資安事件新聞週報 2023/12/25 ~ 2023/12/29

###### tags: `資安事件新聞週報` # 資安事件新聞週報 2023/12/25 ~ 2023/12/29 1.重大弱點漏洞/後門/Exploit/Zero Day 報告：2023 年四分之一的高風險漏洞在發布當天就被利用且遠端即可 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10869 駭侵者利用 Adobe ColdFusion 漏洞攻擊美國政府包商 https://www.twcert.org.tw/tw/cp-104-7641-d7840-1.html 中華數位科技 Mail SQR Expert - Path Traversal https://www.twcert.org.tw/tw/cp-132-7596-648f3-1.html 中華數位科技 Mail SQR Expert - Blind Server-Side Request Forgey (SSRF) https://www.twcert.org.tw/tw/cp-132-7597-fff54-1.html 中華數位科技 Mail SQR Expert - Command Injection https://www.twcert.org.tw/tw/cp-132-7598-37b03-1.html 中華數位科技 Mail SQR Expert - Local File Inclusion-1 https://www.twcert.org.tw/tw/cp-132-7599-461d5-1.html 中華數位科技 Mail SQR Expert - Local File Inclusion-2 https://www.twcert.org.tw/tw/cp-132-7600-dd072-1.html Windows 內核級零日漏洞遭勒索軟體攻擊者濫用 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10868 微軟Windows事件記錄系統CLFS零時差漏洞被鎖定，已陸續遭勒索軟體駭客利用 https://www.darkreading.com/vulnerabilities-threats/ransomware-attackers-abuse-windows-clfs-driver-zero-days https://securelist.com/windows-clfs-exploits-ransomware/111560/ https://securelist.com/windows-clfs-exploits-ransomware-cve-2023-28252/111601/ 攻擊者利用已有6年歷史的微軟Office 漏洞散播間諜軟體 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10867 ERP系統Apache OfBiz存在重大漏洞，恐被用於繞過身分驗證防護 https://blog.sonicwall.com/en-us/2023/12/sonicwall-discovers-critical-apache-ofbiz-zero-day-authbiz/ 駭客掃描ERP系統Apache OFBiz重大漏洞，意圖對採用此軟體的Atlassian Confluence伺服器下手 https://www.bleepingcomputer.com/news/security/apache-ofbiz-rce-flaw-exploited-to-find-vulnerable-confluence-servers/ https://twitter.com/shadowserver/status/1740317678257218036 https://www.bleepingcomputer.com/news/security/apache-ofbiz-rce-flaw-exploited-to-find-vulnerable-confluence-servers/ Critical Zero-Day in Apache OfBiz ERP System Exposes Businesses to Attack https://thehackernews.com/2023/12/critical-zero-day-in-apache-ofbiz-erp.html Barracuda郵件安全閘道遭到中國駭客鎖定，利用零時差漏洞對其下手 https://www.barracuda.com/company/legal/esg-vulnerability Chinese Hackers Exploited New Zero-Day in Barracuda's ESG Appliances https://thehackernews.com/2023/12/chinese-hackers-exploited-new-zero-day.html GKE容器服務傳出有漏洞，可能讓使用者在K8s服務提升權限並完全控制叢集 https://thehackernews.com/2023/12/google-cloud-resolves-privilege.html https://unit42.paloaltonetworks.com/google-kubernetes-engine-privilege-escalation-fluentbit-anthos/ https://cloud.google.com/anthos/clusters/docs/security-bulletins#gcp-2023-047 Canonical針對Ubuntu發布更新，修補文字編輯器Vim漏洞 https://ubuntu.com/security/notices/USN-6557-1 2.銀行/金融/保險/證券/金融監理新聞及資安金管會發布113年金檢重點，首度明列雲端資安 https://www.ithome.com.tw/news/160437 金融業明年金檢鎖定六領域…公司治理、資安等列關注焦點 https://udn.com/news/story/7239/7652431 永豐金防駭強化資安戰力 https://money.udn.com/money/story/5613/7665109 後量子資安人才養成　政大攜手財金公司簽署MOU超前佈局 https://www.nccu.edu.tw/p/406-1000-15825,r17.php?Lang=zh-tw 強化金融資安！政大與財金公司簽MOU　佈局「後量子時代」金鑰管理 https://tw.nextapple.com/life/20231227/01B31DF0ADC0CFAF41B31A6FA55D6DB6 政大攜財金公司產學合作培育量子資安人才 https://udn.com/news/story/6928/7669483 財金公司聯手政大共培金融資安跨領域人才 https://www.chinatimes.com/realtimenews/20231227004911-260410?chdtv 聯徵中心表揚46家機構 - 推升台灣金融授信業務徵審品質、資訊安全 https://www.ctee.com.tw/news/20231227700180-439901 優化金融信用資訊 39機構獲表揚 https://money.udn.com/money/story/5635/7667393 Android Banking Trojan Chameleon can now bypass any Biometric Authentication https://www.threatfabric.com/blogs/android-banking-trojan-chameleon-is-back-in-action 金融木馬Chameleon出現變種，可繞過生物辨識保護機制 https://www.ithome.com.tw/news/160528 安卓金融木馬Chameleon停用指紋辨識功能，並竊取PIN碼來接管手機 https://www.threatfabric.com/blogs/android-banking-trojan-chameleon-is-back-in-action Chameleon Android Banking Trojan Variant Bypasses Biometric Authentication https://thehackernews.com/2023/12/new-chameleon-android-banking-trojan.html 金融木馬Carbanak東山再起，被用於勒索軟體攻擊行動 https://www.nccgroup.com/us/newsroom/ncc-group-monthly-threat-pulse-november-2023/ Carbanak Banking Malware Resurfaces with New Ransomware Tactics https://thehackernews.com/2023/12/carbanak-banking-malware-resurfaces.html 防止網絡勒索　保護金融中心地位 https://www.hk01.com/article/975095?utm_source=01articlecopy&utm_medium=referral 中信銀引進Whoscall進階版強化阻詐實力 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10875 富邦金控舉辦2023年「供應商ESG交流會」　堅持精進永續不息實現企業和環境的共榮 https://www.taiwannews.com.tw/ch/news/5067419 柯文哲拋金融兵推金管會：近年來每年辦資安演練 https://udn.com/news/story/7239/7652176?from=udn-ch1_breaknews-1-0-news 3.信用卡/電子支付/行動支付/pay/支付系統/資安 Rogue WordPress Plugin Exposes E-Commerce Sites to Credit Card Theft https://thehackernews.com/2023/12/rogue-wordpress-plugin-exposes-e.html 惡意WordPress外掛程式鎖定電商網站而來，目標是發動Magecart信用卡側錄攻擊 https://blog.sucuri.net/2023/12/magecart-wordpress-plugin-injects-malicious-user-credit-card-skimmer.html 歐洲刑警組織警告逾400個電商網站遭駭，被植入信用卡側錄程式 https://www.bleepingcomputer.com/news/security/europol-warns-443-online-shops-infected-with-credit-card-stealers/ https://www.europol.europa.eu/media-press/newsroom/news/action-against-digital-skimming-reveals-443-compromised-online-merchants https://www.group-ib.com/media-center/press-releases/digital-skimming-action/ 北韓推行電子支付，韓國：藉此管控市場現金 https://technews.tw/2023/12/22/north-korea-pay-online/ 發展跨境電子支付政府應推更多誘因 https://www.tkww.hk/epaper/view/newsDetail/1740055405838602240.html 電支帳戶飆TWQR再納雙雄 https://wantrich.chinatimes.com/news/20231229900397-420101 4.加密貨幣/數位貨幣/挖礦/區塊鍊/智能合約/WEB3 資安 Warning: Poorly Secured Linux SSH Servers Under Attack for Cryptocurrency Mining https://thehackernews.com/2023/12/warning-poorly-secured-linux-ssh.html Mt. Gox 發動退款與 2014 年比特幣駭客攻擊有關？細節 https://portalcripto.com.br/zh-TW/mt-gox-%E9%96%8B%E5%A7%8B%E9%80%80%E6%AC%BE%EF%BC%8C%E6%B6%89%E5%8F%8A-2014-%E5%B9%B4%E6%AF%94%E7%89%B9%E5%B9%A3%E9%A7%AD%E5%AE%A2%E6%94%BB%E6%93%8A%E7%B4%B0%E7%AF%80/ 區塊鏈安全和分析公司：2023年加密攻擊被盜資金近24億美元 https://bitnance.vip/news/01f26f63-54b3-4603-9b63-19ed69b0381e 一白帽駭客因披露Sui高危漏洞獲5萬美元的SUI代幣賞金 https://news.cnyes.com/news/id/5419860 Kyber Network 在網路攻擊損失數百萬美元後面臨裁員 https://portalcripto.com.br/zh-TW/%E7%99%BE%E8%90%AC%E5%AF%8C%E7%BF%81%E6%B5%81%E5%A4%B1%E5%BE%8C%EF%BC%8CKyber-Network-%E9%9D%A2%E8%87%A8%E5%9C%98%E9%9A%8A%E8%A3%81%E5%93%A1/ Kyber Network公佈賠償計劃，將於明年2月發放賠償 https://www.panewslab.com/zh_hk/sqarticledetails/ir0kjyd6Ft.html 數據顯示，2 年駭客竊取了 2023 億美元的加密貨幣 https://zh-tw.techwar.gr/266588/chaker-eklepsan-2-disekatommyria-dolaria-se-kryptografisi-to-2023-symfona-me-stoicheia/#google_vignette Thunder Terminal 遭駭損失 86.5 枚以太幣，強調用戶資金安全卻遭駭客爆「全是謊話」 https://blockcast.it/2023/12/27/on-chain-trading-platform-thunder-terminal-hacked-for-86-5-eth-user-funds-and-data-safe/ 比特幣交易所交易基金的批准越來越接近現實：比特幣交易所交易基金新聞和5個常見的比特幣交易所交易基金問題 https://www.fxstreet.hk/news/bi-te-bi-jiao-yi-suo-jiao-yi-ji-jin-de-pi-zhun-yue-lai-yue-jie-jin-xian-shi-bi-te-bi-jiao-yi-suo-jiao-yi-ji-jin-xin-wen-he-5ge-chang-jian-de-bi-te-bi-jiao-yi-suo-jiao-yi-ji-jin-wen-ti-202312270643 2023年加密用戶因詐騙、RUG及駭客攻擊損失近20億美元，與去年相比減少約50% https://news.cnyes.com/news/id/5420718 Beosin：2023年Web3領域因駭客攻擊、釣魚詐騙和項目方Rug Pull造成的總損失達20.2億美元 https://amp-news.cnyes.com/news/id/5420922 MicroStrategy 增持！最新以 6.15 億美元買入 14,620 枚比特幣 https://news.owlting.com/articles/565722 OKLink：2023年發生區塊鏈安全事件超520起，損失超17億美元 https://www.panewslab.com/zh_hk/sqarticledetails/qc4kzw8zFt.html 永續合約平台Levana遭遇攻擊，損失超110萬美元 https://news.cnyes.com/news/id/5421276 MICA Daily｜追隨 Solana 表現，主鏈幣出現補漲行情 https://blockcast.it/2023/12/28/mica-daily-1228/ Immunefi：加密貨幣用戶在2023年因被駭客攻擊和被詐騙共損失18億美元 https://news.cnyes.com/news/id/5421436 盤點2023去中心化交易所（DEX）發生什麼大事，崛起與挑戰 https://www.blocktempo.com/looking-back-at-the-development-of-dex-in-2023/ 加拿大加密交易所Catalyx因「安全漏洞」暫停交易和提款 https://www.panewslab.com/zh_hk/sqarticledetails/5r2p1w2lFt.html Lazarus、Kimsuki、Andariel 等多個駭侵團體自 2017 年至今竊得加密貨幣超過 30 億美元 https://www.twcert.org.tw/tw/cp-104-7657-2b437-1.html 5.資安事件新聞 A.病毒木馬 / 殭屍網路 / 勒索軟體 / Adware /APT /後門程式/IOC ALPHV Blackcat 勒索病毒 https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-353a 杭州破獲藉ChatGPT優化程式電腦病毒重大勒索案 https://www.ctee.com.tw/news/20231229700758-430801 Sophos 示警多個勒索軟體集團蓄意發動遠端加密攻擊 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10873 多組駭客濫用微軟市集App的URI協定，散布惡意軟體 https://www.microsoft.com/en-us/security/blog/2023/12/28/financially-motivated-threat-actors-misusing-app-installer/ 特立尼達和多巴哥社會福利機構遭勒索軟體攻擊 https://therecord.media/trinidad-and-tobago-government-agency-hit-with-post-christmas-cyberattack 德國醫療體系KHO遭遇勒索軟體LockBit攻擊，旗下3家醫院IT系統資料被加密 https://www.bleepingcomputer.com/news/security/lockbit-ransomware-disrupts-emergency-care-at-german-hospitals/ 彩券公司Ohio Lottery傳出遭勒索軟體DragonForce攻擊，被迫關閉部分系統 https://www.bleepingcomputer.com/news/security/ohio-lottery-hit-by-cyberattack-claimed-by-dragonforce-ransomware/ 駭客假冒尼泊爾政府官員，利用Word檔案作為誘餌，散布Nim惡意程式 https://www.netskope.com/blog/a-look-at-the-nim-based-campaign-using-microsoft-word-docs-to-impersonate-the-nepali-government 約旦Abdali綜合醫院傳出遭勒索軟體Rhysida攻擊 https://securityaffairs.com/156430/cyber-crime/rhysida-ransomware-abdali-hospital-jordan.html 會計師事務所Xeinadin傳出遭到勒索軟體LockBit攻擊 https://securityaffairs.com/156303/cyber-crime/lockbit-gang-xeinadin.html 方程式編輯器的老舊漏洞被利用，駭客拿來散布惡意軟體Agent Tesla https://www.zscaler.com/blogs/security-research/threat-actors-exploit-cve-2017-11882-deliver-agent-tesla 竊資軟體MetaStealer透過惡意廣告散布 https://www.malwarebytes.com/blog/threat-intelligence/2023/12/new-metastealer-malvertising-campaigns 伊朗駭客APT33鎖定國防產業，散布惡意程式FalseFont https://www.bleepingcomputer.com/news/security/microsoft-hackers-target-defense-firms-with-new-falsefont-malware/ https://twitter.com/MsftSecIntel/status/1737895710169628824 https://twitter.com/MsftSecIntel/status/1737895713646739697 https://twitter.com/MsftSecIntel/status/1737895715911700830 RAT木馬程式Bandook透過密碼保護的壓縮檔案散布 https://www.fortinet.com/blog/threat-research/bandook-persistent-threat-that-keeps-evolving 美國、加拿大遭到鎖定，駭客組織BattleRoyal對其散布惡意程式DarkGate https://www.proofpoint.com/us/blog/threat-insight/battleroyal-darkgate-cluster-spreads-email-and-fake-browser-updates Akira, again: The ransomware that keeps on taking https://otx.alienvault.com/pulse/658c45ad9b174d9cf1b26ce0 Stealth Backdoor “Android/Xamalicious” Actively Infecting Devices https://www.mcafee.com/blogs/other-blogs/mcafee-labs/stealth-backdoor-android-xamalicious-actively-infecting-devices/ 印度政府機關遭Rust惡意程式鎖定，駭客對其進行Operation RusticWeb攻擊行動 https://www.seqrite.com/blog/operation-rusticweb-targets-indian-govt-from-rust-based-malware-to-web-service-exfiltration/ Operation RusticWeb: Rust-Based Malware Targets Indian Government Entities https://thehackernews.com/2023/12/operation-rusticweb-rust-based-malware.html Decoy Microsoft Word Documents Used to Deliver Nim-Based Malware https://thehackernews.com/2023/12/decoy-microsoft-word-documents-used-to.html Microsoft Warns of New 'FalseFont' Backdoor Targeting the Defense Sector https://thehackernews.com/2023/12/microsoft-warns-of-new-falsefont.html 微軟再度預設關閉ms-appinstaller協定處理器 https://www.ithome.com.tw/news/160617 Microsoft Disables MSIX App Installer Protocol Widely Used in Malware Attacks https://thehackernews.com/2023/12/microsoft-disables-msix-app-installer.html Experts Detail Multi-Million Dollar Licensing Model of Predator Spyware https://thehackernews.com/2023/12/multi-million-dollar-predator-spyware.html New Sneaky Xamalicious Android Malware Hits Over 327,000 Devices https://thehackernews.com/2023/12/new-sneaky-xamalicious-android-malware.html New Rugmi Malware Loader Surges with Hundreds of Daily Detections https://thehackernews.com/2023/12/new-rugmi-malware-loader-surges-with.html CERT-UA Uncovers New Malware Wave Distributing OCEANMAP, MASEPIE, STEELHOOK https://thehackernews.com/2023/12/cert-ua-uncovers-new-malware-wave.html Menorah病毒被发现，主要目标是中东地区的组织 https://www.anquanke.com/post/id/292272 B.行動安全 / iPhone / Android /穿戴裝置 /App / 5G / 即時通訊 Most Sophisticated iPhone Hack Ever Exploited Apple's Hidden Hardware Feature https://thehackernews.com/2023/12/most-sophisticated-iphone-hack-ever.html 安卓系統面臨嚴重威脅木馬病毒攻擊超1800個網銀App https://reurl.cc/mrL84V 10款APP藏木馬病毒快刪掉！專門攻擊網銀　奪取個資、偷光錢財 https://www.nownews.com/news/6331481 利用4個零日漏洞　最高深的iPhone駭客攻擊事件 https://www.technice.com.tw/techmanage/infosecurity/88248/ iPhone曾遇史上最複雜攻擊！駭客發一則訊息就能竊走所有機密 https://www.mirrormedia.mg/external/tvbs_2351054 史上最複雜 iPhone 攻擊鏈！卡巴斯基公布鎖定 iMessage 複雜攻擊細節 https://infosecu.technews.tw/2023/12/29/kaspersky-iphone-attack/ 卡巴斯基揭露間諜軟體攻擊Operation Triangulation更多細節，駭客至少利用4個零時差漏洞 https://securelist.com/operation-triangulation-the-last-hardware-mystery/111669/ iOS 手機系統疑長年「後門大開」爆出多個未公開安全漏洞 https://ezone.ulifestyle.com.hk/article/20023188/iOS-%E6%89%8B%E6%A9%9F%E7%B3%BB%E7%B5%B1%E7%96%91%E9%95%B7%E5%B9%B4-%E5%BE%8C%E9%96%80%E5%A4%A7%E9%96%8B-%E7%88%86%E5%87%BA%E5%A4%9A%E5%80%8B%E6%9C%AA%E5%85%AC%E9%96%8B%E5%AE%89%E5%85%A8%E6%BC%8F%E6%B4%9E 據指印度政府不滿 Apple 向政治人物和記者警告有國家級駭客攻擊 https://hk.news.yahoo.com/apple-reportedly-faces-pressure-in-india-after-sending-out-warnings-of-state-sponsored-hacking-061106464.html?guce_referrer=aHR0cHM6Ly93d3cuZ29vZ2xlLmNvbS8&guce_referrer_sig=AQAAAI3aBeiNyD9izH4fWM0S64NyXnvKzv5RdzSEBmcnk6EsrHcnzEdyhcEP1X_gvsR3_scsVGVW5nur_fPJqQCIg9MBx6-aILL0sOuPFugrrxOQB6Agzmjm1R4kUSABWFpuAgMsIEBT-ptdAByTdY3HGzzU8DJv7iw45ppaKPE8Rsh4 Apple 緊急為較舊產品修復 2 個 0-day 漏洞 https://www.twcert.org.tw/tw/cp-104-7649-5db31-1.html 「變色龍」木馬捲土重來，中斷 Android 指紋、臉部解鎖竊取 PIN 碼 https://infosecu.technews.tw/2023/12/26/android-banking-trojan-chameleon/ C.事件 / 駭客 / DDOS / APT / 雲端/ 暗網/ 徵才 / 國際資安事件 / 資安人力 2023年資訊安全風雲：重大事件回顧與未來展望 https://www.getinfo.com.tw/2023it-report/ Sophos 偵測到多起鎖定飯店的惡意活動 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10865 物流集運商搶單！雇駭客關網站　發信攬客 https://today.line.me/tw/v2/article/oqrKPPj 美國CISA 要求科技製造廠停止提供預設密碼 https://www.twcert.org.tw/tw/cp-104-7655-d6d47-1.html 大英圖書館遭受嚴重駭客攻擊，館藏目錄系統等遭到癱瘓 https://vocus.cc/article/658da1defd897800011e0e10 電玩開發商RockStar Games遭駭一年，《俠盜獵車手V》原始碼被公開 https://www.bleepingcomputer.com/news/security/gta-5-source-code-reportedly-leaked-online-a-year-after-rockstar-hack/ https://gtafocal.com/?p=560 https://www.bleepingcomputer.com/news/security/gta-5-source-code-reportedly-leaked-online-a-year-after-rockstar-hack/ https://www.bleepingcomputer.com/news/security/lapsus-hacker-behind-gta-6-leak-gets-indefinite-hospital-sentence/ https://thecyberexpress.com/gta-5-source-code-leak/ https://twitter.com/vxunderground/status/1739263588408164859 〈漫威金鋼狼〉遊戲資料被駭，開發商 Insomniac：深感悲憤 https://infosecu.technews.tw/2023/12/28/insomniac-games-was-hacked/ 從事非法網路活動北韓偵察總局局長遭南韓制裁 https://money.udn.com/money/story/5599/7668925 美國遊戲公司UBI近日受駭客攻擊最後成功守住資料 https://www.ptt.cc/bbs/C_Chat/M.1703571638.A.094.html 遊戲開發商Ubisoft傳出遭網路攻擊，駭客宣稱目標是《虹彩六號：圍攻行動》的內部資料 https://www.ithome.com.tw/news/160546 https://twitter.com/vxunderground/status/1738093190538760574 https://twitter.com/vxunderground/status/1738144068788494722 阿爾巴尼亞議會傳出遭到網路攻擊，導致部分服務暫停 https://www.securityweek.com/cyberattack-targets-albanian-parliaments-data-system-halting-its-work/ 美對中情報網遭破 10年難恢復 https://udn.com/news/story/6809/7667776 美國CIA中國情報網遭剿難重建了解習近平核心圈計劃受限 https://www.cna.com.tw/news/acn/202312260381.aspx AI武器化？美控北京駭取巨量美國人個資　又竊AI技術「替所有美國人建立檔案」 https://today.line.me/tw/v2/amp/article/MLvoD6a 美國指控中國竊取人工智慧機密　大規模蒐集資料 https://www.primenews.com.tw/article/13766/ 美情報機構：中國盜竊人工智慧機密偷取美國人個資 https://www.cmmedia.com.tw/home/articles/44278 美印台防範解放軍網路攻擊專家：台灣經驗寶貴 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10870 網路安全相關產業快速發展網路攻擊頻傳《澳洲》亟需強化資安防禦 https://www.trademag.org.tw/page/itemsd/?id=7893637&no=19 瑞星捕获东南亚黑客组织对中国能源行业发起的APT攻击 https://www.aqniu.com/vendor/101988.html 烏克蘭遭到俄羅斯駭客APT28鎖定，散布惡意程式Masepie https://www.bleepingcomputer.com/news/security/russian-military-hackers-target-ukraine-with-new-masepie-malware/ APT28: From Initial Damage to Domain Controller Threats in an Hour (CERT-UA#8399) https://cert.gov.ua/article/6276894 Fog of Cyber Warfare: Cloud Atlas Spies Attack Russian Companies Under the guise of Supporting NWO Participants https://www.facct.ru/blog/cloud-atlas/ UAC-0099 Using WinRAR Exploit to Target Ukrainian Firms with LONEPAGE Malware https://thehackernews.com/2023/12/uac-0099-using-winrar-exploit-to-target.html Threat Actor 'UAC-0099' Continues to Target Ukraine https://www.deepinstinct.com/blog/threat-actor-uac-0099-continues-to-target-ukraine Bandook - A Persistent Threat That Keeps Evolving https://www.fortinet.com/blog/threat-research/bandook-persistent-threat-that-keeps-evolving British LAPSUS$ Teen Members Sentenced for High-Profile Attacks https://thehackernews.com/2023/12/british-lapsus-teen-members-sentenced.html Kimsuky Hackers Deploying AppleSeed, Meterpreter, and TinyNuke in Latest Attacks https://thehackernews.com/2023/12/kimsuky-hackers-deploying-appleseed.html 網路/資安培訓工程師 https://www.104.com.tw/job/7t0xp?jobsource=cmw_redirect 儲備資訊安全分析師【高雄】_三個月專業培訓(無經驗可) https://www.104.com.tw/job/7ujbd?jobsource=cmw_redirect 【財團法人】資訊通訊安全人員(新竹培訓中心) https://www.104.com.tw/job/82zm7?jobsource=cmw_redirect 技術支援工程師 (無經驗可，公司給予培訓 ;除薪資外，支援外勤另給予油資補助) https://www.104.com.tw/job/6isif?jobsource=cmw_redirect (SOC)資安監控中心資安工程師 https://www.104.com.tw/job/70hww?jobsource=cmw_redirect [ADN] 網路資安助理工程師 (台北) https://www.104.com.tw/job/5yirk?jobsource=cmw_redirect 〔駐點台中〕技術支援工程師〈上班地點：台中〉 https://www.104.com.tw/job/838tx?jobsource=cmw_redirect 資訊專員 https://www.104.com.tw/job/7ezfy?jobsource=cmw_redirect 網路管理工程師(南區) (Network Engineer) https://www.104.com.tw/job/8755e?jobsource=hotjob_chr 法律數位鑑識分析工程師 Forensics Engineer (eDiscovery) https://www.104.com.tw/job/85nqk?jobsource=cmw_redirect 資訊安全威脅獵捕分析師/研究員 https://www.104.com.tw/job/7eim4?jobsource=cmw_redirect 資訊安全分析師(初/中/高)級 Security Analyst (T1/T2/T3) https://www.104.com.tw/job/79u7l?jobsource=cmw_redirect 資安工程師-弱點檢測技術 https://www.104.com.tw/job/6g1kz?jobsource=cmw_redirect 【台北】Product Technology Engineer 資安產品工程師 https://www.104.com.tw/job/7n67c?jobsource=cmw_redirect 資深資安顧問／資安專家 https://www.104.com.tw/job/6u5p3?jobsource=cmw_redirect 資訊-資安工程師-龍潭廠-ATT210060 https://www.104.com.tw/job/7etlp?jobsource=cmw_redirect 顧問/資深顧問-資訊安全管理 Consultant/Senior Consultant of Cybersecurity (6384) https://www.104.com.tw/job/819ql?jobsource=cmw_redirect 【諮詢服務】資安架構/技術顧問 https://www.104.com.tw/job/7n6wp?jobsource=cmw_redirect 資安滲透測試專家(Q13) https://www.104.com.tw/job/4chjb?jobsource=cmw_redirect D.資料外洩/個資法/GDPR/網路詐騙/網路釣魚/盜刷/假新聞/網路霸凌/帳號安全基因測試公司 23andMe 共 690 萬使用者資料遭竊 https://www.twcert.org.tw/tw/cp-104-7637-3ccb0-1.html Cloud Atlas' Spear-Phishing Attacks Target Russian Agro and Research Companies https://thehackernews.com/2023/12/cloud-atlas-spear-phishing-attacks.html Google Cloud Resolves Privilege Escalation Flaw Impacting Kubernetes Service https://thehackernews.com/2023/12/google-cloud-resolves-privilege.html 勒索軟體Akira聲稱攻擊Nissan澳洲分公司，竊得100 GB內部資料 https://www.bleepingcomputer.com/news/security/nissan-australia-cyberattack-claimed-by-akira-ransomware-gang/ 法媒：台灣公民社會動員為盾對抗北京認知戰 https://www.cna.com.tw/news/aipl/202312280011.aspx 駭客持續針對Booking.com用戶展開攻擊，駭客論壇已開始兜售登入憑證 https://www.ithome.com.tw/news/160597 比電玩內容被駭更可怕的事！遊戲開發者的個資外洩，為什麼會影響生命安全 https://buzzorange.com/techorange/2023/12/28/game-developer-cybersecurity/ 工程師變內鬼！疑經營糾紛報復男勾結工程師刪系統竊個資害虧1200萬 https://www.youtube.com/watch?v=ZnaoVmRTSbQ 台灣民眾面臨詐騙和數位挑戰的現況 https://www.npo.org.tw/npo165/OnePage.aspx?mid=2&id=24 詐騙新招電話收集聲紋再AI偽造騙「親人」 https://news.ltn.com.tw/news/society/breakingnews/4532143 停用 Facebook 帳號,會失去之前的資料嗎 https://blog.trendmicro.com.tw/?p=80124 松下透露2022年12月發生的資料外洩事故 https://www.ithome.com.tw/news/160605 https://www.bleepingcomputer.com/news/security/panasonic-discloses-data-breach-after-december-2022-cyberattack/ https://www.documentcloud.org/documents/24238563-panasonic-avionics-corporation-consumer-notice-letter 歐洲大型停車應用程式服務集團EasyPark傳出資料外洩 https://www.hackread.com/ringgo-parkmobile-easypark-data-breach-data-stolen/ https://www.easypark.com/en-nl/comm https://www.theguardian.com/technology/2023/dec/26/hackers-steal-customer-data-europe-parking-app-easypark-ringgo-parkmobile 養樂多澳洲分公司傳出資料外洩，95 GB檔案流出 https://www.bleepingcomputer.com/news/security/yakult-australia-confirms-cyber-incident-after-95-gb-data-leak/ 抵押貸款業者LoanCare母公司資料外洩，130萬借款人受到影響 https://www.bleepingcomputer.com/news/security/mortgage-firm-loancare-warns-13-million-people-of-data-breach/ 美國房地產教育訓練中心Real Estate Wealth Network資料庫不設防，曝露15億筆資料 https://www.vpnmentor.com/news/report-realestatewealthnetwork-breach/ 房地產管理軟體製造商的CRM系統曝露69萬客戶資料 https://cybernews.com/security/dubai-real-estate-agency-data-leak/ 生成式AI被濫用於釣魚郵件攻擊，研究人員呼籲企業組織應透過AI對抗 https://abnormalsecurity.com/blog/2023-ai-generated-email-attacks 俄羅斯企業組織遭到駭客組織Cloud Atlas鎖定，從事魚叉式網釣攻擊 https://thehackernews.com/2023/12/cloud-atlas-spear-phishing-attacks.html 竊資軟體RedLine、Vidar鎖定旅館而來，駭客假借投訴與訂房為由發動攻擊 https://news.sophos.com/en-us/2023/12/19/inhospitality-malspam-campaign-targets-hotel-industry/ E.研究報告/工具啟用SSH遠端登入、資安防護卻不足的Linux系統，淪為挖礦、發動DDoS攻擊利器 https://asec.ahnlab.com/en/59972/ Smoke and Mirrors : Understanding The Workings of Wazawaka https://25491742.fs1.hubspotusercontent-eu1.net/hubfs/25491742/WAZAWAKA_TLPCLEAR_Report.pdf 駭客能讓自駕車把紅燈辨識成綠燈？分析 6 種 AI 模型攻擊，提升 AI 安全防禦力 https://scitechvista.nat.gov.tw/Article/C000003/detail?ID=d000add1-00a2-45f2-9a7e-bef05c17b7b9 你的網站非常危險 - Web安全攻防滲透駭客現場直播 https://www.tenlong.com.tw/products/9786267383261?list_name=r-zh_tw 前端開發資安入門｜你不能忽視的漏洞對策必備知識フロントエンド開発のためのセキュリティ入門 https://www.tenlong.com.tw/products/9786263247109?list_name=p-r-zh_tw 報告：Grand Theft Auto V 原始程式碼，報廢的 DLC 洩露 https://portal.sina.com.hk/technology/technology-game/gamereactor/2023/12/27/686855/%E5%A0%B1%E5%91%8A%EF%BC%9Agrand-theft-auto-v-%E5%8E%9F%E5%A7%8B%E7%A8%8B%E5%BC%8F%E7%A2%BC%EF%BC%8C%E5%A0%B1%E5%BB%A2%E7%9A%84-dlc-%E6%B4%A9%E9%9C%B2/#google_vignette 探索黑客服務領域：誠實技術支援的基礎知識 https://medium.com/@theshelady/%E7%B0%A1%E4%BB%8B-4d7fbe8f15d3 形塑未來，資安引領企業AI之路 https://money.udn.com/money/story/5636/7669547 資安躍居亞太區最大營運風險 https://www.ctee.com.tw/news/20231227700150-439901 資安預警通報：X-103_SUPERNOVA攻擊活動歸因及相關技術分析 https://www.issdu.com.tw/technology_detail.php?id=15&csrt=118661266517374876 AI資安風險猶存專家：跟人工智慧談心不要說出祕密 https://udn.com/news/story/6812/7669247?from=udn-ch1_breaknews-1-0-news 全新 SLAM 攻擊，可自 AMD、Intel 處理器竊取機敏資訊 https://www.twcert.org.tw/tw/cp-104-7643-45300-1.html 智慧工廠如何逆轉新形態資安攻擊 https://www.chinatimes.com/realtimenews/20231228002218-260412?chdtv 安永: 僅 20% 資安長認為現行網路安全管理方案有效 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10866 【生成式AI開啟資安新變革】AI資安2024 https://www.ithome.com.tw/article/160614 Analysis of Kimsuky Group's AppleSeed Malware Attack Trends https://asec.ahnlab.com/ko/59933/ 2023年全国网络安全行业职业技能大赛-电子数据取证分析师-writeup https://mp.weixin.qq.com/s?__biz=MzkzNjIwMzM5Nw==&mid=2247487637&idx=1&sn=46f54466d5e911ec081a19c306179189 工具：Webshell查杀呼叫集群 https://mp.weixin.qq.com/s?__biz=MjM5NDcxMDQzNA==&mid=2247488087&idx=1&sn=bcabe04ce0b0b92097ea7813c6371068 预警：针对 Linux 服务器的DDoS 机器人和加密货币挖矿程序攻击增多 https://www.anquanke.com/post/id/292276 CVE-2023-36802 与一种新的读写原语 ioring https://www.anquanke.com/post/id/292287 F.商業防止晶片被逆向工程物理破解Jmem tek高度強化晶片資安防護 https://www.digitimes.com.tw/tech/dt/n/shwnws.asp?CnlID=13&id=0000681225_66H3LEY61PMVQC6AMQUA4 駭客四伏資安危機即商機 https://www.trademag.org.tw/page/itemsd/?id=7893634&no=19 趨勢科技榮獲最新美國 FedRAMP營運授權認證 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10876 企業被駭焦慮？微智安聯提供情資威脅解方 https://www.ctee.com.tw/news/20231228700185-439901 設定郵件稽核引擎、控管高機敏內容！荃贏全美密碼用雲端工具強化企業資安 https://www.wealth.com.tw/articles/20a4e3c0-894a-41b8-b52a-0b5a66289fdd 在地緣衝突升溫時刻，IBM 與北約如何攜手打造韌性與彈性兼具的資安防禦 https://buzzorange.com/techorange/2023/12/29/ibm-nci-agency-cybersecurity/ 零壹科技正式成為Extreme Networks 台灣合作夥伴 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10874 F5預測2024年： AISecOps興起、邊緣運算將成網路攻擊主要目標 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10872 自由系統、展望會、微軟「數位轉型及資安防護」論壇：如何兼顧高效及安全 https://www.bnext.com.tw/article/77932/fs2023.12 唯思安全WithSecure Business Suite 16推出本地主機版 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10861 Mozilla改變對Trusted Types防護技術的立場，計畫在瀏覽器導入 https://www.ithome.com.tw/news/160604 https://www.theregister.com/2023/12/21/mozilla_decides_trusted_types_is/ https://github.com/mozilla/standards-positions/issues/20#issuecomment-1853427823 Chrome將會於背景自動偵測外洩密碼、可疑擴充程式 https://www.ithome.com.tw/news/160520 G.政府中正紀念堂用"中製掃地機"! 民眾憂心恐釀資安漏洞掃地機器人"未連網"仍有疑慮專家示警: 恐成駭客目標 https://www.youtube.com/watch?v=CagfJOF9sgM 主持國土安全政策會報鄭副院長：持續強化我國關鍵基礎設施防護韌性完備各項安全防護工作 https://www.ey.gov.tw/Page/9277F759E41CCD91/ad13cec4-eaf2-41eb-8c28-98e80ebe88ac 強化資安專業 113年起高考三級新增「資通安全」類科 https://reurl.cc/N4rv3Q 擴大進用資安人才高考三級明年新增「資通安全」類科 https://news.ltn.com.tw/news/life/breakingnews/4534668 H.工控系統/ICS/SCADA/IOT/物聯網/車聯網/電動車/人工智慧/AI/ML/人臉辨識/醫療相關資安特斯拉自動駕駛系統　遭德國專家駭客手段攻破 https://news.tvbs.com.tw/world/2349420 只花600歐元，就能破解特斯拉自動駕駛系統！德國專家：沒想到這麼簡單 https://www.storm.mg/article/4965363 美國新年度NDAA生效聯邦機構禁用中國無人機 https://reurl.cc/dLGNZz 行動聯網安全晶片持續守護IoT資安 https://www.2cm.com.tw/2cm/zh-tw/magazine/-MarketTrend/8809F1B91B9F4CC389D6A9EA04D576BA?type= 洛克威爾自動化助強化工控資安 https://www.ctee.com.tw/news/20231228700182-439901 I.教育訓練 iPAS資訊安全工程師中級筆記 https://hackmd.io/@Not/iPASInformationSecuritySpecialist iPas資安工程師證照考前研習 https://reurl.cc/GEbA3p Coursera 盤點 7 項雲端資安認證，高薪跳板都在這了！ https://buzzorange.com/techorange/2022/07/12/cloud-security-certificates/ 全球網絡安全勞動力失衡 (ISC)2免費課程及考試填補人才缺口 https://reurl.cc/m39MDj CISSP資安認證的8大領域 https://2formosa.blogspot.com/2022/12/CISSP-topic-domains.html CISSP考試心得 https://reurl.cc/KbY83j CISSP考試心得 – Benson https://reurl.cc/GbWvxd 目標導向-20天光速考過CISSP https://reurl.cc/2Zq6zn CISSP證照考試實戰心得第一章：初期準備工作 https://netmag.tw/2022/06/17/the-cissp-has-learned-the-first-chapter-in-actual-combat CISSP證照考試實戰心得第二章：規律且有紀律的讀書策略 https://netmag.tw/2022/07/01/the-cissp-is-in-the-field-of-combat-chapter-two-regular-and-disciplined-reading-strategies CISSP證照考試實戰心得第三章：終極一戰 https://netmag.tw/2022/07/12/the-cissp-has-learned-a-third-chapter-in-actual-combat-experience-the-ultimate-battle Quick CISSP Infographic for IPSec https://www.studynotesandtheory.com/single-post/quick-cissp-infographic-for-ipsec CSSLP Certification - Security models in F# https://github.com/vbocan/csslp Certified Secure Software Lifecycle Professional in bullet points https://github.com/joeyhage/csslp-notes CPSA(CREST Practitioner Security Analyst) 資安分析師考試心得 https://tech-blog.cymetrics.io/posts/huli/crest-cpsa-prepare/ EC-Council CEH v11 考試心得、改版資訊以及準備方向 2021、2022 https://reurl.cc/1oyEM8 CEH v11 考試心得與準備方式 https://blog.sean.taipei/2022/01/ceh CEH https://github.com/a3cipher/CEH CodeRed by EC-Council https://github.com/codered-by-ec-council EC-Council CEH Practical / Master 準備心得 — 讓理論與實作相輔相成的學習 https://medium.com/blacksecurity/ceh-practical-master-3e80cac180a2 EC-Council CEHP考試準備心得 https://hackmd.io/@9dCJrgb6QHGd8dRfgHO0zg/r14xNn1po ECSA v10 考試心得與讀書資料分享/ ECSA v10 Review and Study Materials https://medium.com/blacksecurity/ecsa-v10-1ec76c0eb7d4 EC-Council ECSA資安分析專家 v10 考試心得分享 https://javaxtalk.blogspot.com/2019/05/ec-council-ecsa-v10.html 20180817 EC-Council ECSA v10 PASS https://www.ptt.cc/bbs/License/M.1534571704.A.5BA.html 關於EC-Council CPENT和LPT Master滲透測試證照準備方式及心得分享 https://medium.com/@ChadSecurity/%E9%97%9C%E6%96%BCec-council-cpent%E5%92%8Clpt-master%E6%BB%B2%E9%80%8F%E6%B8%AC%E8%A9%A6%E8%AD%89%E7%85%A7%E6%BA%96%E5%82%99%E6%96%B9%E5%BC%8F%E5%8F%8A%E5%BF%83%E5%BE%97%E5%88%86%E4%BA%AB-efb63de00a8d 深度解析 CPENT 考試心得、以及與 OSCP 的比較 https://reurl.cc/41eL8v EC-Council CPENT v1 滲透測試認證 – 內容及心得分享 https://hackercat.org/pentesting/ec-council-cpent-v1-experience-review CPENT 從暴力到破解 https://hackmd.io/@3WAsoRFgSlyy7pm10p60kg/ByO0zs295 Ec-Council CPENT心得 - 資安菜鳥從CEH到LPT Master https://4hsienyang.medium.com/cpent-lpt-master-ccaebf2dbc7f CPENT考試心得分享：一次拿到 LPT 滲透測試大師認證 https://ucom.uuu.com.tw/web/Testimony/Article/4404 kaizensecurity/CPENT https://github.com/kaizensecurity/CPENT/tree/master CPENT : Pentesting like NO OTHERS ! https://www.linkedin.com/pulse/cpent-pentesting-like-others-belly-rachdianto/ Journey of My CPENT Exam https://medium.com/techiepedia/journey-of-my-cpent-exam-3a5d7ee6d917 [備考心得]CompTIA Security+ (SY0–601) 上篇 https://reurl.cc/M053DK [備考心得]CompTIA Security+ (SY0–601) 下篇 https://reurl.cc/M053Gv comptia-security-plus https://github.com/ajfuto/comptia-security-plus security-plus https://github.com/fjavierm/security-plus CompTIA Security+ Certification Practice Test Questions https://www.examcompass.com/comptia/security-plus-certification/free-security-plus-practice-tests#google_vignette 不只是工程師才要懂的 App 資訊安全：取得資安檢測合格證書血淚史（iT邦幫忙鐵人賽系列書） https://news.pchome.com.tw/living/books/20220202/index-64375841669874292009.html OSEP (Evasion Techniques and Breaching Defenses (PEN-300) 心得分享 https://hackmd.io/@henry-ko/HyQ56e8eF OSCP（Offensive Security Certified Professional） https://github.com/0x584A/oscp-notes/tree/master ISACA Certified Information Systems Auditor® (CISA) 國際電腦稽核師認證準備歷程心得、申請流程分享- 2023年 https://reurl.cc/aVLoX9 Learn NIST Inside Out With 21 Hours of Training @ 86% OFF https://thehackernews.com/2022/06/learn-nist-inside-out-with-21-hours-of.html 駭客與國家: 網路攻擊與地緣政治新常態 The hacker and the state: cyber attacks and the new normal of geopolitic https://reurl.cc/D3nKKj Practical Network Penetration Tester (PNPT) Certification Review https://tmc222.medium.com/practical-network-penetration-tester-pnpt-certification-review-4280e4e164df WUSON常用的基本詞彙 https://choson.lifenet.com.tw/?p=1958 證照仍是學習資安基本功的主要管道，有專家打造「資安證照地圖」 https://www.ithome.com.tw/news/156754 用證照證明自己實力之餘，更應將證照視為督促學習的最大動力 https://www.ithome.com.tw/news/156756 打破證照誤解與迷思，資安專家帶你釐清資安證照的意義 https://www.ithome.com.tw/news/156755 Accelerate Your Career with the Global Leader in Cyber Security Training https://www.sans.org/mlp/promo-partnership-hacker-news/ 6.近期資安活動及研討會網路自由小聚 [1月] ：拒絕真的需要勇氣，當平台遇到法律問題 2024/1/3 https://ocftw.kktix.cc/events/internetfreedom-january2024 Deep Learning Conversations & Happy Hour 2024/1/3 https://www.meetup.com/deep-learning-conversations/events/298011970/ SyntaxError 2024/1/3 https://www.meetup.com/pythonhug/events/pqnsctygccbfb/ Taipei dbt Meetup #19 feats Airflow Meetup (in-person 👫 & online 👨‍💻) 2024/1/4 https://www.meetup.com/taipei-dbt-meetup/events/297876626/ 2024 CISA_國際電腦稽核師認證研習班(平日) 2024/1/4~ 2024/1/10 https://www.caa.org.tw/coursedetail-36602.html AIS3 EOF CTF 2024 2024/1/5 ~ 2024/1/7 https://ais3.org/eof/Home/Rule Just a chat - with no Expectations 2024/1/6 https://www.meetup.com/taipei-%E6%9A%97%E5%8F%B7%E9%80%9A%E8%B2%A8-cryptocurrency-meetup/events/lsmkqsygccbjb/ WordPress - 桃園午茶小聚 Linner Meetup #32 2024/1/6 https://www.meetup.com/taoyuan-wordpress-meetup/events/298052588/ ISO/IEC 27001:2022資訊安全管理系統 CQI & IRCA主導稽核員訓練課程 2024/1/8 ~ 2024/1/12 https://www.caa.org.tw/coursedetail-36580.html 36th Annual FIRST Conference 2024/1/9 ~ 2024/1/14 https://www.first.org/conference/2024/ AWS re:Inforce 2024/1/10 ~ 2024/1/12 https://reinforce.awsevents.com/ SyntaxError 2024/1/10 https://www.meetup.com/pythonhug/events/pqnsctygccbnb/ ISO/IEC 27001:2022 資訊安全管理系統主導稽核員轉版訓練課程 2024/1/10 ~ 2024/1/11 https://www.caa.org.tw/coursedetail-36566.html 國家高速網路與計算中心教育訓練大型語言模型LLMs課程教學-跟你組織內的知識庫對話 Talk To Your Internal Knowledge Base 2024/1/10 https://edu.nchc.org.tw/course/one_course_introduction.asp?lms_auto_course_id=4084&from_course_list_url=homepage Taipei DevOps User Group 4th Event, supported by Wankuma Alliance 2024/1/12 https://www.meetup.com/taipei-devops-user-group/events/297826906/ 2024年第一次會員研討會 - ISC2 資安之旅：Security Congress心得、得獎專案，以及資安反思 2024/1/16 https://isc2taipei.kktix.cc/events/isc2webinar1th Elixir Taiwan monthly meetup 2024/1/16 https://www.meetup.com/elixirtw-taipei/events/297578852/ SyntaxError 2024/1/17 https://www.meetup.com/pythonhug/events/pqnsctygccbwb/ 國家高速網路與計算中心教育訓練大型語言模型LLMs課程教學-跟你組織內的知識庫對話 Talk To Your Internal Knowledge Base 2024/1/17 https://edu.nchc.org.tw/course/one_course_introduction.asp?lms_auto_course_id=4085&from_course_list_url=homepage 【Monosparta ②⓪②④ 第一梯次軟體開發實戰訓練營➠線上說明會 2024/1/17 https://trunk-studio.kktix.cc/events/monosparta-202401 2024年資安新手實戰培訓課程說明會 2024/1/19 https://acsiacad.kktix.cc/events/acadnewhire 2024 Global NF Conference 2024/1/20 ~ 2024/1/25 https://www.ctf.org/events/2024-joint-global-nf-conference# 獲利究竟被誰偷走了－Excel樞紐分析編製各式報表與查核 2024/1/24 https://www.caa.org.tw/coursedetail-36599.html Cyber Range in 2024 2024/1/24 ~ 2024/1/25 https://www.wwt.com/event/64e4ebafc176b30347f0568a SyntaxError 2024/1/24 https://www.meetup.com/pythonhug/events/pqnsctygccbgc/ SANS Cyber Threat Intelligence Summit & Training 2024 2024/1/29 - 2024/2/5 https://www.sans.org/cyber-security-training-events/cyber-threat-intelligence-summit-2024/ SyntaxError 2024/1/31 https://www.meetup.com/pythonhug/events/pqnsctygccbpc/ 第七屆《Hit AI & Blockchain》人工智慧暨區塊鏈產業高峰會 2024/2/6 https://www.accupass.com/event/2311160625102022535520 【安碁學苑】IPAS 資訊安全工程師中級證照培訓班 2024/2/20-2024/2/3/5 https://www.accupass.com/event/2312151022301066488466