資安事件新聞週報 2024/09/23 ~ 2024/09/27

###### tags: `資安事件新聞週報` # 資安事件新聞週報 2024/09/23 ~ 2024/09/27 1.重大弱點漏洞/後門/Exploit/Zero Day VMware vCenter伺服器存在重大漏洞，有可能讓攻擊者遠端執行任意程式碼 https://blogs.vmware.com/cloud-foundation/2024/09/17/vmsa-2024-0019-questions-answers/ VMware 發布 vCenter Server 和 Cloud Foundation 安全更新 https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/24968 Patch Issued for Critical VMware vCenter Flaw Allowing Remote Code Execution https://thehackernews.com/2024/09/patch-issued-for-critical-vmware.html 美國CISA警告 SonicWall 漏洞遭利用，勒索軟體集團恐涉入 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=11248 Cisco IOS XR https://nvd.nist.gov/vuln/detail/CVE-2024-20381 https://nvd.nist.gov/vuln/detail/CVE-2024-20398 https://nvd.nist.gov/vuln/detail/CVE-2024-20489 https://nvd.nist.gov/vuln/detail/CVE-2024-20304 https://nvd.nist.gov/vuln/detail/CVE-2024-20317 https://nvd.nist.gov/vuln/detail/CVE-2024-20406 https://nvd.nist.gov/vuln/detail/CVE-2024-20483 Fortinet FortiClientEMS https://nvd.nist.gov/vuln/detail/CVE-2024-33508 FortiSOAR https://nvd.nist.gov/vuln/detail/CVE-2024-45327 Red Hat修補OpenShift重大層級漏洞 https://ithome.com.tw/news/165071 Microsoft 推出 2024 年 9 月 Patch Tuesday 每月例行更新修補包 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=11244 Windows 10 版本 1507 https://nvd.nist.gov/vuln/detail/CVE-2024-43491 Windows 10 Version 1809 https://nvd.nist.gov/vuln/detail/CVE-2024-38045 https://nvd.nist.gov/vuln/detail/CVE-2024-38240 Windows 11 Version 24H2 https://nvd.nist.gov/vuln/detail/CVE-2024-43461 營造業者採用的會計軟體遭到鎖定，駭客利用SQL Server漏洞取得管理員權限 https://www.huntress.com/blog/cracks-in-the-foundation-intrusions-of-foundation-accounting-software Microsoft SQL Server 2017 (GDR) https://nvd.nist.gov/vuln/detail/CVE-2024-26186 https://nvd.nist.gov/vuln/detail/CVE-2024-26191 https://nvd.nist.gov/vuln/detail/CVE-2024-37335 https://nvd.nist.gov/vuln/detail/CVE-2024-37338 https://nvd.nist.gov/vuln/detail/CVE-2024-37339 https://nvd.nist.gov/vuln/detail/CVE-2024-37340 https://nvd.nist.gov/vuln/detail/CVE-2024-37341 https://nvd.nist.gov/vuln/detail/CVE-2024-37965 https://nvd.nist.gov/vuln/detail/CVE-2024-37980 https://nvd.nist.gov/vuln/detail/CVE-2024-37337 https://nvd.nist.gov/vuln/detail/CVE-2024-37342 https://nvd.nist.gov/vuln/detail/CVE-2024-37966 Microsoft SharePoint Enterprise Server 2016 https://nvd.nist.gov/vuln/detail/CVE-2024-38018 FreeBSD修補Hypervisor元件重大層級漏洞 https://www.ithome.com.tw/news/165151 Cellopoint修補郵件安全閘道重大漏洞，用戶應儘速更新防止管理員權限被奪走 https://www.ithome.com.tw/news/165179 GitLab揭露CVSS滿分漏洞，若不盡快修補，恐被繞過SAML身分驗證 https://www.ithome.com.tw/news/165090 GitLab修補重大層級的管道執行漏洞 https://www.ithome.com.tw/news/165043 macOS 行事曆零點擊攻擊：遠端程式碼執行漏洞恐暴露 iCloud 資料 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=11256 Docker修補電腦版應用程式RCE漏洞 https://www.ithome.com.tw/news/165044 Ivanti Warns of Active Exploitation of Newly Patched Cloud Appliance Vulnerability https://thehackernews.com/2024/09/ivanti-warns-of-active-exploitation-of.html 蘋果修補Vision Pro虛擬鍵盤漏洞GAZEploit https://thehackernews.com/2024/09/apple-vision-pro-vulnerability-exposed.html Apple Vision Pro Vulnerability Exposed Virtual Keyboard Inputs to Attackers https://thehackernews.com/2024/09/apple-vision-pro-vulnerability-exposed.html Progress WhatsUp Gold Exploited Just Hours After PoC Release for Critical Flaw https://thehackernews.com/2024/09/progress-whatsup-gold-exploited-just.html SolarWinds修補權限管理系統ARM重大漏洞 https://www.solarwinds.com/trust-center/security-advisories/cve-2024-28991 SolarWinds Issues Patch for Critical ARM Vulnerability Enabling RCE Attacks https://thehackernews.com/2024/09/solarwinds-issues-patch-for-critical.html Google Fixes GCP Composer Flaw That Could've Led to Remote Code Execution https://thehackernews.com/2024/09/google-fixes-gcp-composer-flaw-that.html 新興AI系統AutoGPT存在重大漏洞，逾44萬個軟體程式碼專案恐曝險 https://www.ithome.com.tw/news/165060 重大層級macOS行事曆應用程式漏洞恐影響數百萬用戶，攻擊者有機會零點擊觸發 https://mikko-kenttala.medium.com/zero-click-calendar-invite-critical-zero-click-vulnerability-chain-in-macos-a7a434fc887b macOS版ChatGPT軟體存在漏洞，攻擊者恐藉此將間諜軟體植入AI工具 https://www.ithome.com.tw/news/165198 GCP存在漏洞CloudImposer，攻擊者有機會透過供應鏈攻擊利用 https://www.tenable.com/blog/cloudimposer-executing-code-on-millions-of-google-servers-with-a-single-malicious-package IBM QRadar SIEM contains multiple vulnerabilities https://www.ibm.com/support/pages/node/7168815 GitLab Patches Critical SAML Authentication Bypass Flaw in CE and EE Editions https://thehackernews.com/2024/09/gitlab-patches-critical-saml.html Google發布Chrome大改版129，修補V8引擎高風險漏洞 https://chromereleases.googleblog.com/2024/09/stable-channel-update-for-desktop_17.html Critical Ivanti Cloud Appliance Vulnerability Exploited in Active Cyberattacks https://thehackernews.com/2024/09/critical-ivanti-cloud-appliance.html Hackers Exploit Default Credentials in FOUNDATION Software to Breach Construction Firms https://thehackernews.com/2024/09/hackers-exploit-default-credentials-in.html Azure Stack Hub https://nvd.nist.gov/vuln/detail/CVE-2024-38220 Atlassian發布9月例行更新，修補會引發阻斷服務攻擊的漏洞 https://confluence.atlassian.com/security/security-bulletin-september-17-2024-1431249025.html Adobe 發布PDF軟體Acrobat及Reader安全更新 https://www.ithome.com.tw/news/164977 https://helpx.adobe.com/security/products/acrobat/apsb24-70.html https://www.tenable.com/cve/CVE-2024-41869 https://www.tenable.com/cve/CVE-2024-45112 https://nvd.nist.gov/vuln/detail/CVE-2024-41869 https://nvd.nist.gov/vuln/detail/CVE-2024-45112 Pure Storage修補儲存設備重大漏洞 https://www.ithome.com.tw/news/165226 TeamViewer修補兩個新揭露的高風險權限提升漏洞 https://www.ithome.com.tw/news/165230 Ivanti在8月修補的應用程式交付系統vTM漏洞已出現攻擊行動 https://www.cisa.gov/news-events/alerts/2024/09/24/cisa-adds-one-known-exploited-vulnerability-catalog CISA Flags Critical Ivanti vTM Vulnerability Amid Active Exploitation Concerns https://thehackernews.com/2024/09/cisa-flags-critical-ivanti-vtm.html Google's Shift to Rust Programming Cuts Android Memory Vulnerabilities by 52% https://thehackernews.com/2024/09/googles-shift-to-rust-programming-cuts.html Critical NVIDIA Container Toolkit Vulnerability Could Grant Full Host Access to Attackers https://thehackernews.com/2024/09/critical-nvidia-container-toolkit.html 資料庫管理工具pgAdmin存在重大漏洞，攻擊者可繞過OAuth身分驗證流程挾持用戶資料 https://www.ithome.com.tw/news/165202 Acronis修補備份軟體Plug-in程式的重大資安漏洞 https://www.ithome.com.tw/news/165142 全球電子郵件系統安全亮紅燈！網擎解析郵件伺服器軟體資安危機 https://www.ithome.com.tw/news/165122 Grafana修補軟體開發套件資訊洩露漏洞 https://www.ithome.com.tw/news/165153 Microchip進階軟體框架存在重大RCE漏洞 https://www.ithome.com.tw/news/165166 2.銀行/金融/保險/證券/金融監理新聞及資安金融產業資安解析 https://www.cio.com.tw/financial-industry-security-resolution/ 臺網攜政大集保推動電子簽章生態圈！打通數位金融轉型 https://reurl.cc/A2DaX8 安卓金融木馬Octo2鎖定歐洲國家，接管受害裝置 https://www.ithome.com.tw/news/165203 New Octo2 Android Banking Trojan Emerges with Device Takeover Capabilities https://thehackernews.com/2024/09/new-octo2-android-banking-trojan.html 3.信用卡/電子支付/行動支付/pay/支付系統/資安日本PayPay用電子支付付薪水！為何高達4萬員工搶著用？公司倒了怎麼辦 https://www.bnext.com.tw/article/80612/paypay-salary-payment? 接受電子支付遭疑涉詐　台南計程車司機舉證自清 https://news.cts.com.tw/cts/society/202409/202409252380805.html#google_vignette 計程車司機收電子支付車資遭誤認詐騙共犯列警示帳戶 https://news.pts.org.tw/article/716499 日本都能用八達通？掃描二維碼即兌換成日圓支付！網民直言：感覺有點麻煩、多此一舉 https://reurl.cc/OrDg6A 萬事達卡斥資26億美元收購情資公司Recorded Future https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=11252 4.加密貨幣/數位貨幣/挖礦/區塊鍊/智能合約/WEB3 資安 PayPal擴大加密貨幣服務允美國商業帳戶交易虛擬貨幣 https://news.cnyes.com/news/id/5724565 加密貨幣ATM詐騙老人損失慘重資金一旦入詐騙者「錢包」難追蹤 https://www.worldjournal.com/wj/amp/story/123278/8252220 加密貨幣詐騙最猖獗加州損失超$11億 https://www.ntdtv.com/b5/2024/09/27/a103917230.html 德國加密資產税收與監管制度：開放而友好 https://www.hk01.com/article/1061051?utm_source=01articlecopy&utm_medium=referral Docker引擎API遭鎖定，駭客企圖從事挖礦攻擊 https://www.ithome.com.tw/news/165207 U.S. Sanctions Two Crypto Exchanges for Facilitating Cybercrime and Money Laundering https://thehackernews.com/2024/09/us-sanctions-two-crypto-exchanges-for.html 5.資安事件新聞 A.病毒木馬 / 殭屍網路 / 勒索軟體 / Adware /APT /後門程式/IOC 烏克蘭軍方遭到鎖定，駭客藉由惡意程式SnipBot發動攻擊 https://unit42.paloaltonetworks.com/snipbot-romcom-malware-variant/ 駭客藉由惡意程式SnipBot竊取機密資料 https://www.ithome.com.tw/news/165221 北韓駭客Citrine Sleet上傳惡意Python套件，意圖散布RAT木馬PondRAT https://www.ithome.com.tw/news/165168 北韓駭客Kimsuky散布惡意程式KLogEXE、FPSpy https://unit42.paloaltonetworks.com/kimsuky-new-keylogger-backdoor-variant/ 北韓駭客鎖定能源及航太產業，散布惡意軟體Mistpen https://cloud.google.com/blog/topics/threat-intelligence/unc2970-backdoor-trojanized-pdf-reader 駭客謊稱GitHub的專案有資安漏洞，想趁機散布竊資軟體Lumma Stealer https://www.ithome.com.tw/news/165120 BAT.EMANSREPO.A 木馬病毒 https://www.trendmicro.com/vinfo/us/threat-encyclopedia/malware/trojan.bat.emansrepo.a 勒索軟體RansomHub利用EDRKillShifter載入作案工具，癱瘓防毒及EDR產品的防護 https://www.ithome.com.tw/news/165206 北美交通物流業者遭到鎖定，駭客散布惡意軟體Lumma Stealer、NetSupport https://www.proofpoint.com/us/blog/threat-insight/security-brief-actor-uses-compromised-accounts-customized-social-engineering 惡意軟體PDiddySploit假借名人醜聞文章散布 https://veriti.ai/blog/diddy-do-it-or-did-cybercriminals-how-hackers-are-turning-scandals-into-cyber-attacks/ 駭客組織TeamTNT鎖定CentOS主機植入Rootkit https://www.ithome.com.tw/news/165123 竊資軟體傳出已繞過Chrome保護Cookie及機敏資料的機制 https://www.bleepingcomputer.com/news/security/infostealer-malware-bypasses-chromes-new-cookie-theft-defenses/ 美國卡巴斯基用戶電腦的防毒軟體遭到無預警刪除，並被植入「UltraAV」 https://www.bleepingcomputer.com/news/security/kaspersky-deletes-itself-installs-ultraav-antivirus-without-warning/ 駭客假借提供應用程式及破解軟體，散布竊資軟體RecordStealer https://www.googlecloudcommunity.com/gc/Community-Blog/Finding-Malware-Unveiling-RECORDSTEALER-with-Google-Security/ba-p/803490 駭客組織Marko Polo藉由社交網站平臺散布竊資軟體 http://go.recordedfuture.com/hubfs/reports/cta-2024-0917.pdf 勒索軟體Mallox擴大攻擊版圖，使用Kryptina程式碼打造Linux版加密工具 https://www.bleepingcomputer.com/news/security/new-mallox-ransomware-linux-variant-based-on-leaked-kryptina-code/ DragonRank, a Chinese-speaking SEO manipulator service provider https://blog.talosintelligence.com/dragon-rank-seo-poisoning/ New Linux Malware Campaign Exploits Oracle Weblogic to Mine Cryptocurrency https://thehackernews.com/2024/09/new-linux-malware-campaign-exploits.html Binance Warns of Rising Clipper Malware Attacks Targeting Cryptocurrency Users https://thehackernews.com/2024/09/binance-warns-of-rising-clipper-malware.html 北韓駭客透過LinkedIn尋找目標，企圖散布惡意軟體RustDoor https://www.ithome.com.tw/news/165061 North Korean Hackers Target Cryptocurrency Users on LinkedIn with RustDoor Malware https://thehackernews.com/2024/09/north-korean-hackers-target.html North Korean Hackers Target Energy and Aerospace Industries with New MISTPEN Malware https://thehackernews.com/2024/09/north-korean-hackers-target-energy-and.html Microsoft Warns of New INC Ransomware Targeting U.S. Healthcare Sector https://thehackernews.com/2024/09/microsoft-warns-of-new-inc-ransomware.html NoName Ransomware Group Expands Their Operation https://otx.alienvault.com/pulse/66e482000173acafce70d8fa Wherever There's Ransomware, There's Service Account Compromise. Are You Protected https://thehackernews.com/2024/09/wherever-theres-ransomware-theres.html Behind the CAPTCHA: A Clever Gateway of Malware https://www.mcafee.com/blogs/other-blogs/mcafee-labs/behind-the-captcha-a-clever-gateway-of-malware/ WebDAV-as-a-Service: Uncovering the infrastructure behind Emmenhtal loader distribution - Sekoia.io Blog https://blog.sekoia.io/webdav-as-a-service-uncovering-the-infrastructure-behind-emmenhtal-loader-distribution/ New PondRAT Malware Hidden in Python Packages Targets Software Developers https://thehackernews.com/2024/09/new-pondrat-malware-hidden-in-python.html The Microsoft 365 Backup Game Just Changed: Ransomware Recovery Revolutionized https://thehackernews.com/expert-insights/2024/09/the-microsoft-365-backup-game-just.html Chinese Hackers Exploit GeoServer Flaw to Target APAC Nations with EAGLEDOOR Malware https://thehackernews.com/2024/09/chinese-hackers-exploit-geoserver-flaw.html ChatGPT macOS Flaw Could've Enabled Long-Term Spyware via Memory Function https://thehackernews.com/2024/09/chatgpt-macos-flaw-couldve-enabled-long.html Transportation Companies Hit by Cyberattacks Using Lumma Stealer and NetSupport Malware https://thehackernews.com/2024/09/transportation-companies-hit-by.html Watering Hole Attack on Kurdish Sites Distributing Malicious APKs and Spyware https://thehackernews.com/2024/09/watering-hole-attack-on-kurdish-sites.html Microsoft Identifies Storm-0501 as Major Threat in Hybrid Cloud Ransomware Attacks https://thehackernews.com/2024/09/microsoft-identifies-storm-0501-as.html New HTML Smuggling Campaign Delivers DCRat Malware to Russian-Speaking Users https://thehackernews.com/2024/09/new-html-smuggling-campaign-delivers.html B.行動安全 / iPhone / Android /穿戴裝置 /App / 5G / 即時通訊安卓木馬Necro上架Google Play市集，感染逾1千萬臺裝置 https://securelist.com/necro-trojan-is-back-on-google-play/113881/ 俄羅斯駭客偏好針對安卓、iOS行動裝置下手，從事網路間諜活動、竊取機密及軍事情報 https://blog.bushidotoken.net/2024/09/examining-mobile-threats-from-russia.html 安卓木馬TrickMo假冒Google Play更新名義植入受害手機 https://www.cleafy.com/cleafy-labs/a-new-trickmo-saga-from-banking-trojan-to-victims-data-leak Discord Introduces DAVE Protocol for End-to-End Encryption in Audio and Video Calls https://thehackernews.com/2024/09/discord-introduces-dave-protocol-for.html Necro Android Malware Found in Popular Camera and Browser Apps on Play Store https://thehackernews.com/2024/09/necro-android-malware-found-in-popular.html Telegram調整隱私政策，同意交出用戶IP位址及電話予執法機構 https://www.ithome.com.tw/news/165154 Telegram Agrees to Share User Data With Authorities for Criminal Investigations https://thehackernews.com/2024/09/telegram-agrees-to-share-user-data-with.html C.事件 / 駭客 / DDOS / APT / 雲端/ 暗網/ 徵才 / 國際資安事件 / 資安人力「電腦稽核協會30週年大會」探討AI治理與評測，推動資訊科技與電腦稽核未來發展 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=11253 上櫃公司松上電子部分資訊系統遭遇網路攻擊 https://mops.twse.com.tw/mops/web/ajax_t05sr01_1?firstin=true&stp=1&step=1&SEQ_NO=1&SPOKE_TIME=180037&SPOKE_DATE=20240923&COMPANY_ID=6156 上櫃IC設計業者創惟部分資訊系統遭遇駭客攻擊 https://mops.twse.com.tw/mops/web/ajax_t05sr01_1?firstin=true&stp=1&step=1&SEQ_NO=1&SPOKE_TIME=63920&SPOKE_DATE=20240923&COMPANY_ID=6104 上櫃綠能環保業者崑鼎部分資訊系統遭遇網路攻擊 https://mops.twse.com.tw/mops/web/ajax_t05sr01_1?firstin=true&stp=1&step=1&SEQ_NO=1&SPOKE_TIME=233037&SPOKE_DATE=20240922&COMPANY_ID=6803 駭客利用Rust打造的紅隊演練工具Splinter從事攻擊行動 https://unit42.paloaltonetworks.com/analysis-pentest-tool-splinter/ 美國再度制裁商業間諜軟體業者Intellexa https://therecord.media/us-hits-intellexa-sanctions-treasury 美國堪薩斯州供水設施遭遇網路攻擊，被迫切換手動操作 https://www.securityweek.com/kansas-water-facility-switches-to-manual-operations-following-cyberattack/ 大陸罕見公布台灣駭客身分恐「這原因」急跳腳 https://www.chinatimes.com/realtimenews/20240924002809-260407?chdtv 中國稱遭國軍駭客攻擊顧立雄：中國才是網攻第一名 https://www.cna.com.tw/news/aipl/202409240050.aspx 中國聲稱遭我國成立的駭客組織攻擊，資通電軍表示並非事實 https://www.ithome.com.tw/news/165129 中國駭客Earth Baxia針對臺灣政府機關下手，藉由GeoServer已知漏洞發動攻擊 https://www.ithome.com.tw/news/165092 中國駭客組織「Earth Baxia」利用GeoServer漏洞鎖定台灣及亞太組織 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=11263 中國駭客Salt Typhoon傳出滲透美國ISP的網路環境 https://www.wsj.com/politics/national-security/china-cyberattack-internet-providers-260bd835 中國駭客DragonRank攻擊亞洲、歐洲IIS伺服器，意圖操縱搜尋引擎排名 https://ithome.com.tw/news/165080 17-Year-Old Arrested in Connection with Cyber Attack Affecting Transport for London https://thehackernews.com/2024/09/17-year-old-arrested-in-connection-with.html Study of targeted attacks on Russian research institutes https://github.com/DoctorWebLtd/malware-iocs/blob/master/APT_DNSep/README.adoc https://st.drweb.com/static/new-www/news/2021/april/drweb_research_attacks_on_russian_research_institutes_en.pdf UNC1860挖掘滲透中東企業組織的初始管道，替攻擊這些目標的駭客開路 https://www.ithome.com.tw/news/165181 Iranian APT UNC1860 Linked to MOIS Facilitates Cyber Intrusions in Middle East https://thehackernews.com/2024/09/iranian-apt-unc1860-linked-to-mois.html Chinese Engineer Charged in U.S. for Years-Long Cyber Espionage Targeting NASA and Military https://thehackernews.com/2024/09/chinese-engineer-charged-in-us-for.html Chinese Hackers Infiltrate U.S. Internet Providers in Cyber Espionage Campaign https://thehackernews.com/2024/09/chinese-hackers-infiltrate-us-internet.html Cloudflare Warns of India-Linked Hackers Targeting South and East Asian Entities https://thehackernews.com/2024/09/cloudflare-warns-of-india-linked.html D.資料外洩/個資法/GDPR/網路詐騙/網路釣魚/盜刷/假新聞/網路霸凌/帳號安全漢翔工程師於Instagram張貼大量機敏資料，恐洩漏國機國造機密 https://www.chinatimes.com/realtimenews/20240926004540-260417 汽車經銷商AutoCanada傳出遭Hunter International洩露員工資料 https://thehackernews.com/2024/09/transportation-companies-hit-by.html 挑詐騙被害人下手！前警員誆找駭客幫討錢再騙46萬　判囚4年 https://www.ettoday.net/news/20240926/2824283.htm 針對2023年資料外洩事故，AT&T向FCC支付1,300萬美元尋求和解 https://www.bleepingcomputer.com/news/security/atandt-pays-13-million-fcc-settlement-over-2023-data-breach/ 身分驗證系統Entra ID管理功能可被濫用，攻擊者有機會能持續於受害組織活動 https://securitylabs.datadoghq.com/articles/abusing-entra-id-administrative-units/ Dell驚傳1萬名員工資料流入駭客論壇 https://www.bleepingcomputer.com/news/security/dell-investigates-data-breach-claims-after-hacker-leaks-employee-info/ Europol Shuts Down iServer Phishing Scheme and Ghost Cybercrime Chat Platform https://thehackernews.com/2024/09/europol-shuts-down-major-phishing.html Say Goodbye to Phishing: Must-Haves to Eliminate Credential Theft https://thehackernews.com/2024/09/say-goodbye-to-phishing-must-haves-to.html Cybercriminals Exploit HTTP Headers for Credential Theft via Large-Scale Phishing Attacks https://thehackernews.com/2024/09/cybercriminals-exploit-http-headers-for.html DoJ: Chinese Man Used Spear-Phishing to Obtain Software From NASA, Military https://www.securityweek.com/doj-chinese-man-used-spear-phishing-to-obtain-software-from-nasa-military/ Expert Tips on How to Spot a Phishing Link https://thehackernews.com/2024/09/expert-tips-on-how-to-spot-phishing-link.html Mozilla基金會傳出透過Firefox隱私功能，未經同意追蹤使用者上網行為 https://www.bleepingcomputer.com/news/technology/mozilla-accused-of-tracking-users-in-firefox-without-consent/ Mozilla Faces Privacy Complaint for Enabling Tracking in Firefox Without User Consent https://thehackernews.com/2024/09/mozilla-faces-privacy-complaint-for.html E.研究報告/工具 Why Pay A Pentester https://thehackernews.com/2024/09/why-pay-pentester.html Why 'Never Expire' Passwords Can Be a Risky Decision https://thehackernews.com/2024/09/why-never-expire-passwords-can-be-risky.html EPSS vs. CVSS: What's the Best Approach to Vulnerability Prioritization https://thehackernews.com/2024/09/epss-vs-cvss-whats-best-approach-to.html How to Plan and Prepare for Penetration Testing https://thehackernews.com/2024/09/how-to-plan-and-prepare-for-penetration.html F.商業 Palo Alto Networks「精準AI」抵禦每日113億次攻擊 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=11260 Privileged Identity Management (PIM): For Many, a False Sense of Security https://thehackernews.com/expert-insights/2024/09/privileged-identity-management-pim-for.html Chrome Introduces One-Time Permissions and Enhanced Safety Check for Safer Browsing https://thehackernews.com/2024/09/chrome-introduces-one-time-permissions.html Google Chrome Switches to ML-KEM for Post-Quantum Cryptography Defense https://thehackernews.com/2024/09/google-chrome-switches-to-ml-kem-for.html Chrome Users Can Now Sync Passkeys Across Devices with New Google PIN Feature https://thehackernews.com/2024/09/chrome-users-can-now-sync-passkeys.html Google強化瀏覽器密碼管理功能，讓使用者能跨平臺運用Passkey https://www.ithome.com.tw/news/165093 Google在搜尋與廣告產品中應用C2PA標準，強化數位內容透明度 https://www.ithome.com.tw/news/165082 The SSPM Justification Kit https://thehackernews.com/2024/09/the-sspm-justification-kit.html Agentic AI in SOCs: A Solution to SOAR's Unfulfilled Promises https://thehackernews.com/2024/09/agentic-ai-in-socs-solution-to-soars.html Cybersecurity Certifications: The Gateway to Career Advancement https://thehackernews.com/2024/09/cybersecurity-certifications-gateway-to.html 微軟準備棄用Windows Server Update Services https://www.ithome.com.tw/news/165119 G.政府全球防詐立法態勢大轉變，要求金融、電信業失責需補償詐騙受害者 https://www.ithome.com.tw/news/165195 H.工控系統/ICS/SCADA/IOT/物聯網/車聯網/電動車/人工智慧/AI/ML/人臉辨識/醫療相關資安回應8月CISA警告監控攝影機恐遭漏洞攻擊，陞泰表明該款產品已停產7年，但仍提供新版韌體修補漏洞 https://www.ithome.com.tw/news/165233 美國商務部提議禁止中國與俄羅斯連網汽車的軟硬體 https://www.ithome.com.tw/news/165157 Critical Flaw in Microchip ASF Exposes IoT Devices to Remote Code Execution Risk https://thehackernews.com/2024/09/critical-flaw-in-microchip-asf-exposes.html 重大資安漏洞！駭客可透過KIA車牌號碼遠端操控車輛並竊取個資 https://reurl.cc/1bzEXp Hackers Could Have Remotely Controlled Kia Cars Using Only License Plates https://thehackernews.com/2024/09/hackers-could-have-remotely-controlled.html I.教育訓練資安事件發生必要知道的復原程序，降低傷害 https://www.ithome.com.tw/pr/163614 iPAS資訊安全工程師中級筆記 https://hackmd.io/@Not/iPASInformationSecuritySpecialist iPas資安工程師證照考前研習 https://reurl.cc/GEbA3p iPAS◆資訊安全規劃實務◆中級測驗題庫彙編(123題) https://reurl.cc/orlD1g GCP Associate Cloud Engineer (ACE) 學習心得、教材資源與筆記分享 — 學習天然高可用與零信任設計 https://medium.com/blacksecurity/gcp-associate-cloud-engineer-78f736aee7ad Coursera 盤點 7 項雲端資安認證，高薪跳板都在這了！ https://buzzorange.com/techorange/2022/07/12/cloud-security-certificates/ 一般人也能拿到國際資安認證！CSCU安全電腦使用者認證課程 https://www.ithome.com.tw/pr/160954 全球網絡安全勞動力失衡 (ISC)2免費課程及考試填補人才缺口 https://reurl.cc/m39MDj CISSP資安認證的8大領域 https://2formosa.blogspot.com/2022/12/CISSP-topic-domains.html CISSP考試心得 https://reurl.cc/KbY83j CISSP考試心得 – Benson https://reurl.cc/GbWvxd 目標導向-20天光速考過CISSP https://reurl.cc/2Zq6zn CISSP證照考試實戰心得第一章：初期準備工作 https://netmag.tw/2022/06/17/the-cissp-has-learned-the-first-chapter-in-actual-combat CISSP證照考試實戰心得第二章：規律且有紀律的讀書策略 https://netmag.tw/2022/07/01/the-cissp-is-in-the-field-of-combat-chapter-two-regular-and-disciplined-reading-strategies CISSP證照考試實戰心得第三章：終極一戰 https://netmag.tw/2022/07/12/the-cissp-has-learned-a-third-chapter-in-actual-combat-experience-the-ultimate-battle Quick CISSP Infographic for IPSec https://www.studynotesandtheory.com/single-post/quick-cissp-infographic-for-ipsec CSSLP Certification - Security models in F# https://github.com/vbocan/csslp Certified Secure Software Lifecycle Professional in bullet points https://github.com/joeyhage/csslp-notes CPSA(CREST Practitioner Security Analyst) 資安分析師考試心得 https://tech-blog.cymetrics.io/posts/huli/crest-cpsa-prepare/ EC-Council CEH v11 考試心得、改版資訊以及準備方向 2021、2022 https://reurl.cc/1oyEM8 CEH v11 考試心得與準備方式 https://blog.sean.taipei/2022/01/ceh CEH https://github.com/a3cipher/CEH CodeRed by EC-Council https://github.com/codered-by-ec-council EC-Council CEH Practical / Master 準備心得 — 讓理論與實作相輔相成的學習 https://medium.com/blacksecurity/ceh-practical-master-3e80cac180a2 EC-Council CEHP考試準備心得 https://hackmd.io/@9dCJrgb6QHGd8dRfgHO0zg/r14xNn1po My ceh practical notes https://github.com/dhabaleshwar/CEHPractical/blob/main/Everything%20You%20Need.md CEHP課程筆記 https://hackmd.io/@nfu-johnny/B1Ju_BMPR ECSA v10 考試心得與讀書資料分享/ ECSA v10 Review and Study Materials https://medium.com/blacksecurity/ecsa-v10-1ec76c0eb7d4 EC-Council ECSA資安分析專家 v10 考試心得分享 https://javaxtalk.blogspot.com/2019/05/ec-council-ecsa-v10.html 20180817 EC-Council ECSA v10 PASS https://www.ptt.cc/bbs/License/M.1534571704.A.5BA.html 關於EC-Council CPENT和LPT Master滲透測試證照準備方式及心得分享 https://medium.com/@ChadSecurity/%E9%97%9C%E6%96%BCec-council-cpent%E5%92%8Clpt-master%E6%BB%B2%E9%80%8F%E6%B8%AC%E8%A9%A6%E8%AD%89%E7%85%A7%E6%BA%96%E5%82%99%E6%96%B9%E5%BC%8F%E5%8F%8A%E5%BF%83%E5%BE%97%E5%88%86%E4%BA%AB-efb63de00a8d 深度解析 CPENT 考試心得、以及與 OSCP 的比較 https://reurl.cc/41eL8v EC-Council CPENT v1 滲透測試認證 – 內容及心得分享 https://hackercat.org/pentesting/ec-council-cpent-v1-experience-review CPENT 從暴力到破解 https://hackmd.io/@3WAsoRFgSlyy7pm10p60kg/ByO0zs295 Ec-Council CPENT心得 - 資安菜鳥從CEH到LPT Master https://4hsienyang.medium.com/cpent-lpt-master-ccaebf2dbc7f CPENT考試心得分享：一次拿到 LPT 滲透測試大師認證 https://ucom.uuu.com.tw/web/Testimony/Article/4404 kaizensecurity/CPENT https://github.com/kaizensecurity/CPENT/tree/master CPENT : Pentesting like NO OTHERS ! https://www.linkedin.com/pulse/cpent-pentesting-like-others-belly-rachdianto/ Journey of My CPENT Exam https://medium.com/techiepedia/journey-of-my-cpent-exam-3a5d7ee6d917 [備考心得]CompTIA Security+ (SY0–601) 上篇 https://reurl.cc/M053DK [備考心得]CompTIA Security+ (SY0–601) 下篇 https://reurl.cc/M053Gv comptia-security-plus https://github.com/ajfuto/comptia-security-plus security-plus https://github.com/fjavierm/security-plus CompTIA Security+ Certification Practice Test Questions https://www.examcompass.com/comptia/security-plus-certification/free-security-plus-practice-tests#google_vignette 不只是工程師才要懂的 App 資訊安全：取得資安檢測合格證書血淚史（iT邦幫忙鐵人賽系列書） https://news.pchome.com.tw/living/books/20220202/index-64375841669874292009.html App防駭學，資安防護實戰課程全面提升安全觀念 https://www.ithome.com.tw/pr/161505 OSEP (Evasion Techniques and Breaching Defenses (PEN-300) 心得分享 https://hackmd.io/@henry-ko/HyQ56e8eF OSEP (Evasion Techniques and Breaching Defenses (PEN-300) http://github.com/In3x0rabl3/OSEP OSCP（Offensive Security Certified Professional） https://github.com/0x584A/oscp-notes/tree/master ISACA Certified Information Systems Auditor® (CISA) 國際電腦稽核師認證準備歷程心得、申請流程分享- 2023年 https://reurl.cc/aVLoX9 Learn NIST Inside Out With 21 Hours of Training @ 86% OFF https://thehackernews.com/2022/06/learn-nist-inside-out-with-21-hours-of.html 駭客與國家: 網路攻擊與地緣政治新常態 The hacker and the state: cyber attacks and the new normal of geopolitic https://reurl.cc/D3nKKj Practical Network Penetration Tester (PNPT) Certification Review https://tmc222.medium.com/practical-network-penetration-tester-pnpt-certification-review-4280e4e164df WUSON常用的基本詞彙 https://choson.lifenet.com.tw/?p=1958 證照仍是學習資安基本功的主要管道，有專家打造「資安證照地圖」 https://www.ithome.com.tw/news/156754 用證照證明自己實力之餘，更應將證照視為督促學習的最大動力 https://www.ithome.com.tw/news/156756 打破證照誤解與迷思，資安專家帶你釐清資安證照的意義 https://www.ithome.com.tw/news/156755 Accelerate Your Career with the Global Leader in Cyber Security Training https://www.sans.org/mlp/promo-partnership-hacker-news/ 【成大資安社社課】資安禁術 - 逆向工程地獄試煉 https://www.youtube.com/watch?v=4Yc3-9CjG6U 透過實務演練，教你建立實作標準的安全SOP流程 https://www.ithome.com.tw/pr/163514 6.近期資安活動及研討會 Just a chat - with no Expectations 2024/9/28 https://www.meetup.com/taipei-%E6%9A%97%E5%8F%B7%E9%80%9A%E8%B2%A8-cryptocurrency-meetup/events/lsmkqsygcmblc/ 資訊安全系列課程 2024/9/30 https://www.accupass.com/event/2407011640161317038989 資訊安全系列課程 2024/10/12 https://www.accupass.com/event/2407011633417884074930 第二屆台南Web3產業國際博覽會 TAINAN WEB3 INTERNATIONAL FAIR 2024/10/18 https://www.accupass.com/event/2406150525111725753130 HITCON Enterprise 2024 台灣駭客年會 2024/10/30 https://hitcon.kktix.cc/events/hitcon-ent-2024 Threat Analyst Summit 2024 威脅分析師高峰會 2024/12/11 ~ 2024/12/12 https://teamt5tw.kktix.cc/events/tas2024