資安事件新聞週報 2021/5/31 ~ 2021/6/4

###### tags: `資安事件新聞週報` # 資安事件新聞週報 2021/5/31 ~ 2021/6/4 1.重大弱點漏洞/後門/Exploit/Zero Day Fortinet fixed a Post-Auth RCE in FortiWeb (CVE-2021-22123) https://www.fortiguard.com/psirt/FG-IR-20-120 Researchers Warn of Critical Bugs Affecting Realtek Wi-Fi Module https://thehackernews.com/2021/06/researchers-warn-of-critical-bugs.html Open Source Vulnerabilities Converging DevOps & SecOps https://cybersecdn.com/index.php/2021/05/31/open-source-vulnerabilities-converging-devops-secops/ FBI警告APT組織廣泛開採各類已知漏洞，廠商給修補但使用者無作為，等於坐等被入侵 https://www.ithome.com.tw/news/144692 SonicWall產品存在安全性弱點 https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0014 Newly Discovered Bugs in VSCode Extensions Could Lead to Supply Chain Attacks https://thehackernews.com/2021/05/newly-discovered-bugs-in-vscode.html CSS-WHAT PACKAGE 直到5.0.0 於NODE.JS ATTRIBUTE 未知漏洞 https://vuldb.com/zh/?id.176096 RHEL 7 : kernel-alt (RHSA-2021:1379) https://www.tenable.com/plugins/nessus/149235 Hackers‌ ‌Actively‌ ‌Exploiting‌ ‌0-Day‌ ‌in WordPress Plugin Installed on Over ‌17,000‌ ‌Sites https://thehackernews.com/2021/06/hackers-actively-exploiting-0-day-in.html 2.銀行/金融/保險/證券/支付系統/ 新聞及資安防疫優先擬開放交易員居家辦公 https://www.chinatimes.com/newspapers/20210529000126-260202?chdtv 國泰產導入Open ID多元身分驗證，金控業子公司雙向身分認證產險首家 https://reurl.cc/ZG7bRl 新光產又被罰60萬元！資安爆多項瑕疵遭懲處　今年已吞3張罰單「業界最多」 https://www.phew.tw/article/cont/phewpoint/current/topic/11361/2021053111361 疫情期間別跑銀行　線上金融服務免出門免紙本都能搞定 https://www.mirrormedia.mg/story/20210601money004/ 政大金融科技研究中心與勤業眾信聯手發表第一份臺灣金融科技趨勢展望報告，提出10項Fintech發展建議 https://www.ithome.com.tw/news/144679 疫情推動數位金融星展銀：疫後7成轉帳透網銀或行動銀 https://money.udn.com/money/story/5617/5507054 How Cybercriminals are Hacking ATM Machines? Here's a Quick Look https://www.ehackingnews.com/2021/05/how-cybercriminals-are-hacking-atm.html Interpol intercepts $83 million fighting financial cyber crime https://www.bleepingcomputer.com/news/security/interpol-intercepts-83-million-fighting-financial-cyber-crime/#.YLOfObzLhOU.twitter Hackers steal ₹39.6 lakh from 3 ATMs of bank in Kolkata https://www.hindustantimes.com/india-news/hackers-steal-rs-39-6-lakh-from-3-atms-of-bank-in-kolkata-101622396502287.html Boss of ATM Skimming Syndicate Arrested in Mexico https://krebsonsecurity.com/2021/05/boss-of-atm-skimming-syndicate-arrested-in-mexico/ Breached companies facing higher interest rates and steeper collateral requirements https://www.zdnet.com/article/breached-companies-facing-higher-interest-rates-and-steeper-collateral-requirements/ The Vulnerabilities of the Past Are the Vulnerabilities of the Future https://thehackernews.com/2021/06/the-vulnerabilities-of-past-are.html 3.電子支付/行動支付/pay/資安電子付款 App Venmo 有私隱漏洞　拜登私人好友清單全曝光 https://unwire.hk/2021/05/29/venmo-private-friends-list/fun-tech/ 疫情促升電子支付未來5年成長翻倍 https://www.chinatimes.com/realtimenews/20210603001097-260410?chdtv 怕拿現金傳病毒中市推電子支付倍增創「零接觸商機」 https://udn.com/news/story/7325/5503863 疫情加速電子支付發展　資誠調查：亞洲無現金交易總額5年內增109% https://tw.appledaily.com/property/20210531/JG3N4J755ZFJHDORIESRC2OLKI/ 中國央行：一季度移動支付業務量保持增長態勢銀行共處理電子支付業務710萬億元 https://big5.sputniknews.cn/economics/202106031033820306/ 倚天資訊、酷碁科技正式合併，首發行動支付⼿環展開募資 https://technews.tw/2021/06/01/acer-gadget-beads/ 防疫零接觸！Acer Gadget行動支付手環募資登場 https://udn.com/news/story/7266/5497716 信用卡綁定行動支付有額外驚喜 https://money.udn.com/money/story/12040/5493092 Coinbase宣布卡片可綁定Apple Pay與Google Pay https://news.cnyes.com/news/id/4654531 新冠疫情推波助瀾數位貨幣、行動支付激增 https://www.chinatimes.com/newspapers/20210530000117-260203?chdtv 隨著退出手機市場，LG Pay 也要下台一鞠躬 https://www.eprice.com.tw/mobile/talk/4531/5649439/1/ 台灣大電支服務不變 Wali智慧錢包移轉至行動客服APP https://udn.com/news/story/7240/5501497 4.加密貨幣/挖礦/區塊鍊/智能合約資安虛擬通貨納管洗錢防制7月上路，共有5大類業者須遵循 https://www.ithome.com.tw/news/144682 外匯天眼：經濟學家再轟比特幣/毫無用處，終將破滅 https://reurl.cc/0jO6Dx 比特幣今年4月已短期見頂 http://www.hkcd.com/content/2021-05/28/content_1271218.html BSC上閃電貸攻擊再現！BurgerSwap 被駭技術分析 — 我竟騙了我自己 https://www.blocktempo.com/burgerswap-hit-by-flash-loan-attack/ BSC官方：8起閃電貸攻擊恐為「同一駭客組織」所為 https://www.blocktempo.com/binance-bsc-over-8-flashloan-hacks-well-organized-hackers-targeting/ 加密貨幣市場的成長潛力到底有多大 https://news.knowing.asia/news/e6f4c93b-5d71-415f-b2e5-124786264ca6 持續完善加密貨幣服務！PayPal 將開放「提幣到外部錢包」 https://reurl.cc/XWkql7 印度央行聲明：銀行不得引用「失效的加密貨幣禁令」拒絕客戶交易；BTC聞訊回升13.7% https://www.blocktempo.com/india-says-banks-cannot-restrict-crypto-transactions/ 區塊勢推出狗狗幣文章 NFT，成台灣首家發行「內容 NFT」的媒體 https://buzzorange.com/techorange/2021/06/02/nft-taiwan-blocktrend-oursong/ 俄央行總裁：數位貨幣是金融體系的未來 https://reurl.cc/gW8V3R Mt. Gox 清償方案開放投票！14.1 萬枚比特幣將以「7 千美元」計價賠償 https://technews.tw/2021/06/02/mtgox-settlement-plan-is-open-for-voting/ 美國加密貨幣產業參與方，目前所面臨的監管方式為何 https://news.knowing.asia/news/b0a41f94-615d-4a3d-b145-3e3c42725ada 防毒軟體｜諾頓 LifeLock 推「以太坊挖礦」功能，供客戶用 PC 挖礦賺ETH https://www.blocktempo.com/antivirus-nortonlifelock-launches-eth-mining-services-for-customers/ 英國數位銀行 Starling 臨時禁令：用戶不得「入金」加密貨幣交易所，有金融犯罪疑慮 https://www.blocktempo.com/uk-bank-bans-crypto-exchange-deposits-due-to-suspected-financial-crime/ 美國 | 白宮發言人：正擴大「加密貨幣金流」追蹤；SEC 再推遲 WisdomTree 比特幣 ETF 審核 https://www.blocktempo.com/biden-white-house-ransomware-cryptocurrency-sec-delay-btc-etf/ 歐洲央行報告 | 肯定「央行數位貨幣」可助升國際地位，欠缺CBDC恐面金融穩定風險 https://www.blocktempo.com/erc-central-bank-digital-currency-report/ 競爭Robinhood！中國 “老虎、富途證券” 進軍加密貨幣，計畫往美國、新加坡拓展海外交易 https://www.blocktempo.com/tiger-futu-brokers-launching-offshore-cryptocurrency-trading-service/ DeFi獲投資者追捧，助推加密貨幣市場繁榮的同時引發波動 https://reurl.cc/KAA1lp NortonLifeLock Unveils Norton Crypto https://www.businesswire.com/news/home/20210602005361/en/NortonLifeLock-Unveils-Norton-Crypto Cybercriminals Hold $115,000-Prize Contest to Find New Cryptocurrency Hacks https://thehackernews.com/2021/06/cybercriminals-hold-115000-prize.html 5.資安事件新聞 A.病毒木馬 / 殭屍網路 / 勒索軟體 / Adware /APT /後門程式/IOC Avaddon 勒索軟體攻擊防範須知 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=9261 上膛的武器落入壞人手中：合法工具變成勒索病毒的超級武器 https://blog.trendmicro.com.tw/?p=68278 惡意軟體勒贖衝擊經濟為何難擋? 政府真沒轍 https://www.worldjournal.com/wj/story/121469/5505412 富士軟片遭勒索軟體攻擊 https://www.ithome.com.tw/news/144803 美國FBI指控REvil涉嫌網路攻擊巴西肉品商JBS https://reurl.cc/Nrr6rn 目標式勒索病毒攻擊特徵大解析，混淆技術、無檔案式與修改OS內建程式等手法越來越常見 https://www.ithome.com.tw/news/144813 勒索軟體威脅增美擬提升調查至類恐攻層級 https://www.cna.com.tw/news/aopl/202106040124.aspx SolarWinds Hackers Target Think Tanks With New 'NativeZone' Backdoor https://thehackernews.com/2021/05/solarwinds-hackers-target-think-tanks.html Malvertising Campaign On Google Distributed Trojanized AnyDesk Installer https://thehackernews.com/2021/05/malvertising-campaign-on-google.html Facefish Backdoor Steals Login Credentials & Execute Arbitrary Commands on Linux Systems https://gbhackers.com/facefish-backdoor/ Suspected Iranian Ransomware Group Targets Israeli Firms https://www.infosecurity-magazine.com/news/suspected-iranian-ransomware-group/ Kimsuky APT continues to target South Korean government using AppleSeed backdoor https://blog.malwarebytes.com/threat-analysis/2021/06/kimsuky-apt-continues-to-target-south-korean-government-using-appleseed-backdoor/ Malware Can Use This Trick to Bypass Ransomware Defense in Antivirus Solutions https://thehackernews.com/2021/06/malware-can-use-this-trick-to-bypass.html Windows Moriya rootkit used in highly targeted attacks https://securityaffairs.co/wordpress/117626/malware/moriya-rootkit-operation-tunnelsnake.html Iron Tiger APT Updates Toolkit With Evolved SysUpdate Malware https://cybersecdn.com/index.php/2021/06/02/iron-tiger-apt-updates-toolkit-with-evolved-sysupdate-malware/ SharpPanda Targets Southeast Asian Government With Previously Unknown Backdoor https://research.checkpoint.com/2021/chinese-apt-group-targets-southeast-asian-government-with-previously-unknown-backdoor/ SkinnyBoy Bear’s BackDoor https://cluster25.io/wp-content/uploads/2021/05/2021-05_FancyBear.pdf B.行動安全 / iPhone / Android /穿戴裝置 /App / 5G / 即時通訊測血氧App爆紅！印度警方警告「資安問題」：資料可能被盜用 https://www.ftvnews.com.tw/news/detail/2021530W0014 下載APP用手機閃光燈可量血氧？專家曝恐怖結果：遭盜個資 https://www.chinatimes.com/realtimenews/20210530003507-260402?chdtv 手機測血氧 Careplix Vitals 是真假？實測存在4個資安外洩隱憂 https://mrmad.com.tw/careplix-vitals 網傳可用APP測血氧查核中心：數值只能參考 https://news.ltn.com.tw/news/life/breakingnews/3554377 「測量血氧的App原理與資安」之專家意見 https://smctw.tw/9959/ 手機測血氧App「CarePlix Vitals」3大疑點是真是假？官方有話要說 https://udn.com/news/story/11017/5499390 舊版 Android 系統新漏洞黑客可利用藍牙盜取手機資料 https://today.line.me/hk/v2/article/n2785x 社交距離App沒用？　負責人籲勿刪：資料將開始大量上傳 https://tw.appledaily.com/life/20210531/A3X6HVSK3BCP5O7IJIEPWZ2RDM/ 台灣社交距離App上傳率僅0.5%，網友喊已刪？負責人：現在刪除就失去了自己的寶貴紀錄 https://www.techbang.com/posts/87201-taiwan-social-distance-app 路透：義大利政府將有條件開放華為5G設備 https://news.cnyes.com/news/id/4654036 中國瀏覽器 App 遭爆追蹤用戶！無痕模式擋不了、還知道你住哪 https://3c.ltn.com.tw/news/44631 台灣社交距離App下載數破7百萬人為什麼民眾使用後沒感覺 https://www.cmmedia.com.tw/home/articles/27859 掃店家QR Code後，注意簡訊是否傳到1922！避免發送到不明號碼 https://www.mygopen.com/2021/06/qr-code1922.html C.事件 / 駭客 / DDOS / APT / 雲端/ 暗網/ 徵才 / 國際資安事件 2021年5月10大資安新聞 https://times.hinet.net/topic/23355934 勒索油管一戰成名「黑暗面」兜售作案教學 https://udn.com/news/story/6812/5502897?from=udn-catelistnews_ch2 疫情期間網購大增資安專家籲戒掉2項帳密惡習 https://www.cna.com.tw/news/ahel/202106033001.aspx FBI 與 Have I Been Pwned 合作，擴大查詢外洩密碼情況的來源資料 https://reurl.cc/no0l6n 數百萬網安職位求才孔急，但有錢也找不到 https://www.worldjournal.com/wj/story/121477/5497161 駭客攻擊如病毒　供應鏈、基建資安防護2大要素 https://www.digitimes.com.tw/iot/article.asp?cat=158&cat1=20&cat2=10&id=0000611590_YEL6P2YI8I4I0112IN4QS 富士通代管平臺被駭，影響眾多日本政府單位 https://www.ithome.com.tw/news/144686 小心駭客！微軟示警：俄國主使的駭客鎖定政府機構 https://ec.ltn.com.tw/article/breakingnews/3549591 麻州往返鱈魚角、瑪莎葡萄園島渡輪訂票系統遭駭勒贖 https://www.worldjournal.com/wj/story/121469/5505317 事隔3年阿蘇薩警局再遭駭客勒索、損失慘重 https://www.worldjournal.com/wj/story/121359/5508318 北韓駭客大軍搶銀行、竊情報比核武更具威脅 https://vip.udn.com/vip/story/121937/5507285 拜登總統簽署行政命令以加強美國網路安全 https://www.aili.com.tw/message2_detail/122.htm 俄羅斯駭客組織肆虐多國組織疑為美俄會談情蒐 https://news.ttv.com.tw/news/11005290025200L 蒐集外交情報　微軟：俄駭客鎖定美政府智庫發動網攻 https://tw.appledaily.com/international/20210530/NGUWPEOQNFEAPIYJHNSAII4BYA/ 俄國駭客捲土重來！微軟：全球150多個組織遭殃 https://newtalk.tw/news/view/2021-05-31/581781 再有美企遭黑客勒索拜登：將研究報復方式 http://www.hkcd.com/content/2021-06/03/content_1272301.html 全球最大肉品加工業者JBS遭俄羅斯駭客攻擊，週三可望恢復運作 https://reurl.cc/qgm7ky JBS疑似遭到俄羅斯駭客的勒索軟體攻擊，美國政府介入協商 https://www.ithome.com.tw/news/144768 白宮：拜登正檢視勒索軟體威脅將與蒲亭峰會討論 https://udn.com/news/story/6813/5504971 美國司法部將展開為期120天的網路安全挑戰審查 https://blog.twnic.tw/2021/06/02/18655/ 紐約大都會運輸署4月遭入侵，駭客據信與中國政府有關 https://cn.nytimes.com/usa/20210603/mta-cyber-attack/zh-hant/ 此地無銀三百兩! 華為稱「已無關係」還替間諜案被告付訴訟費 https://newtalk.tw/news/view/2021-06-01/582501 美攻防兼備肆應網路灰色地帶威脅 https://reurl.cc/YOWyqX APT 駭侵團體針對東南亞某國政府發動後門監聽攻擊長達三年 https://twcert.pixnet.net/blog/post/332520492 Hackers Using Fake Foundations to Target Uyghur Minority in China https://thehackernews.com/2021/05/hackers-using-fake-foundations-to.html US announces new security directive after critical pipeline hack https://www.bleepingcomputer.com/news/security/us-announces-new-security-directive-after-critical-pipeline-hack/ A Holistic and Collaborative Approach to DNS Security in the Asia Pacific Region https://blog.twnic.tw/2021/05/31/18864/ SolarWinds Hackers Targets Individual Accounts Across 150 Organizations Worldwide https://cybersecuritynews.com/solarwinds-nobelium-hacker-group/ Chinese APT Threat Actors Hacking Pulse Secure VPN Devices Remotely https://gbhackers.com/chinese-apt-threat-actors-hacking-pulse-secure-vpn-devices-remotely/ NobleBaron New Poisoned Installers Could Be Used In Supply Chain Attacks https://labs.sentinelone.com/noblebaron-new-poisoned-installers-could-be-used-in-supply-chain-attacks/ Your Amazon Devices to Automatically Share Your Wi-Fi With Neighbors https://thehackernews.com/2021/05/your-amazon-devices-to-automatically.html Report: Danish Secret Service Helped NSA Spy On European Politicians https://thehackernews.com/2021/06/report-danish-secret-service-helped-nsa.html JBS USA Cybersecurity Attack https://www.globenewswire.com/news-release/2021/05/31/2239049/17532/en/Media-Statement-JBS-USA-Cybersecurity-Attack.html https://nypost.com/2021/06/01/worlds-largest-meat-processor-jbs-foods-hit-by-cyberattack/ https://www.beefcentral.com/news/jbs-global-meat-processing-operations-paralysed-by-cyber-attack/ The Incredible Rise of North Korea’s Hacking Army https://www.newyorker.com/magazine/2021/04/26/the-incredible-rise-of-north-koreas-hacking-army Researchers Uncover Hacking Operations Targeting Government Entities in South Korea https://thehackernews.com/2021/06/researchers-uncover-hacking-operations.html US Seizes Domains Used by SolarWinds Hackers in Cyber Espionage Attacks https://thehackernews.com/2021/06/us-seizes-domains-used-by-solarwinds.html Chinese threat actors hacked NYC MTA using Pulse Secure zero-day https://www.bleepingcomputer.com/news/security/chinese-threat-actors-hacked-nyc-mta-using-pulse-secure-zero-day/ Experts Uncover Yet Another Chinese Spying Campaign Aimed at Southeast Asia https://thehackernews.com/2021/06/experts-uncover-yet-another-chinese.html 合庫銀徵才最高起薪6.4萬元 https://money.udn.com/money/story/5613/5497925 資安防護管理人員(網路安全) https://www.104.com.tw/job/6wvip?jobsource=jolist_a_relevance 資安管理資深專業人員-數位資安架構 https://www.104.com.tw/job/7ask3 資安管理資深專業人員-數位資安架構 https://www.104.com.tw/job/7ask3?jobsource=googlejobs 資安管理專業人員-數位資安工程 https://www.104.com.tw/job/7ask6 技術整合部：資安工程師 /資訊安全副理 https://www.104.com.tw/job/79h09?jobsource=job_same_B 資安制度管理人員 https://www.1111.com.tw/job/91457613/ 資訊安全專案顧問 https://job.taiwanjobs.gov.tw/Internet/jobwanted/JobDetail.aspx?EMPLOYER_ID=2374573&HIRE_ID=10457055 資安稽核專案經理 https://www.104.com.tw/job/7aq0e 資安工程師 https://www.104.com.tw/jb/104i/job/view?j=75hpb 【資安所】資安工程師 https://www.104.com.tw/job/7asj8 D.資料外洩/個資法/GDPR/網路詐騙/網路釣魚/盜刷/假新聞個人帳號被盜要不要緊？原來你的個資在暗網上都有價目表 https://m.eprice.com.tw/tech/talk/1141/5647389/1/ 2021暗網個資價目表出爐！這帳號竟比信用卡資料更值錢 https://newtalk.tw/news/view/2021-05-31/581667 詐騙集團擱來啊！假賣家稱：帳戶遭駭客入侵　高雄女誤信險遭詐 https://www.ettoday.net/news/20210530/1994412.htm 佯稱駭客攻擊帳戶湖內警方阻止女子被騙 https://www.chinatimes.com/realtimenews/20210530001459-260402?chdtv 疫情在家網購婦遭詐騙集團盯上險失萬元 https://reurl.cc/rg8L5r ATM轉帳金額輸入解除扣款代碼？詐騙新手法警一秒破解 https://udn.com/news/story/7320/5496204?from=udn-ch1_breaknews-1-0-news 她被騙到ATM輸「解除扣款程式碼」16250　警趕來掛斷歹徒電話 https://tw.appledaily.com/local/20210530/55U2P2QWUZDWNBQYVXNF2NEHNQ/ 5月報稅季到了！留意2大詐騙手法小心駭客入侵專家提3招自保 https://reurl.cc/EnzGDg 駭客入侵遠端鍵入代號能關帳？湖內警成功攔截詐騙 https://today.line.me/tw/v2/article/7KaD58 美軍核武機密因人員使用線上字卡App外洩 https://www.ithome.com.tw/news/144711 結合串流媒體與電話客服！專家警告：當心新型釣魚詐騙手法 https://newtalk.tw/news/view/2021-05-31/581666 一頁式購物詐騙爆量，以防疫類物資為名行詐財之實尤其猖獗 https://www.kocpc.com.tw/archives/386578 大考中心驚傳資料外洩，2千考生受影響 https://www.ithome.com.tw/news/144769 大考中心報名系統驚傳遭駭 2000筆考生資料遭遭不明人士瀏覽 https://reurl.cc/gW8KKR 新學測試考系統遭駭客入侵大考中心:不影響指考 https://globalnewstv.com.tw/202106/154625/ 教育學程報名系統疑個資外洩台大：已修復補強 https://www.cna.com.tw/news/ahel/202106030339.aspx 防疫物資詐騙網站爆量！A你錢竊個資 https://reurl.cc/bXzQLM 疫情再起，趨勢科技兩周攔截高達 75 萬次一頁式詐騙網址 https://ccc.technews.tw/2021/05/31/trend-micro-4/ 陽明校區疑似個資外洩通知 https://it.nycu.edu.tw/news/6808/ 民進黨主任范綱皓、網紅Sabrina涉假訊息案調查局：資安站偵辦中 https://www.chinatimes.com/realtimenews/20210602003906-260402?chdtv 今年首季錄145宗電郵騙案涉$4.8億警方演習揭7成公司員工曾開釣魚電郵 https://hk.appledaily.com/local/20210601/W72RZS7NHZHIJH3UQGPSUOG44M/ 首季145電郵騙案　駭客扮美國「副總裁」騙上海公司7600萬元 https://reurl.cc/gW8K5V 在家上班連wifi，卻讓客戶資料、公司機密外洩⋯為什麼？怎麼應對 https://www.businessweekly.com.tw/careers/blog/3006692 散布不實確診足跡引恐慌調查局逮2網友送辦 https://udn.com/news/story/7320/5509694 Microsoft details new sophisticated spear-phishing attacks from NOBELIUM https://securityaffairs.co/wordpress/118352/apt/spear-phishing-attacks-nobelium.html Army of fake fans boosts China’s messaging on Twitter https://apnews.com/article/asia-pacific-china-europe-middle-east-government-and-politics-62b13895aa6665ae4d887dcc8d196dfc Data of 21 million users from 3 popular free mobile VPNs advertised for sale online https://cybersecdn.com/index.php/2021/06/01/data-of-21-million-users-from-3-popular-free-mobile-vpns-advertised-for-sale-online/ Data leak makes Peloton’s Horrible, No-Good, Really Bad Day even worse https://arstechnica.com/gadgets/2021/05/peloton-takes-3-months-to-fix-flaw-that-exposed-users-private-information/ E.研究報告 DarkSide 勒索病毒與美國輸油管攻擊事件(更新) https://blog.trendmicro.com.tw/?p=68204 利用redis未授權訪問漏洞(windows版) https://codingnote.cc/zh-tw/p/394403/ Fastjson 1.2.68 反序列化漏洞Commons IO 2.x 寫文件利用鏈挖掘分析 https://www.chainnews.com/articles/005686486820.htm Google揭露新型態的Rowhammer記憶體漏洞技術：Half-Double可影響更遠的位元 https://www.ithome.com.tw/news/144723 0day安全學習筆記：MS06-040漏洞分析 https://bbs.pediy.com/thread-267893.htm 竊取信用卡卡號之釣魚信件分析報告 https://portal.cert.tanet.edu.tw/docs/pdf/202105310105545460955345255207.pdf 【IoT漏洞分析】FragAttack系列WiFi漏洞分析 https://forum.butian.net/share/154 內容農場給我下去！搜尋引擎的內容守門員：Panda 熊貓演算法 https://pansci.asia/archives/322173 BlackDragon https://github.com/Cyber-Guy1/BlackDragon Docker Honeypot Reveals Cryptojacking as Most Common Cloud Threat https://unit42.paloaltonetworks.com/docker-honeypot/ Reverse Shell Generator by Ryan Montgomery https://hakin9.org/reverse-shell-generator-by-ryan-montgomery/ Detecting CVE-2021-31166 – HTTP vulnerability https://securityboulevard.com/2021/05/detecting-cve-2021-31166-http-vulnerability/ Vidar Stealer infrastructure https://medium.com/s2wlab/deep-analysis-of-vidar-stealer-ebfc3b557aed Supercharge Your Response to Security Incidents With AWS and FireEye Helix https://www.fireeye.com/blog/products-and-services/2021/05/supercharge-response-to-incidents-with-aws-and-helix.html Chinese Cyber Espionage Hackers Continue to Target Pulse Secure VPN Devices https://thehackernews.com/2021/05/chinese-cyber-espionage-hackers.html Re-Checking Your Pulse: Updates on Chinese APT Actors Compromising Pulse Secure VPN Devices https://www.fireeye.com/blog/threat-research/2021/05/updates-on-chinese-apt-compromising-pulse-secure-vpn-devices.html LINE_notify_collection https://github.com/hazel-shen/LINE_notify_collection Web Cache Poisoning: A Tale of chaining unkeyed inputs https://infosecwriteups.com/web-cache-poisoning-a-tale-of-chaining-unkeyed-inputs-6e3cb026bd23 AutoPentest-DRL https://github.com/crond-jaist/AutoPentest-DRL Red Kube https://github.com/lightspin-tech/red-kube Hetty - An HTTP Toolkit For Security Research https://hakin9.org/hetty-an-http-toolkit-for-security-research/ CheeseTools - Self-developed Tools For Lateral Movement/Code Execution https://www.kitploit.com/2021/05/cheesetools-self-developed-tools-for.html A Complete Malware Analysis Tutorials, Cheatsheet & Tools list for Security Professionals https://gbhackers.com/malware-analysis-cheat-sheet-and-tools-list/ Kaiju - A Binary Analysis Framework Extension For The Ghidra Software Reverse Engineering Suite https://www.kitploit.com/2021/05/kaiju-binary-analysis-framework.html Open-source tool Yor automatically tags IaC resources for traceability and auditability https://cybersecdn.com/index.php/2021/05/30/open-source-tool-yor-automatically-tags-iac-resources-for-traceability-and-auditability/ yor https://github.com/bridgecrewio/yor/releases Akamai Security Research: Financial Services Continues Getting Bombarded With Credential Stuffing And Web Application Attacks https://www.akamai.com/us/en/about/news/press/2021-press/akamai-soti-security-research-phishing-for-finance.jsp Researchers Demonstrate 2 New Hacks to Modify Certified PDF Documents https://thehackernews.com/2021/05/researchers-demonstrate-2-new-hacks-to.html Carbanak and FIN7 Attack Techniques https://cybersecdn.com/index.php/2021/06/01/carbanak-and-fin7-attack-techniques/ Attackers Seek New Strategies to Improve Macros' Effectiveness https://reurl.cc/Q97G2o Top 10 Network Packet Analyzer Tools for Sysadmin & Security Analysts 2021 https://cybersecuritynews.com/network-packet-analyzer-tools/ Redline, Taurus and mini-Redline Infostealers delivered through Google PPC Ads https://blog.morphisec.com/google-ppc-ads-deliver-redline-taurus-and-mini-redline-infostealers WebLogic RCE Leads to XMRig https://thedfirreport.com/2021/06/03/weblogic-rce-leads-to-xmrig/ F.商業 Microchip推出首款用於加強FPGA設計的防護工具 https://reurl.cc/nonaAe QNAP 推出新世代三頻 Mesh Wi-Fi SD-WAN 智能路由器 https://hk.xfastest.com/118367/qnap-mesh-wifi-sd-wan-qmiroplus-201w/ 電信三雄搶攻企業防疫商機 https://ctee.com.tw/news/tech/468094.html 增金鑰自動輪替與多因素認證，MOVEit強化日常資安防護 https://www.ithome.com.tw/review/144726 防疫期間企業遠距不中斷數位通推雲端主機及桌面雲短租服務 https://money.udn.com/money/story/5640/5501672 5G 新興威脅讓智慧製造面臨資安難題 https://www.zerone.com.tw/Content/Product/543AFE3EF2724D4A 遠距商機爆發銓鍇與精誠資訊策略合作開拓雲端新格局 https://money.udn.com/money/story/5612/5501326 中華電信「hiBox 電子郵件簽章」因應遠距辦公為企業電子郵件打造更安全的資安防護 https://reurl.cc/mLqERl 普萊德參加全球安全科技展，秀安防監控網路基礎建設設備和管理方案 https://fnc.ebc.net.tw/fncnews/stock/135369 Google助台全力防疫分享遠距教學、居家工作多元指引 https://www.chinatimes.com/realtimenews/20210602003802-260412?chdtv 中小企業注意！遠傳攜手數聯資安推出「3S 遠距安全辦公方案」讓遠距工作不犧牲資安 https://www.ftvnews.com.tw/news/detail/2021602W0210 亞馬遜便道有資安疑慮 6/8在美啟動 https://reurl.cc/ZGQpMW 亞洲供應鏈重洗牌是方電訊插旗東南亞推全新智慧交換連結服務 https://money.udn.com/money/story/5635/5503915 G.政府唐鳳再出手疫苗預約平台6月上線 https://reurl.cc/O0qR1A 刑事局資安實驗室獲國際程式行為分析認證 https://www.cna.com.tw/news/asoc/202105310166.aspx 台灣之光！刑事局資安鑑識實驗室　全球第一通過ISO／IEC資安鑑識認證 https://www.ettoday.net/news/20210531/1995386.htm 刑事局資安鑑識實驗室全球首創：將惡意程式分析流程標準化並取得ISO國際認證 https://www.ithome.com.tw/news/144756 智慧移動與資安金融正夯台盧森堡將辦經濟合作會議 https://www.taiwannews.com.tw/ch/news/4213623 【國防部成立75周年】國防組織完備建構精銳勁旅 https://reurl.cc/dGVNK6 防疫大作戰司法院公布「法院遠距視訊開庭操作手冊」 https://www.chinatimes.com/realtimenews/20210601006065-260402?chdtv COMPUTEX 2021改全線上服務王美花：8家指標性海外企業今年加碼投資台灣 https://www.taiwannews.com.tw/ch/news/4213984 領先科技部會！工研院非實驗人員全面居家上班 https://udn.com/news/story/7240/5507516 H.工控系統/ICS/SCADA/IOT/物聯網/車聯網/電動車相關資安如何抵擋駭客攻擊，提升工控系統主動防禦力? (上篇) https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=9255 如何抵擋駭客攻擊，提升工控系統主動防禦力? (下篇) https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=9256 自動運転車セキュリティ入門第１回：自動運転車セキュリティの概要 https://www.mbsd.jp/research/20210531/autonomous-car/ 工業物聯網新危機企業無法停機修補關鍵漏洞暴露被攻擊的成本 https://reurl.cc/dG57a2 入侵5G專網的破口，智慧製造面臨資安難題 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=9260 聯網更有保護力使用智慧家電不駭怕 https://reurl.cc/83yENy 德國萊因安全驗證使用智慧家電不駭怕 https://ctee.com.tw/industrynews/technology/469142.html 所有車都是物聯網的時代來臨！瑞昱：軟體定義汽車，車用乙太網路是關鍵 https://www.bnext.com.tw/article/63146/realtek-computex-2021 「智慧製造不是革命，而是進化！」鴻海旗下富鴻網如何讓5G助攻智慧工廠 https://www.bnext.com.tw/article/63170/computex-2021-fhnet Tesla 車內監控鏡頭有漏洞！駭客：邊開邊睡系統沒反應 https://auto.ltn.com.tw/news/17837/3 趨勢科技揭車聯網資安趨勢：當汽車成了行駛中的「超級電腦」，該如抵禦駭客攻擊 https://today.line.me/tw/v2/article/9jzxxg A New Bug in Siemens PLCs Could Let Hackers Run Malicious Code Remotely https://thehackernews.com/2021/05/a-new-bug-in-siemens-plcs-could-let.html I.教育訓練常考滲透測試面試問題 https://zhuanlan.zhihu.com/p/376107902 All about File upload XSS https://infosecwriteups.com/all-about-file-upload-xss-c72c797aaba3 Cross Site Scripting -XSS https://hackersonlineclub.com/cross-site-scripting-xss/ Windows 10 quietly got a built-in network sniffer, how to use https://www.bleepingcomputer.com/news/microsoft/windows-10-quietly-got-a-built-in-network-sniffer-how-to-use/ J.人工智慧/AI/ML/人臉辨識本週無合適議題。 6.近期資安活動及研討會 Golang Taipei Gathering #57 Webinar 6/1 https://www.meetup.com/golang-taipei-meetup/events/278400349/ 從Python到TensorFlow線上讀書會-二部曲(14) -集群 6/1 https://www.meetup.com/TensorFlow-User-Group-Taipei/events/274981394/ Taipei Creative Coders Meetup #9 6/2 https://www.meetup.com/tpecreativecoders/events/278466192/ TensorFlow Everywhere | From 0 to 1 6/10 https://www.meetup.com/TensorFlow-User-Group-Taipei/events/277170902/ 2021製造業資安論壇 6/10 https://docs.google.com/forms/d/e/1FAIpQLSeJEpc_ePmJGx2RO6hlSJQnmsFTzBT-2zkzjcnPHbdYS2UAhQ/viewform 行動應用APP安全檢測與實務(可抵內稽) 6/11 https://www.caa.org.tw/coursedetail-3515.html Maximize the Output, or Optimize the Outcome 6/24 https://www.meetup.com/the-liberators-network-taiwan-user-group-taipei-taiwan/events/276003947/ 【白帽駭客工坊】2021資安實務培訓課程 6/25 https://pttcareer.com/tech_job/M.1620115144.A.C05.html Making websites run faster and environmentally friendly 6/25 https://www.meetup.com/taiwan-code-camp/events/278096767/ 國家高速網路與計算中心教育訓練【資安進階課程】實體滲透與手法研究 6/29 https://edu.nchc.org.tw/course/one_course_introduction.asp?lms_auto_course_id=3950&from_course_list_url=homepage Golang Taipei Gathering #58 https://www.meetup.com/golang-taipei-meetup/events/277604159/ Cyber Security Global Summit 21 6/29 ~ 6/30 https://cs.geekle.us/?utm_content=INFO_SEC_TIER2 元智資工夏令營-由programming邁入AI大數據與資安世界 7/15 ~ 7/17 https://cse-yzu.kktix.cc/events/yzcsapcs5 國立臺灣科技大學執行教育部「先進資通安全實務人才培育計畫」，將於110年7月26日至8月1日舉辦「110年新型態資安暑期課程(AIS3 2021) http://cc.ncku.edu.tw/p/406-1002-220949,r804.php?Lang=zh-tw 學生計算機年會 SITCON 2021 9/4 https://sitcon.org/2021/ Cyber Defense Summit 2021 Oct. 4-7, 2021 https://summit.fireeye.com/