO!!JIRA 社團實體日 2023/08/19 https://www.meetup.com/taipei-atlassian-community-events/events/294803808/ WordPress - 桃園午茶小聚 #27 2023/08/19 https://www.meetup.com/taoyuan-wordpress-meetup/events/294930398/ 騰雲資安暑期營 2023/8/21 https://tengyun-security.kktix.cc/events/409411b1 大數據分析進階班 (台中) 2023/8/21 ~ 2023/8/22 https://www.chtti.cht.com.tw/general/course_info.jsp?activity_id=612 AIoT應用實作研習班 (台中) 2023/8/23 ~ 2023/8/24 https://www.chtti.cht.com.tw/general/course_info.jsp?activity_id=604 5G+AIOT機器人智慧生活應用科學營 2023/8/23 ~ 2023/8/25 https://www.chtti.cht.com.tw/general/course_info.jsp?activity_id=625 全面備戰資安韌性雲端資安全攻略 2023/8/24 https://www.accupass.com/event/2307190344132041357276 NISRA Enlightened 2023 2023/8/28 ~ 2023/8/31 https://nisra.kktix.cc/events/2023enlightened 【資安課程】數位鑑識工具與實務課程｜ACW SOUTH數位產業署沙崙資安服務基地 2023/8/31 https://ievents.iii.org.tw/EventS.aspx?t=0&id=2170 2023中部製造業資安論壇 2023/9/1 https://www.informationsecurity.com.tw/seminar/2023_TCM/register.aspx PyCon TW 2023 2023/9/2 ~ 2023/9/3 https://tw.pycon.org/2023/zh-hant/registration/tickets Web應用滲透測試 2023/9/7 ~ 2023/9/8 https://www.chtti.cht.com.tw/general/course_info.jsp?activity_id=631 KNIME Data Connect: Taiwan (Onsite/Hybrid) 2023/9/14 https://www.meetup.com/knime-users-taiwan/events/295003668/ Secure Our Streets 2023 2023/9/14 https://www.meetup.com/automotive-security-research-group-taipei/events/292175225/ [GDG] Artificial Intelligence Information Security Day 2023/9/16 https://gdg-taipei.kktix.cc/events/artificial-intelligence-information-security-day Hou.Sec.Con 2023/10/12 ~ 2023/10/13 https://web.cvent.com/event/76d46ccb-fe00-4fe5-ba46-e4a77c807f21/summary 國家高速網路與計算中心平行計算程式設計基礎課程 2023/10/17 https://edu.nchc.org.tw/course/one_course_introduction.asp?lms_auto_course_id=4033&from_course_list_url=homepage OCF 培訓活動: 如何建立安全的網路架構 II 2023/10/21 https://ocftw.kktix.cc/events/ocftot2023 (ISC)2 SECURITY CONGRESS LEAD WITH CONFINDENCE 2023/10/25 ~ 2023/10/27 https://www.isc2.org/Congress-2023 https://hackmd.io/6PRo6apxQMeEDtuGVoFU4w# 【亞洲最具指標供應鏈高峰會】Supply Chain Summit 2023 2023/11/14 ~ 2023/11/15 https://www.accupass.com/event/2307070154211343470512