資安事件新聞週報 2021/11/15 ~ 2021/11/19

###### tags: `資安事件新聞週報` # 資安事件新聞週報 2021/11/15 ~ 2021/11/19 1.重大弱點漏洞/後門/Exploit/Zero Day 美、英、澳共同發聲：伊朗駭客正在開採微軟Exchange及Fortinet漏洞 https://www.ithome.com.tw/news/147916 GitHub修補可讓駭客更新任何套件的Npm漏洞 https://www.ithome.com.tw/news/147896 New Blacksmith Exploit Bypasses Current Rowhammer Attack Defenses https://thehackernews.com/2021/11/new-blacksmith-exploit-bypasses-current.html Hackers Exploit macOS Zero-Day to Hack Hong Kong Users with new Implant https://thehackernews.com/2021/11/hackers-exploit-macos-zero-day-to-hack.html FBI Issues Flash Alert on Actively Exploited FatPipe VPN Zero-Day Bug https://thehackernews.com/2021/11/fbi-issues-flash-alert-on-actively.html Critical Root RCE Bug Affects Multiple Netgear SOHO Router Models https://thehackernews.com/2021/11/critical-root-rce-bug-affects-multiple.html VMware 發布修補 Tanzu Application Service for VMs 的安全性弱點 https://www.vmware.com/security/advisories/VMSA-2021-0026.html Palo Alto 發布 PAN-OS 的安全更新 https://security.paloaltonetworks.com/CVE-2021-3064 Cloudera Manager 7.2.4存在安全弱點 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2021-30132 搶修 Bug、強化資安！微軟釋出 Windows 10 年度大更新 https://3c.ltn.com.tw/news/46710 Windows Hyper-V 有拒絕服務的弱點 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2021-42284 Windows Kernel 有異常升權的弱點 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2021-42285 Microsoft Virtual Machine Bus (VMBus) 有遠端執行的相關弱點 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2021-26443 Windows MultiPoint Server 2011 SP1 - RpcEptMapper and Dnschade Local Privilege Escalation https://www.exploit-db.com/exploits/50517 Apache HTTP Server 2.4.50 - Remote Code Execution (RCE) https://www.exploit-db.com/exploits/50512 OWASP ModSecurity Core Rule 3.1.x (含)之前版本、3.2.x 、3.3.x ，攻擊者可以請求Bypass路徑 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2021-35368 11 Malicious PyPI Python Libraries Caught Stealing Discord Tokens and Installing Shells https://thehackernews.com/2021/11/11-malicious-pypi-python-libraries.html 2.銀行/金融/保險/證券/支付系統/ 新聞及資安美國國稅局推出新在線身份驗證流程 https://www.epochtimes.com/b5/21/11/18/n13382764.htm 抗議手續費過高亞馬遜宣布將不接受英國 Visa信用卡支付 https://www.inside.com.tw/article/25602-amazon-uk-visa 守護客戶資料安全華南銀獲企業永續資訊安全領袖獎 https://udn.com/news/story/7239/5897936 金控搶人才1／年薪百萬VS兩百萬轉職潮　聯發科開第一槍、金融界搶進 https://www.ctwant.com/article/151139 金控搶人才2／元大、富邦平均年薪拚業界之冠　這些理工人炙手可熱 https://www.ctwant.com/article/151140 金控搶人才3／永豐喊出保障年薪百萬培育AI科學家　理工+財金跨領域成主流 https://www.ctwant.com/article/151141 華南期貨7金釵「太辣」成絕響？華南證4結論：將不再製作 https://reurl.cc/r1Vj2Z 資安險正逐步成長中但仍有相當大成長空間 https://turnnewsapp.com/livenews/finance/A78817002021111513292468 保險史寫新頁金管會發布遠距投保常態化規則 https://money.udn.com/money/story/5613/5900892?from=edn_newest_index 5700萬中國產刷卡器曝安全隱患 https://hk.epochtimes.com/news/2021-11-14/174700 建立證券商資通安全檢查機制 https://www.laws.taipei.gov.tw/lawsystem/wfLaw_Information.aspx?LAWID=A040390050018500-20211118 3.電子支付/行動支付/pay/資安刷手結帳！亞馬遜「掌紋支付」功能　加州超市上路 https://news.tvbs.com.tw/focus/1638781 電子支付用戶近1500萬 9月儲值金額破140億 https://reurl.cc/Oko30R 電子支付提高上限立委疑放水蝦皮 https://reurl.cc/V5oOEQ 創首例！街口電子支付攜手凱基銀行推出「店家貸」 https://udn.com/news/story/7239/5894010 打造零接觸數位場景網家結盟電信與金控發展電子支付蔡凱文：下一步是OMO https://reurl.cc/dxokxz 大陸B站進軍支付領域斥逾1億人幣收購甬易支付股權 https://www.chinatimes.com/realtimenews/20211120002914-260410?chdtv 4.加密貨幣/挖礦/區塊鍊/智能合約資安印度「比特幣騙局」主要被告聲稱曾兩次入侵Bitfinex交易所 https://news.cnyes.com/news/id/4770673 反洗錢專欄｜揭開混幣平台 Tornado.Cash 的匿名面紗 https://www.blocktempo.com/reveal-the-secret-veil-of-tornado-cash/ FreeTON DeFi Alliance與KBA和Blockchain Centre India合作，並更名為Everscale https://news.cnyes.com/news/id/4770917 Cream Finance 將釋 145 萬代幣賠償遭駭用戶，社群 :「拿你沒價值的幣，換我們質押的ETH？」 https://www.blocktempo.com/cream-finance-will-issue-more-than-145-million-cream-to-users-affected-by-the-attack-however-it-cause-price-drop/ Cream Finance將向受攻擊影響用戶分發超145萬枚CREAM https://news.cnyes.com/news/id/4770940 台灣DeFi借貸平台Cream Finance承諾賠償遭駭用戶 CREAM代幣價格重挫崩跌逾四成 https://times.hinet.net/news/23605423 印度國會領導人指責總理掩蓋比特幣騙局 https://news.cnyes.com/news/id/4771042 JEC主席：加密貨幣市場波動加劇或數字銀行擠兌可能會擾亂更多的主流金融機構 https://news.cnyes.com/news/id/4773545 Hackathon DAO獲得100萬美金捐助，推動去中心化、無許可的開源創新 https://news.cnyes.com/news/id/4773923 台灣DeFi借貸平台又遭駭! 損失1.3億美元 https://news.ustv.com.tw/newsdetail/20211119A125 報告：2021年DeFi欺詐和盜竊損失達到108億美元 https://news.cnyes.com/news/id/4774116 美國司法部收回大量被盜加密貨幣 https://news.cnyes.com/news/id/4771199 以太坊Layer 2開發商StarkWare融資5000萬美元，估值已達20億美元 https://news.cnyes.com/news/id/4772389 打破區塊鏈不可逆神話的DAO遭駭事件回顧，以太坊分叉的緣由 https://www.techbang.com/posts/91404-a-review-of-the-dao-hack-that-broke-the-myth-of-blockchain 男星比特幣帳戶被駭客入侵損失數百萬報警欲哭無淚 https://reurl.cc/gzoyvp 5.資安事件新聞 A.病毒木馬 / 殭屍網路 / 勒索軟體 / Adware /APT /後門程式/IOC FBI：伊朗駭客正瞄準「美國關鍵基礎設施」　植入勒索病毒 https://www.ettoday.net/news/20211118/2126260.htm Iranian Government-Sponsored APT Cyber Actors Exploiting Microsoft Exchange and Fortinet Vulnerabilities in Furtherance of Malicious Activities | CISA https://us-cert.cisa.gov/ncas/alerts/aa21-321a 電腦沒人在裝防毒軟體了？內行人曝 2 原因、根本不需要 https://3c.ltn.com.tw/news/46700 駭客使用新的 Linux 惡意程式攻擊 Huawei Cloud https://blog.trendmicro.com.tw/?p=70482 研究：勒索軟件團體已有足夠金錢購買零日漏洞作攻擊 https://www.wepro180.com/zeroday211119/ 假冒端對端加密的 SoSafe Chat 社群聊天 Android App，內藏會竊取用戶機敏資訊的木馬 GravityRAT https://blog.twnic.tw/2021/11/18/20985/ 新的Rowhammer攻擊技術可繞過DDR4記憶體的現有防禦，成功率百分之百 https://www.ithome.com.tw/news/147876 Israel's Candiru Spyware Found Linked to Watering Hole Attacks in U.K and Middle East https://thehackernews.com/2021/11/israels-candiru-spyware-found-linked-to.html North korean malicious documents exploiting CVE-2021-40444 https://asec.ahnlab.com/ko/28690/ Attackers use domain fronting technique to target Myanmar with Cobalt Strike https://blog.talosintelligence.com/2021/11/attackers-use-domain-fronting-technique.html Strategic web compromises in the Middle East with a pinch of Candiru https://www.welivesecurity.com/2021/11/16/strategic-web-compromises-middle-east-pinch-candiru/ Office Documents: May the XLL technique change the threat Landscape in 2022 https://yoroi.company/research/office-documents-may-the-xll-technique-change-the-threat-landscape-in-2022/ Notorious Emotet Botnet Makes a Comeback with the Help of TrickBot Malware https://thehackernews.com/2021/11/notorious-emotet-botnet-makes-comeback.html SharkBot — A New Android Trojan Stealing Banking and Cryptocurrency Accounts https://thehackernews.com/2021/11/sharkbot-new-android-trojan-stealing.html A Deeper Dive Into Targeted Backdoor macOS.Macma https://www.sentinelone.com/labs/infect-if-needed-a-deeper-dive-into-targeted-backdoor-macos-macma/ Emotet Returns https://isc.sans.edu/diary/rss/28044 New Threat Alert: Krane Malware https://cujo.com/threat-alert-krane-malware/ Abcbot — A New Evolving Wormable Botnet Malware Targeting Linux https://thehackernews.com/2021/11/abcbot-new-evolving-wormable-botnet.html TrickBot Operators Partner with Shathak Attackers for Conti Ransomware https://thehackernews.com/2021/11/trickbot-operators-partner-with-shatak.html Navigating The Threat Landscape 2021 – From Ransomware to Botnets https://thehackernews.com/2021/11/navigating-threat-landscape-2021-from.html QAKBOT Loader Returns With New Techniques and Tools https://documents.trendmicro.com/assets/pdf/Technical-Brief---The-Prelude-to-Ransomware-A-Look-into-Current-QAKBOT-Capabilities-and-Activity.pdf https://www.trendmicro.com/en_us/research/21/k/qakbot-loader-returns-with-new-techniques-and-tools.html Exchange Exploit Leads to Domain Wide Ransomware https://thedfirreport.com/2021/11/15/exchange-exploit-leads-to-domain-wide-ransomware/ COVID-22 Brings Disaster to MBR https://www.fortinet.com/blog/threat-research/to-joke-or-not-to-joke-covid-22-brings-disaster-to-mbr GHOSTWRITER UPDATE: CYBER ESPIONAGE GROUP UNC1151 LIKELY CONDUCTS GHOSTWRITER INFLUENCE ACTIVITY https://www.mandiant.com/resources/unc1151-linked-to-belarus-government New ransomware actor uses password-protected archives to bypass encryption protection https://news.sophos.com/en-us/2021/11/18/new-ransomware-actor-uses-password-protected-archives-to-bypass-encryption-protection/ Triple Threat: North Korea-Aligned TA406 Steals, Scams and Spies https://www.proofpoint.com/sites/default/files/threat-reports/pfpt-us-tr-threat-insight-paper-triple-threat-N-Korea-aligned-TA406-steals-scams-spies.pdf Specter Botnet is 'taking over': Top Legit DNS Domains By Using ClouDNS Service https://blog.netlab.360.com/the-pitfall-of-threat-intelligence-whitelisting-specter-botnet-is-taking-over-top-legit-dns-domains-by-using-cloudns-service/ Iranian Government-Sponsored APT Cyber Actors Exploiting Microsoft Exchange and Fortinet Vulnerabilities in Furtherance of Malicious Activities https://us-cert.cisa.gov/ncas/alerts/aa21-321a Experts Expose Secrets of Conti Ransomware Group That Made 25 Million from Victims https://thehackernews.com/2021/11/experts-expose-secrets-of-conti.html Microsoft Warns about 6 Iranian Hacking Groups Turning to Ransomware https://thehackernews.com/2021/11/microsoft-warns-about-6-iranian-hacking.html B.行動安全 / iPhone / Android /穿戴裝置 /App / 5G / 即時通訊黑客曾計劃攻擊香港 iPhone 用戶專攻民主派網站瀏覽者 https://reurl.cc/Oko8X7 網路交友結識大陸直播主點開手機連結資料被駭 https://news.sina.com.tw/article/20211113/40555832.html iPhone隱私權設定26招技巧，換手機和升級iOS 15第一件必做 https://mrmad.com.tw/iphone-privacy-control 特斯拉APP大當機！車主遭鎖車外狂哀號　馬斯克親道歉 https://news.tvbs.com.tw/world/1639874 機器人帳號退散！Instagram 可能推「錄影自拍」驗證機制 https://www.inside.com.tw/article/25588-instagram-video-selfie-identity-confirmation-bots-accounts Google Pixel 6更新：改善螢幕下指紋辨識遲鈍問題 https://tw.appledaily.com/gadget/20211119/YGQE5S4UGRAOFHYP6YVHFBKKHM/ 23款App遭植入間諜軟體！估上千韓國用戶受害 https://newtalk.tw/news/view/2021-11-15/666557 Android 惡意間諜現身Google Play！23款免費App竊取個資 https://3c.ltn.com.tw/news/46677 Android用戶要注意！　這7款App帶有木馬病毒、恐造成財物損失 https://finance.ettoday.net/news/2123385 蘋果推自助維修研調CIRP：不影響iPhone升級周期 https://news.cnyes.com/news/id/4773668 C.事件 / 駭客 / DDOS / APT / 雲端/ 暗網/ 徵才 / 國際資安事件 / 資安人力 DEVCORE獲白帽駭客最高殿堂Pwn2Own競賽亞軍 https://news.wearn.com/c893397.html 網路攻擊增加近七成企業有感 https://www.chinatimes.com/realtimenews/20211118001377-260410?chdtv 不爽家人被開除，美國一名女子入侵飛行學校電腦系統、安排有維修問題的飛機起飛 https://www.techbang.com/posts/90726-woman-hacking-into-flight-school-computer-system 最高監禁145年！勒索蘋果的駭客成員終於被捕：還有一人在逃逸 https://zhekei.com/tech/418905.html 資安業者公布全球最受駭客青睞的頂級網域名稱，.zw、.bd、.ws、.tk你聽過嗎 https://www.ithome.com.tw/news/147845 PS5上市剛一年　國外駭客組織宣布成功破解 https://www.ctwant.com/article/150464 混合威脅遽增嚴防駭侵搭配假訊攻擊 https://reurl.cc/GbYyZD 阿里、位元組大廠伺服器疑似被海外駭客組織入侵，原始碼被出售 https://www.jasve.com/zh-tw/cntechs/f0dd5b886646dbbad7b17a8ef5d73761.html 駭客犯罪態樣多最愛電子購物網 https://news.ltn.com.tw/news/society/paper/1485192 印度科技高峰會台專家分享資安防禦經驗 https://www.chinatimes.com/realtimenews/20211118004632-260412?chdtv 陸首屆「中國網絡文明大會」今天在北京召開 https://www.chinatimes.com/realtimenews/20211119003617-260409?chdtv 最危險的網軍！為俄羅斯軍方情報局服務──沙蟲駭客 https://udn.com/umedia/story/12828/5764351 谷歌：國家級駭客入侵港傳媒、泛民網站 https://www.worldjournal.com/wj/story/121341/5888111 雙11線上旅展飯店票券系統「墨攻」遭駭客盯上 https://news.sina.com.tw/article/20211120/40614112.html Google揭露駭客利用macOS零時差漏洞攻擊香港使用者 https://www.insoler.com/forum/topic/16366995048659.htm 疑似中共背景駭客入侵蘋果設備針對港媒及民主派勞工團體網站用戶 https://tw.aboluowang.com/2021/1113/1671071.html AZ疫苗團隊也是受害者！　英國點名俄中為「資安主要威脅」 https://www.ettoday.net/news/20211117/2126228.htm 收過通知嗎？Google警告1.4萬名Gmail用戶恐成俄駭客目標 https://www.crctaiwan.nctu.edu.tw/industrynews_detail.asp?IN_ID=8268 金融駭客栽在台灣手上　刑事局短片籲國際刑警組織納編台警 https://www.ettoday.net/news/20211116/2125190.htm 美國指望協調全球網路安全問題 https://www.taics.org.tw/LatestNewsForm.aspx?News_id=17466 美國駭客入侵 BOOKING.COM 公司管理層卻對此保持沉默 https://reurl.cc/ARlegY 控伊朗「指使、金援駭客」　美FBI警告：企圖勒索關鍵基礎設施 https://www.mirrormedia.mg/story/20211118edi006/ 伊朗駭客在2020年大選前侵入報紙連鎖企業系統 https://reurl.cc/ARle9p 互望行動，用真攻防構建政府和國企央企網路安全的未來 https://bearask.com/ent/1746161.html 美指控伊朗背後支援駭客企圖勒索關鍵設施 https://reurl.cc/Mkoxj3 美歐合作逮捕 REvil 駭客團伙！美司法部新沒收 610 萬鎂加密貨幣贖金 https://www.blocktempo.com/u-s-seizes-6-1-million-in-cryptocurrency-in-ransomware-crackdown/ 親友慰問罹癌伊州男才知社媒遭駭今年已1.1萬件舉報 https://www.worldjournal.com/wj/story/121275/5899137 以色列抓到伊朗間諜竟是國防部長家中清潔工 https://reurl.cc/V5ov0b 暗批中國!印度總理：科技.數據將成新武器 https://news.ustv.com.tw/newsdetail/20211119A077 起底印度駭客頻密攻擊中國之一》瞄準重要部門時事熱點的重點機構或個人 https://www.chinatimes.com/realtimenews/20211119001516-260409?chdtv 起底印度駭客頻密攻擊中國之二》揭密國家級駭客組織 https://www.chinatimes.com/realtimenews/20211119001520-260409?chdtv 起底印度駭客頻密攻擊中國之三》沒有網路安全就沒有國家安全 https://www.chinatimes.com/realtimenews/20211119001522-260409?chdtv 「猴子實驗」配解放軍吸氧圖胡錫進出征痛罵路透社不是一般的噁心 https://newtalk.tw/news/view/2021-11-19/668978 中國生吃的兒女：孟宏偉之妻與國際刑警組織的陰謀暗雲 https://global.udn.com/global_vision/story/8662/5901958?form=udn_ch2_common3_cate 日本將通過史上最大規模經濟對策擴增國防預算應對中國威脅 https://www.chinatimes.com/realtimenews/20211119004755-260409?chdtv 梅克爾認了「與中國合作起初太過天真」　但不該斷絕所有交流 https://www.mirrormedia.mg/story/20211118edi003/ 中國網信辦建議嚴懲「翻牆」行為 https://www.pcmarket.com.hk/chinas-internet-information-office-suggests-severe-punishment-for-wall-flipping-behavior/ 立陶宛大量使用中國製無人機專家警告情資恐外洩 https://news.ltn.com.tw/news/world/breakingnews/3741439 美國特務風光不再，中國間諜為何變強了？前CIA諜報分析師揭密 https://www.cw.com.tw/article/5118921 Hackers Targeting Myanmar Use Domain Fronting to Hide Malicious Activities https://thehackernews.com/2021/11/hackers-targeting-myanmar-use-domain.html Facebook Bans Pakistani and Syrian Hacker Groups for Abusing its Platform https://thehackernews.com/2021/11/facebook-bans-pakistani-and-syrian.html New 'Moses Staff' Hacker Group Targets Israeli Companies With Destructive Attacks https://thehackernews.com/2021/11/new-moses-staff-hacker-group-targets.html North Korean Hackers Target Cybersecurity Researchers with Trojanized IDA Pro https://thehackernews.com/2021/11/north-korean-hackers-target.html FBI's Email System Hacked to Send Out Fake Cyber Security Alert to Thousands https://thehackernews.com/2021/11/fbis-email-system-hacked-to-send-out.html Researchers Uncover Hacker-for-Hire Group That's Active Since 2015 https://thehackernews.com/2021/11/researchers-uncover-hacker-for-hire.html U.S. Charged 2 Iranian Hackers for Threatening Voters During 2020 Presidential Election https://thehackernews.com/2021/11/us-charged-2-iranians-hackers-for.html U.S., U.K. and Australia Warn of Iranian Hackers Exploiting Microsoft, Fortinet Flaws https://thehackernews.com/2021/11/us-uk-and-australia-warn-of-iranian.html 資安工程師 https://www.104.com.tw/job/7g2uz 資安工程師 https://www.104.com.tw/job/7g60u 【專案計畫】資安行政人員 1名 https://www.104.com.tw/job/7g73y 資安高級工程師 https://www.104.com.tw/job/7g7nd 資安專案經理/Project Manager https://www.104.com.tw/job/7g8n1 網路維護/資安維運，服務工程師@台南(起薪34,000-44,000) https://www.104.com.tw/job/7g82p 資安工程師 https://www.1111.com.tw/job/98534712/ 資安工程師(Security Engineer) https://www.518.com.tw/job-Lre5Q9.html [VR BU] 資安專案經理 Project Manager https://www.104.com.tw/job/7fp91 D.資料外洩/個資法/GDPR/網路詐騙/網路釣魚/盜刷/假新聞/網路霸凌/帳號安全以HTML挾帶手法躲避偵測的網釣攻擊越來越多了 https://www.ithome.com.tw/news/147831 Hackers Increasingly Using HTML Smuggling in Malware and Phishing Attacks https://thehackernews.com/2021/11/hackers-increasingly-using-html.html 棋牌遊戲南韓再爆大規模個資外洩案！K棋牌包網T千萬客戶資料被看光 https://reurl.cc/Q6okdq 中市警掃蕩黑道幫派查獲詐騙集團起出8輛名車 https://reurl.cc/kLWjZr A Simple 5-Step Framework to Minimize the Risk of a Data Breach https://thehackernews.com/2021/11/a-simple-5-step-framework-to-minimize.html 台灣人最愛用「這3組爛密碼」！駭客「1秒破解」盜你帳號 https://www.setn.com/News.aspx?NewsID=1028533 盜賣全國750萬筆學生個資檢調逮2駭客2販售人共4嫌 https://www.ftvnews.com.tw/news/detail/2021B17W0239 補教名師勾結駭客盜全國750萬學生個資狠賺數百萬 https://www.chinatimes.com/realtimenews/20211117002426-260402?chdtv 學生及家長個資遭盜取轉售　家中有就學子女者幾乎都受害 http://watchmedia01.com/anews-20211118013231.html 小學參加駭客年會、自研程式　天才男偷6年個資才被抓 https://www.ettoday.net/news/20211118/2126277.htm Deepfake給性愛影片換臉修法後最重可判7年 https://www.cna.com.tw/news/firstnews/202111185001.aspx 嫌推銷電話神煩！他直接掛斷　內行出招「再也沒打來」 https://news.tvbs.com.tw/life/1637988 免費股票交易和投資平台 Robinhood 遭駭,700萬用戶資料外洩 https://blog.trendmicro.com.tw/?p=70558 加州人是詐騙集團最肥的一塊肉警佐談防詐騙秘訣 https://www.worldjournal.com/wj/story/121471/5901682 轟台北通「數位獨裁」資安專家：侵犯個資恐面臨歐盟天價罰鍰 https://today.line.me/tw/v2/article/kE2ZEMM 實聯制足跡、消費資料拿去賣？李建昌轟台北市府「球員兼裁判」 https://news.ltn.com.tw/news/politics/breakingnews/3740105 北市大數據中心有資安疑慮？學者：應擴大個資保護標準 https://www.nownews.com/news/5447088 北市大數據有資安疑慮？學者這樣說 https://news.sina.com.tw/article/20211118/40599452.html 擔心My Data平台有資安疑慮蔡旺詮籲市府重視個資保護與推廣 https://newtalk.tw/news/view/2021-11-18/668616 北市成立183坪大數據中心柯市府被爆因防疫已取得5千萬筆個資 https://www.chinatimes.com/realtimenews/20211113002590-260407?chdtv 《李忠憲專欄》台北通資訊安全後續 https://taronews.tw/2021/11/18/793336/ 元宇宙資安真相：廠商攔隱私，駭客劫個資 https://technews.tw/2021/11/18/information-security-facts-pricacy-invastion-personal-data-theft/ 警察勾結徵信業者漏洩民眾個資今收押禁見 https://news.pts.org.tw/article/554479 FBI電郵系統遇"駭" 不明郵件別輕信 https://news.cts.com.tw/cts/international/202111/202111142062331.html FBI外部系統遭駭寄出上萬封假郵件官方證實「恐有網攻」 https://news.ltn.com.tw/news/world/breakingnews/3736415 FBI遭駭客入侵寄10萬封假電郵 https://reurl.cc/Kronaq FBI因配置錯誤遭駭客假藉其名義，發垃圾信給10萬個組織郵件信箱 https://www.ithome.com.tw/news/147842 駭客寄仿真電子郵件釣魚企圖騙取政府機關帳密 https://udn.com/news/story/7314/5894293 假訊息指香蕉可預防中風資策會開發 AI 攔截惡意傳播 https://www.inside.com.tw/article/25546-ai-randd-100-fake-news E.研究報告/工具 Researchers Demonstrate New Way to Detect MitM Phishing Kits in the Wild https://thehackernews.com/2021/11/researchers-demonstrate-new-way-to.html Researchers Demonstrate New Fingerprinting Attack on Tor Encrypted Traffic https://thehackernews.com/2021/11/researchers-demonstrate-new.html 白帽子駭客與中間人攻擊之ARP攻擊防禦實戰 https://www.jasve.com/zh-tw/cntechs/e336d721540c70da6cb20ec8783172eb.html EP56. 「哈拉人工智慧」你有多多關心自己的資安嗎？Did you care about cyber security https://player.soundon.fm/p/e4f101be-289a-4101-bb11-59fc61e5c88b/episodes/8ba700e1-9a89-4171-9cdf-4bc4a1f0653d EP58. 資安即國安！台南沙崙資安服務基地要打造南台灣的產業聚落 https://anchor.fm/t212/episodes/EP58-e1af69j 如何用 Fortify WebInspect 掃描網站系統 https://marketing.ares.com.tw/newsletter/2021-11-fortify/webinspect-how-to-scanning 實作XDR平台功能及時梳理駭客事件來龍去脈 https://www.digitimes.com.tw/tech/dt/n/shwnws.asp?CnlID=14&cat=50&id=0000623004_PCU1UNDBL1IO335ICCQM9 資安技術力備援四個動作做好準備 https://www.owlting.com/news/articles/34611 Facebook斷線事件帶來的啟示 https://blog.twnic.tw/2021/11/19/20723/ 如何挖掘Apache2中的CVE-2021-41773漏洞以保護Web服務器的安全 https://www.freebuf.com/vuls/304967.html F.商業新世代資安3大挑戰：供應鏈安全、跨域聯防與思維轉型 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=9569 龐大且互連的勒索軟體遞送系統正在孵育 https://www.informationsecurity.com.tw/article/article_detail_2021.aspx?aid=9566 迎接混合工作模式，企業內部資安訓練扮演關鍵角色 https://www.informationsecurity.com.tw/article/article_detail.aspx?tv=12&aid=9572 勒索軟體攻擊亞太區以遠距辦公漏洞為大宗 https://www.informationsecurity.com.tw/article/article_detail.aspx?tv=11&aid=9564 中飛科技宣布取得Claroty台灣區總代理 https://www.informationsecurity.com.tw/article/article_detail.aspx?tv=11&aid=9570 Mandiant發表網絡安全預測報告2022 剖析8大黑客趨勢 https://reurl.cc/q1qjnp Deloitte發布《2021年網路資安大調查》報告勤業眾信：建立Zero Trust意識無懼數位轉型下網路攻擊 http://n.yam.com/Article/20211118250447 駭客攻擊商業化安碁表示安成企業關鍵競爭力 https://reurl.cc/1oWaOG 運用AI監控企業網路中惡意行為，關閉資安防戶空窗期 https://reurl.cc/gzojnp 「HiNet風險之眼」助攻資拓宏宇強化資安防禦 https://www.businessweekly.com.tw/business/indep/1001673 Zyxel 攜手 Avira OEM 協助中小型企業抵禦零時差和未知威脅 https://www.netadmin.com.tw/netadmin/zh-tw/snapshot/FB679596ED5E45A69F0304051BE7EFBA 中華電善用利器 5G助攻智慧交通 https://www.chinatimes.com/realtimenews/20211118001747-260410?chdtv 因應最新 Qi 無線充電 1.3 版　英飛凌 OPTIGA 身份驗證解決方案再添生力軍 https://www.netadmin.com.tw/netadmin/zh-tw/snapshot/291054A8152F43918FC0BF6CCC419D1A 應用系統遷移上雲成趨勢　依責任歸屬防堵資安破口雲原生工作負載防護　稽核管理掌握風險分級 https://www.netadmin.com.tw/netadmin/zh-tw/viewpoint/D9F8EABA7EB04FFE814336752446B73C Supermicro 強化邊緣到雲端 AI 系統產品組合 https://www.netadmin.com.tw/netadmin/zh-tw/snapshot/9FC6ACCE404948F38C707A3F453DBD3F VMware Tanzu 助中華電信強化多雲融合加速企業擘劃數位轉型 http://n.yam.com/Article/20211119709315 搶攻元宇宙商機！Nokia醞釀推出新一代網路基建設施 https://money.udn.com/money/story/5599/5902777 G.政府房仲神器「小白機」驚見三總統個資！調查局溯源成功逮首腦 https://www.setn.com/News.aspx?NewsID=1025632 學習歷程公版模組年底換系統受災學校：看新聞才知道 https://udn.com/news/story/6885/5887514?from=udn-catelistnews_ch2 雲林教育處網路遭駭客勒索全縣百餘所學校網路全掛點 https://udn.com/news/story/6885/5888400 雲林縣教育處網路遭勒索病毒綁架全縣186所學校師生資料被鎖死 https://turnnewsapp.com/livenews/life/@www.chinatimes.com--realtimenews--20211113002992-260405 勒索病毒攻擊雲林教育處網站當機、學生檔案完好 https://www.cna.com.tw/news/aloc/202111130150.aspx 資安不只是國安更是產業安全，政府推動多元通報管道促進公私協力 https://www.ithome.com.tw/news/147899 調查局長交接新任局長王俊力：反制中共滲透強化國安 https://udn.com/news/story/6656/5891307 行政院政委郭耀煌：數位轉型跟5G發展是相輔相成 https://udn.com/news/story/7238/5901057 台南市安順國民小學導入「新易區塊鏈教育平台」黃偉哲加強台南數位教育迎向元宇宙新世界 https://news.sina.com.tw/article/20211119/40609796.html H.工控系統/ICS/SCADA/IOT/物聯網/車聯網/電動車/人工智慧/AI/ML/人臉辨識/醫療相關資安 Hitachi Vantara Pentaho 存在SQL注入弱點 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2021-34684 JetBrains Hub 存在授權問題弱點 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2021-43183 JetBrains TeamCity 存在安全弱點 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2021-43200 JetBrains TeamCity 於2021.1.2 之前的版本，可以透過agent遠端執行指令 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2021-43193 JetBrains YouTrack 2021.3.23639 之前版本，容易受到Host header injection的影響 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2021-43185 Siemens 產品 APOGEE MBC (PPC) (BACnet) 存在弱點 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2021-31886 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2021-31884 Siemens 產品 SENTRON powermanager V3 存在弱點 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2021-37207 Siemens 產品 SIMATIC PCS 7 V8.2 (含)之前版本存在弱點 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2021-40358 Sitecore XP 7.5 ~ 8.2 版本存在反序列化弱點 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2021-42237 13條設計策略萬無一失　程式碼品質確保物聯網安全 https://www.mem.com.tw/arti.php?sn=2111120013 善用民生公共物聯網資源漪七助養殖業邁向轉型之路 https://www.digitimes.com.tw/iot/article.asp?cat=130&cat1=40&cat2=140&id=0000623645_7T55YSMA579M7346JQQKH 從Intel與AMD的競爭來探討供應鏈風險管理 https://www.ithome.com.tw/pr/147808 反中濫用科技印度籲打造可信賴供應鏈 https://news.ltn.com.tw/news/world/paper/1485440 I.教育訓練【訓練教材D】資訊安全技術教育訓練教材 https://iscb.nchu.edu.tw/2019/07/d.html 109資通安全管理法數位教育訓練 https://reurl.cc/ARlmqp SANS Cyber Aces Online Tutorials https://tutorials.cyberaces.org/tutorials.html Free Online Cybersecurity Courses (MOOCs) https://www.cyberdegrees.org/resources/free-online-courses/ Develop Your Cybersecurity Skills https://www.cybrary.it/catalog/cybersecurity/ Mobile App Security https://www.cybrary.it/course/mobile-app-security/ Introduction to Cybersecurity https://reurl.cc/bnaj6d How to Tackle SaaS Security Misconfigurations https://thehackernews.com/2021/11/how-to-tackle-saas-security.html How to Build a Security Awareness Training Program that Yields Measurable Results https://thehackernews.com/2021/11/how-to-build-security-awareness.html 6.近期資安活動及研討會【線上課程】資訊安全教育訓練-駭客練兵場 http://web.cgust.edu.tw/ActSignup/ActView.asp?ActID=4752 IRCON 2021臺灣資訊安全事件應變研討會 11/22 ~ 11/24 https://news.stust.edu.tw/id/70241 交通部舉辦關鍵網路資源政策與應用趨勢研討會，歡迎報名參加 11/23 https://blog.twnic.tw/2021/11/04/20826/ 「ACW SOUTH資安體驗日」台南沙崙登場推出實境資戰及資安算命活動 11/23 ~ 11/24 https://reurl.cc/V5ovkn 2021 資安365年會 - 南部場 11/26 https://docs.google.com/forms/d/e/1FAIpQLSdziuD1KE_WmiG3RiAerncL66_onsUb0YDnXRGn6b8IrL-10w/viewform HITCON 2021 台灣駭客年會 11/26 ~ 11/27 https://kktix.com/events/hitcon-2021/ GDSC PNU Weekly wrokshop seminar 11/26 https://reurl.cc/n5NZRv 物聯網資安標準推動研討會 12/1 https://ievents.iii.org.tw/EventS.aspx?t=0&id=1490 行動裝置安全與稽核研習班 12/2 https://www.tabf.org.tw/CourseDetail.aspx?PID=449543 GDSC PNU Weekly wrokshop seminar 12/3 https://reurl.cc/82v5Ob 後疫新常態下的資安事故處理實務 12/3 https://reurl.cc/GbVj9Z OT資安健診捍衛製造業資訊安全 12/8 https://www.teema.org.tw/education.aspx?infoid=37143 中華電信學院委外廠商安全程式碼撰寫基礎測驗班 12/14 https://www.chtti.cht.com.tw/general/course_info.jsp?activity_id=427 https://www.chtti.cht.com.tw/general/course_info.jsp?activity_id=428 https://www.chtti.cht.com.tw/general/course_info.jsp?activity_id=429 白帽駭客張啟元來啦 12/16 https://docs.google.com/forms/d/e/1FAIpQLScPXyYTaGhghwy9hcerjs2C_k_VjNrfn5xKV6AL-P0Kd3EG5A/viewform