資安事件新聞週報 2019/9/9 ~ 2019/9/13

###### tags: `資安事件新聞週報` # 資安事件新聞週報 2019/9/9 ~ 2019/9/13 1.重大弱點漏洞/後門/Exploit/Zero Day 藏在純文字檔的Jenkins外掛漏洞 https://blog.trendmicro.com.tw/?p=61935 上百萬台網路收音機暗藏可遭駭客挾持的安全漏洞 https://ithome.com.tw/news/132984 Palo Alto Global 漏洞(CVE-2019-1579) https://nosec.org/home/detail/2951.html Pulse Secure VPN嚴重漏洞（CVE-2019-11510）警報 https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44101 Pulse Secure 8.1R15.1/8.2/8.3/9.0 SSL VPN - Remote Code Execution https://www.exploit-db.com/exploits/47354 Telnet backdoor vulnerabilities impact over a million IoT radio devices https://www.zdnet.com/article/critical-vulnerabilities-impact-over-a-million-iot-radio-devices/#ftag=RSSbaffb68 Imperial & Dabman Internet Radio - Undocumented Telnetd & Code Execution https://www.vulnerability-db.com/?q=articles/2019/09/09/imperial-dabman-internet-radio-undocumented-telnetd-code-execution Java finally goes all in on open source with the Jakarta EE 8 release https://www.zdnet.com/article/java-finally-goes-all-in-on-open-source-with-the-release-of-jakarta-ee-8/#ftag=RSSbaffb68 OfficeScan 11.0 SP1終止技術服務通知 https://esupport.trendmicro.com/zh-tw/business/topic_techsupport/topic_eosproduct.aspx Vulnerability Spotlight: Denial-of-service vulnerabilities in some NETGEAR routers https://blog.talosintelligence.com/2019/09/vuln-spotlight-Netgear-N300-routers-DoS-sept-2019.html IBM WebSphere Application Server 資料洩露漏洞 https://www.ibm.com/support/pages/security-bulletin-path-traversal-vulnerability-websphere-application-server-admin-console-cve-2019-4442 CVE-2019-5475/Nexus Repository Manager遠程命令執行 https://qiita.com/shimizukawasaki/items/12f0b69945498e6d5aa9 Nexus Repository Manager 2.x遠程命令執行（CVE-2019-5475） https://www.secpulse.com/archives/112290.html Cisco RV110W/RV130(W)/RV215W Routers Management Interface - Remote Command Execution (Metasploit) https://www.exploit-db.com/exploits/47348 Cisco UCS Director - default scpuser password (Metasploit) https://www.exploit-db.com/exploits/47346 Android 多個漏洞 https://source.android.com/security/bulletin/2019-09-01 Android 全新 0-Day 漏洞，可導致駭侵者取得更高操作權限 https://www.twcert.org.tw/subpages/securityInfo/loophole_details.aspx?id=5105 Multiple Code Execution Flaws Found In PHP Programming Language https://thehackernews.com/2019/09/php-programming-language.html SA121 : OpenSSH Shell Command Restriction Bypass https://support.symantec.com/us/en/article.SYMSA1361.html Exim TLS Flaw Opens Email Servers to Remote 'Root' Code Execution Attacks https://thehackernews.com/2019/09/exim-email-server-vulnerability.html Exim 伺服器再傳根權限RCE漏洞 https://www.ithome.com.tw/news/132935 數百萬Exim郵件服務器存在嚴重漏洞易遭受root授權攻擊 http://bit.ly/2m62OjN Exim TLS Flaw Opens Email Servers to Remote 'Root' Code Execution Attacks https://thehackernews.com/2019/09/exim-email-server-vulnerability.html Millions of Exim servers vulnerable to root-granting exploit https://www.zdnet.com/article/millions-of-exim-servers-vulnerable-to-root-granting-exploit/#ftag=RSSbaffb68 Email Servers: Exim Flaw Leaves Millions at Risk of Hacking https://www.bankinfosecurity.com/email-servers-exim-flaw-leaves-millions-at-risk-hacking-a-13053 Facebook Patches "Memory Disclosure Using JPEG Images" Flaws in HHVM Servers https://thehackernews.com/2019/09/facebook-hhvm-vulnerability.html GPS追蹤器漏洞中間人攻擊子女被消失 http://bit.ly/2k98CZg GPS 追蹤器曝漏洞逾60萬用戶資訊被洩露 http://bit.ly/2kGJoSm WordPress 5.2.3 fixes new clutch of security vulnerabilities https://nakedsecurity.sophos.com/2019/09/09/wordpress-5-2-3-fixes-new-clutch-of-security-vulnerabilities/ Adobe Flash, Application Manager patch update squashes critical code execution bugs https://www.zdnet.com/article/adobe-flash-application-manager-patch-update-squashes-critical-code-execution-bugs/#ftag=RSSbaffb68 Mozilla launches Firefox VPN extension for US users https://www.zdnet.com/article/mozilla-launches-firefox-vpn-extension-for-us-users/#ftag=RSSbaffb68 Mozilla to gradually enable DNS-over-HTTPS for Firefox US users later this month https://www.zdnet.com/article/mozilla-to-gradually-enable-dns-over-https-for-firefox-us-users-later-this-month/#ftag=RSSbaffb68 新型態NetCAT攻擊可竊取英特爾伺服器CPU資料 https://www.ithome.com.tw/news/133020 Intel server-grade CPUs impacted by new NetCAT attack https://www.zdnet.com/article/intel-server-grade-cpus-impacted-by-new-netcat-attack/#ftag=RSSbaffb68 NetCAT: New Attack Lets Hackers Remotely Steal Data From Intel CPUs https://thehackernews.com/2019/09/netcat-intel-side-channel.html 微軟Patch Tuesday修補2個發生攻擊的零時差漏洞 https://ithome.com.tw/news/132991 New Windows 10 20H1 test build delivers a bunch of fixes, minor updates https://www.zdnet.com/article/new-windows-10-20h1-test-build-delivers-a-bunch-of-fixes-minor-updates/#ftag=RSSbaffb68 Microsoft patches two zero-days in massive September 2019 Patch Tuesday https://www.zdnet.com/article/microsoft-patches-two-zero-days-in-massive-september-2019-patch-tuesday/#ftag=RSSbaffb68 Microsoft Patches 2 Windows Flaws Already Being Exploited https://www.bankinfosecurity.com/microsoft-patches-2-windows-flaws-already-being-exploited-a-13072 Microsoft Patch Tuesday — Sept. 2019: Vulnerability disclosures and Snort coverage https://blog.talosintelligence.com/2019/09/microsoft-patch-tuesday-sept-2019.html Microsoft's new Windows 10 20H1 test build adds ARM64 support for WSL https://www.zdnet.com/article/microsofts-new-windows-10-20h1-test-build-adds-arm64-support-for-wsl/#ftag=RSSbaffb68 Microsoft DirectWrite - Invalid Read in SplicePixel While Processing OTF Fonts https://www.exploit-db.com/exploits/47381 Microsoft DirectWrite - Out-of-Bounds Read in sfac_GetSbitBitmap While Processing TTF Fonts https://www.exploit-db.com/exploits/47382 Remote Desktop Protocol: The Security Risks https://www.bankinfosecurity.com/interviews/remote-desktop-protocol-security-risks-i-4436 修復了 Lync Server 2013 資訊洩露漏洞 https://support.microsoft.com/zh-tw/help/4515509/fix-for-lync-server-2013-information-disclosure-vulnerability September Patch Tuesday Bears More Remote Desktop Vulnerability Fixes and Two Zero-Days https://blog.trendmicro.com/trendlabs-security-intelligence/september-patch-tuesday-bears-more-remote-desktop-vulnerability-fixes-and-two-zero-days/ Weaponized BlueKeep Exploit Released https://www.bankinfosecurity.com/weaponized-bluekeep-exploit-released-a-13051 Metasploit 釋出高危漏洞BlueKeep 利用庫，中國70 萬設備需當心 https://www.oschina.net/news/109668/metasploit-releases-bluekeep-exploit Metasploit team releases BlueKeep exploit https://www.zdnet.com/article/metasploit-team-releases-bluekeep-exploit/#ftag=RSSbaffb68 開源安全測試框架Metasploit嵌入BlueKeep攻擊程式 https://www.ithome.com.tw/news/132949 威脅預警| 蠕蟲級漏洞BlueKeep(CVE-2019-0708) EXP被公佈 https://www.freebuf.com/vuls/213745.html Watchbog and the Importance of Patching https://blogs.cisco.com/security/talos/watchbog-importance-of-patching [漏洞預警] CVE-2019-14811 / Ghostscript的遠程命令執行漏洞 https://qiita.com/shimizukawasaki/items/3e9172ffeed7211960fb Google discloses vulnerability in Chrome OS 'built-in security key' feature https://www.zdnet.com/article/google-discloses-vulnerability-in-chrome-os-built-in-security-key-feature/#ftag=RSSbaffb68 Google announces alpha of Cloud Dataproc for Kubernetes https://www.zdnet.com/article/google-announces-alpha-of-cloud-dataproc-for-kubernetes/#ftag=RSSbaffb68 Google to run DNS-over-HTTPS (DoH) experiment in Chrome https://www.zdnet.com/article/google-to-run-dns-over-https-doh-experiment-in-chrome/#ftag=RSSbaffb68 Chrome 77 released with no EV indicators, contact picker, permanent Guest Mode https://www.zdnet.com/article/chrome-77-released-with-no-ev-indicators-contact-picker-permanent-guest-mode/#ftag=RSSbaffb68 Security researchers expose another instance of Chrome patch gapping https://www.zdnet.com/article/security-researchers-expose-another-instance-of-chrome-patch-gapping/#ftag=RSSbaffb68 2.銀行/金融/保險/證券/支付系統/ 新聞及資安林國良專訪（一）／財金公司打通金融高速路 https://money.udn.com/money/story/5649/4036337 林國良專訪（二）／他，逐水草而居的IT人 https://money.udn.com/money/story/5649/4036336 研訓院看世界－純網銀如何克服監理與資安兩大痛點 http://bit.ly/2lEgHpg 國內首例保險監理沙盒問市將實施另有兩沙盒案待審 http://bit.ly/2ka0U1a 首件「沙盒」實驗成功！手機門號開戶最快年底上路 https://money.udn.com/money/story/5613/4036512 凱基證券雲端下單系統結合LINE 更即時 https://udn.com/news/story/7255/4036969 純網銀董事派任須遵守金金分離　銀行局：兩周內召集業者說明原則 https://www.ettoday.net/news/20190908/1531174.htm 3家純網銀竟有2股東喊撤資　兆豐銀開第一槍！另家也不玩了 https://tw.appledaily.com/hot/realtime/20190908/1629874 證券業協會指港交所上周四應同時暫停現貨及期貨市場 http://www.metroradio.com.hk/news/default.aspx?NewsID=20190909102719 香港期貨停市非駭客所為港交所：交易已恢復正常 http://bit.ly/2ky74Iw 香港交所期貨交易當機停市否認人為破壞 https://www.rti.org.tw/news/view/id/2033479 因新系統漏洞香港期貨停市半日李小加：不涉及人為錯誤或破壞 http://www.hkcna.hk/content/2019/0906/783317.shtml 港交所(388)李小加:對昨日系統故障事件感遺憾 https://www.metroradio.com.hk/news/default.aspx?NewsID=20190906105319 港交所：交易系統崩潰是供應商軟件的鍋但網站的確遭惡意攻擊 https://www.finet.hk/newscenter/news_content/5d71f8f1bde0b3718d7084db 港交所改用舊系統期貨復市 http://paper.wenweipo.com/2019/09/07/FI1909070006.htm 港交所改用舊系統期貨復市業界：應擬定方案應對 https://news.sina.com.tw/article/20190907/32588892.html 李小加指期貨停市為重大決定港交所繼續調查事件 http://www.hkcna.hk/content/2019/0906/783299.shtml 港交所死機兒戲　敗壞名聲須問責 https://hk.on.cc/hk/bkn/cnt/finance/20190906/bkn-20190906232857988-0906_00842_001.html 供應商系統軟件故障非黑客攻擊 http://bit.ly/2ky8EtW 香港交易所有關衍生產品市場交易暫停的聲明 https://www.hkex.com.hk/News/News-Release/2019/1909052news?sc_lang=zh-HK 衍生產品市場暫停交易 https://www.hkex.com.hk/News/News-Release/2019/190905news?sc_lang=zh-HK 20年唯一1次盤中停市！港交所衍生品暫停交易，90％訂單未成交，能否索賠 https://news.sina.com.tw/article/20190906/32580914.html 八道關卡守護的「數據銀行」：中國聯通（香港）環球中心 https://news.sina.com.tw/article/20190907/32591526.html 斷裂的南山人壽系統錯誤保戶業務員權益受損 https://www.peopo.org/news/422029 ATM吃10萬銀行竟冷回！　「有多的會補匯款」拒給證明 https://tw.appledaily.com/hot/realtime/20190909/1630362/ 新安東京海上產險首推「保單辨識」！拍照上傳自動填欄位　智能客服速解答 https://www.ettoday.net/news/20190909/1531864.htm 中國加強保險公司關聯交易監管嚴防險企成「提款機」 https://news.sina.com.tw/article/20190909/32606544.html 銀行錯誤轉入374萬元夫婦倆狂花333萬現在慘了 https://news.ltn.com.tw/news/world/breakingnews/2911060 中秋連假外出機會多金管會要求保戶服務不中斷 https://udn.com/news/story/7239/4041078 港交所擬併倫敦證交所台灣證交所：不憂競爭力 https://udn.com/news/story/7239/4043023 元朗渣打銀行分行被賊人淋易燃液體打劫　失約6萬元 http://bit.ly/2kGq3AI 台網攜手中華郵政，簡化線上身分核驗 http://bit.ly/2kFyQmt 郵局帳號變網路身分證 TWID實名認證免臨櫃 http://bit.ly/2lQmsQE 資安再升級樂天將在台打造資安團隊 https://ec.ltn.com.tw/article/breakingnews/2914324 外銀自建私有雲金管會：採報備及補正程序辦理 https://udn.com/news/story/7239/4045003 Hackers stole $1.66M from German bank OLB by cloning EVM cards https://www.atmmarketplace.com/news/hackers-stole-166m-from-german-bank-olb-by-cloning-evm-cards/ Financial threats in H1 2019: Mobile financial attacks rise by 107% https://www.paymentscardsandmobile.com/mobile-financial-attacks-rise-by-107/ OCBC integrates voice command service with banking app https://www.zdnet.com/article/ocbc-integrates-voice-command-service-with-banking-app/#ftag=RSSbaffb68 3.電子支付/電子票證/行動支付/ pay/新聞及資安明明微信錢包裡有那麼多錢，駭客為什麼沒盯上？駭客們是怎麼想的 https://ek21.com/news/tech/139358/ 網路交友綁電子支付想退費竟卡關 http://bit.ly/2k87aGH 頂級「駭客」入侵支付寶，轉帳成功前一秒，螢幕上出現了12個字 https://ek21.com/news/tech/141167/ 手機就是POS機！三星推解決方案，行動裝置也能刷卡收款 http://bit.ly/2kbK8ic Amadeus攜手Visa CyberSource助推旅遊業反欺詐升級 https://www.travelweekly-china.com/77494 俄擬禁止支付寶、微信等外國電子支付向俄羅斯人提供服務 http://www.touchcrunch.com/20190908/tnkelwvm.html 「大家是不是討厭支付寶才抵制行動支付？」？鄉民這樣說 https://zi.media/@AI-News/post/wbVPs5 4.虛擬貨幣/區塊鍊新聞及資安事在必行！人民銀行快推自家虛擬貨幣 https://hk.on.cc/hk/bkn/cnt/finance/20190906/bkn-20190906194009999-0906_00842_001.html 比特幣雖能受益於中國央行數位貨幣，但USDT可能會被取代 http://news.knowing.asia/news/bfab8dfa-f7bb-43ac-a05e-1d6ec8b2c793 中國研發數位貨幣類似Libra可用於支付寶 https://news.sina.com.tw/article/20190906/32582862.html 人行官員：距離推出中國數碼貨幣已不遠 https://news.rthk.hk/rthk/ch/component/k2/1479169-20190906.htm 穆長春履新央行數研所掌門人，中國數字貨幣亮相在即 https://news.sina.com.tw/article/20190906/32576126.html 全球謀推虛擬貨幣！現鈔必消失 https://hk.on.cc/hk/bkn/cnt/finance/20190908/bkn-20190908184404715-0908_00842_001.html 專家傳真－比特幣非貨幣？新型態的犯罪標的 http://bit.ly/2lEudcu 加密貨幣被破解？美國國家安全局 NSA 正在開發「量子密碼學」，抵禦量子電腦造成的資安問題 https://www.blocktempo.com/nsa-reportedly-developing-quantum-resistant-crypto/ Libra 開源代碼含安全漏洞！網路安全公司：耗時近 1 個月完成修補 https://news.cnyes.com/news/id/4381023 區塊鏈投票系統遭破解！莫斯科官方承諾盡快解決問題 http://news.knowing.asia/news/002a016a-573b-4192-a34d-92049c3af008 開發人員發現「比特幣閃電網路」出現資安漏洞：呼籲用戶不要存放太多資金 https://www.blocktempo.com/lightning-network-developers-warn-of-bug-that-could-cause-loss-of-bitcoin/ Coinsuper 入駐慢霧區，發布「安全漏洞與威脅情報賞金計劃」 https://www.chainnews.com/articles/605351111694.htm 千萬別踩！虛擬貨幣新手不知不覺就誤踩的5大地雷 http://bit.ly/2lJmvxV 許毓仁：證券型代幣STO市場台灣最好一步到位 https://udn.com/news/story/6848/4043554 瞄準數千億美元的市場！「區塊鏈＋會計」正夯 http://news.knowing.asia/news/574c6f42-09c9-4aaa-85c5-702317206ba3 High stakes major global brand cryptocurrency competition is evolving fast https://www.zdnet.com/article/high-stakes-major-global-brand-cryptocurrency-competition-is-evolving-fast/#ftag=RSSbaffb68 Singapore amongst currencies Facebook wants tied to Libra https://www.zdnet.com/article/singapore-amongst-currencies-facebook-wants-tied-to-libra/#ftag=RSSbaffb68 5.資安事件新聞 A.病毒木馬 / 殭屍網路 / 勒索軟體 / Adware /APT /後門程式新勒索軟體Lilocked瞄準伺服器展開攻擊 https://www.ithome.com.tw/news/132941 挖礦軟體進化感染目標由 ARM 擴散至 Intel 伺服器 http://bit.ly/2m9QvTN 市長請注意！市政網路綁架案頻傳，全美 40 城市被攻擊 https://technews.tw/2019/09/12/cyberattack-40-cities-usa/ 新勒索軟體Lilocked瞄準伺服器展開攻擊 https://www.ithome.com.tw/news/132941 A Summer of Discontent: The Hottest Malware Hits https://thehackernews.com/2019/09/its-been-summer-of-ransomware-hold-ups.html No municipality paid ransoms in 'coordinated ransomware attack' that hit Texas https://www.zdnet.com/article/no-municipality-paid-ransoms-in-coordinated-ransomware-attack-that-hit-texas/#ftag=RSSbaffb68 Texas Ransomware Responders Urge Remote Access Lockdown https://www.bankinfosecurity.com/texas-ransomware-responders-urge-remote-access-lockdown-a-13043 Thousands of servers infected with new Lilocked (Lilu) ransomware https://www.zdnet.com/article/thousands-of-servers-infected-with-new-lilocked-lilu-ransomware/#ftag=RSSbaffb68 2019-09-06 - QAKBOT INFECTION FROM MALSPAM https://www.malware-traffic-analysis.net/2019/09/06/index.html Arizona School District Cancels Classes Due to Ransomware https://www.bankinfosecurity.com/arizona-school-district-cancels-classes-due-to-ransomware-a-13035 A Ransomware Tale: Mayor Describes City's Decisions https://www.bankinfosecurity.com/ransomware-tale-mayor-describes-citys-decisions-a-13033 Ransomware Protection and Containment Strategies: Practical Guidance for Endpoint Protection, Hardening, and Containment https://www.fireeye.com/blog/threat-research/2019/09/ransomware-protection-and-containment-strategies.html GootKit Malware Bypasses Windows Defender by Setting Path Exclusions https://www.bleepingcomputer.com/news/security/gootkit-malware-bypasses-windows-defender-by-setting-path-exclusions/ Malware Classification with ‘Graph Hash,’ Applied to the Orca Cyberespionage Campaign https://blog.trendmicro.com/trendlabs-security-intelligence/malware-classification-with-graph-hash-applied-to-the-orca-cyberespionage-campaign/ FunkyBot Malware Intercepts Android Texts, 2FA Codes https://threatpost.com/funkybot-malware-intercepts-android-texts-2fa-codes/148059/ Spam Campaign Abuses PHP Functions for Persistence, Uses Compromised Devices for Evasion and Intrusion https://blog.trendmicro.com/trendlabs-security-intelligence/spam-campaign-abuses-php-functions-for-persistence-uses-compromised-devices-for-evasion-and-intrusion/ GootKit Malware Bypasses Windows Defender by Setting Path Exclusions https://www.bleepingcomputer.com/news/security/gootkit-malware-bypasses-windows-defender-by-setting-path-exclusions/ 2019-09-04 - DATA DUMP: URSNIF INFECTION WITH TRICKBOT https://www.malware-traffic-analysis.net/2019/09/04/index.html New Malware Uses Windows BITS Service to Stealthy Exfiltrate Data https://thehackernews.com/2019/09/stealthfalcon-virus-windows-bits.html ESET discovered an undocumented backdoor used by the infamous Stealth Falcon group https://www.welivesecurity.com/2019/09/09/backdoor-stealth-falcon-group/ A Summer of Discontent: The Hottest Malware Hits https://thehackernews.com/2019/09/its-been-summer-of-ransomware-hold-ups.html Malicious Android apps containing Joker malware set up shop on Google Play https://www.zdnet.com/article/malicious-android-apps-containing-joker-malware-reach-half-a-million-installs-on-google-play/#ftag=RSSbaffb68 North Korean Malicious Cyber Activity https://www.us-cert.gov/ncas/current-activity/2019/09/09/north-korean-malicious-cyber-activity Malware Analysis Report (AR19-252A) MAR-10135536-10 – North Korean Trojan: BADCALL https://www.us-cert.gov/ncas/analysis-reports/ar19-252a Malware Analysis Report (AR19-252B) MAR-10135536-21 – North Korean Proxy Malware: ELECTRICFISH https://www.us-cert.gov/ncas/analysis-reports/ar19-252b ‘Purple Fox’ Fileless Malware with Rookit Component Delivered by Rig Exploit Kit Now Abuses PowerShell https://blog.trendmicro.com/trendlabs-security-intelligence/purple-fox-fileless-malware-with-rookit-component-delivered-by-rig-exploit-kit-now-abuses-powershell/ PsiXBot malware upgraded with Google DNS over HTTPS, sexploitation kit https://www.zdnet.com/article/psixbot-malware-upgraded-with-google-dns-over-https-sexploitation-kit/#ftag=RSSbaffb68 PsiXBot Now Using Google DNS over HTTPS and Possible New Sexploitation Module https://www.proofpoint.com/us/threat-insight/post/psixbot-now-using-google-dns-over-https-and-possible-new-sexploitation-module Malicious Android apps containing Joker malware set up shop on Google Play https://newsvire.com/malicious-android-apps-containing-joker-malware-set-up-shop-on-google-play/ Ryuk Related Malware Steals Confidential Military, Financial Files https://www.bleepingcomputer.com/news/security/ryuk-related-malware-steals-confidential-military-financial-files/ B.行動安全 / iPhone / Android /穿戴裝置 /App 首度超越 iOS 價值 Android 漏洞值 1,960 萬 https://m.eprice.com.hk/mobile/talk/124/213970/1/ 蘋果遭鎖定維吾爾人網襲:兩年還是兩月 http://bit.ly/2m2z0od 中共駭入iPhone 蘋果證實是針對維吾爾人 http://bit.ly/2lJJfgX 蘋果證實駭客鎖定維吾爾人但稱Google研究誤導 https://money.udn.com/money/story/5599/4034199 惡意網站入侵 iPhone 用戶　蘋果：網站均與維吾爾族資訊有關安全漏洞已解決 http://bit.ly/2m65YnX 手機上網就被駭蘋果：都是維族網站 http://bit.ly/2kyWqkE 挺香港示威者！Telegram修改個資漏洞 http://bit.ly/2k5hLC6 Twitter宣布暫停簡訊推文功能真正原因讓人哭笑不得 https://cnews.com.tw/134190906a04/ 小勞勃道尼驚傳IG被盜　限時動態「送2000台手機」引暴動 https://star.ettoday.net/news/1530325 Android 新漏洞允許黑客發送詐騙 OMA CP 消息 Samsung、LG、SONY、Huawei 手機受波及 http://bit.ly/2kzZv3U 交友軟體管理鬆散不乏充斥約炮、援交內容 https://udn.com/news/story/11319/4032479 FB推出約會服務聲明：結果風險自負 http://bit.ly/2m5ahzL 「臉書約會」推出！　整合Instagram列「暗戀名單」秘密配對：風險自負 https://www.ettoday.net/news/20190906/1529681.htm 全美「臉書約會」上線！　整合IG搶攻網路交友市場 https://news.tvbs.com.tw/world/1196446 觀看「成人網站」真沒人知道嗎？駭客早就盯上了，手機已經被利用 https://ek21.com/news/tech/141186/ Google揭多個iOS漏洞指iPhone用戶長期受攻擊，Apple：沒這麼嚴重 https://www.ithome.com.tw/news/132927 APP竊隱私陸數據監獄已成型 http://www.epochtimes.com/b5/19/9/8/n11507090.htm 美國政府要求蘋果與谷歌交出曾下載步槍瞄準程式的使用者名單 https://ithome.com.tw/news/132960 IG漏洞讓非公開帳號上傳內容在瀏覽器下曝光並轉傳 https://www.ithome.com.tw/news/132968 幣寶台灣控告幣寶日本：交易所遭駭後侵佔台用戶資產 https://www.inside.com.tw/article/17503-bitpoint-lawsuit 華為Mate 30宣傳片藏特色 Google應用可能讓用戶自己裝 https://www.sogi.com.tw/articles/huawei_mate_30/6253535 Check Point 揭露安全性漏洞三星、華為、LG、Sony 及其他 Android 手機易遭釣魚攻擊 https://gnn.gamer.com.tw/detail.php?sn=185575 Check Point揭露安卓漏洞華為／Sony手機恐受「駭」 https://www.chinatimes.com/realtimenews/20190912004801-260412?chdtv 手機掃描程式引疑慮　三星稱重視私隱防護 http://bit.ly/2kx54jV 中國 42 款手機 App 涉私隱風險不乏「西瓜視頻」等追劇程式【附名單】 http://bit.ly/2kFlsPd Facebook自爆上傳JPEG漏洞 http://bit.ly/2mczN6e 【事實釐清】微信Wechat會不會「自動」連結Facebook http://bit.ly/2mcqD9N AdaptiveMobile Security發現針對手機的複雜駭客攻擊，揭開大規模網路漏洞 http://n.yam.com/Article/20190912931614 有些東西千萬不能借！資安專家：充電線超危險 https://money.udn.com/money/story/12524/4044940 「你的IG 帳號出現非法登入活動」一點選帳號就被盜 https://blog.trendmicro.com.tw/?p=61937 Android 10—The Ars Technica Review https://arstechnica.com/gadgets/2019/09/android-10-the-ars-technica-review/ New SIM Card Flaw Lets Hackers Hijack Any Phone Just By Sending SMS https://thehackernews.com/2019/09/simjacker-mobile-hacking.html Most Android flashlight apps request an absurd number of permissions https://www.zdnet.com/article/most-android-flashlight-apps-request-an-absurd-number-of-permissions/#ftag=RSSbaffb68 Apple disputes Google's accuracy on recent iOS hacks, and they may be right https://www.zdnet.com/article/apple-disputes-googles-accuracy-on-recent-ios-hacks-and-they-may-be-right/#ftag=RSSbaffb68 Analysis: Report on China Attacking Mobile Devices https://www.bankinfosecurity.com/interviews/analysis-report-on-china-attacking-mobile-devices-i-4434 Zero-day disclosed in Android OS https://www.zdnet.com/article/zero-day-disclosed-in-android-os/ Non-public 5G networks will be a critical building block of your enterprise network strategy https://www.zdnet.com/article/non-public-5g-networks-will-be-a-critical-building-block-of-your-enterprise-network-strategy/#ftag=RSSbaffb68 Apple Accuses Google of 'Stoking Fear' With iOS Bug Report https://www.bankinfosecurity.com/apple-accuses-google-stoking-fear-ios-bug-report-a-13047 Telegram fixes privacy-breaking bug that stopped recipient message and image deletion https://www.zdnet.com/article/telegram-fixes-privacy-breaking-bug-that-prevented-full-recipient-message-deletion/#ftag=RSSbaffb68 Popular Period Tracking Apps Share Your Sexual Health Data With Facebook https://thehackernews.com/2019/09/facebook-period-tracker-privacy.html C.事件 / 駭客 / DDOS / APT / 雲端/暗網/徵才 / 國際資安事件 HITB GSEC新加坡大會將會揭示網路安全領域的最新趨勢和威脅 http://bit.ly/2kbJwJq eBay遭駭客攻擊，公司的標誌被裸體女孩照片取代 https://ek21.com/news/tech/144567/ Ebay ‘investigating’ hack that swapped email icon for topless woman https://metro.co.uk/2019/09/09/ebay-investigating-cheeky-hack-swapped-email-icon-topless-woman-10711234/ C/C++ 最易受攻擊、70% 漏洞無效，揭秘全球開源組件安全現狀 https://ek21.com/news/tech/144383/ 解決太空、地球問題「NASA黑客松」開放報名 https://news.ltn.com.tw/news/life/breakingnews/2912906 「NASA黑客松」台灣成績優 AIT官員誇非常不簡單 https://news.ltn.com.tw/news/life/breakingnews/2913013 讓白帽駭客為企業助陣！漏洞懸賞平台 HackerOne 募資 3,640 萬美元 https://technews.tw/2019/09/13/bug-bounty-platform-hackerone-raises-36-4-million-dollars/ 挖漏洞竟能賺取百萬美金？來認識一下這 6 位百萬美元白帽黑客 https://kknews.cc/tech/8vg8bp4.html 擁有軟體存取權限的車廠等製造商,才知道的隱藏版功能 https://blog.trendmicro.com.tw/?p=61657 網釣駭客利用Captcha來繞過安全機制 https://ithome.com.tw/news/133024 資安漏洞？中國天眼在身邊　北市購逾170支中國監視器 https://www.setn.com/News.aspx?NewsID=601680 台北也淪陷？綠議員爆市府曾採購200支中製監視器 https://news.ltn.com.tw/news/politics/breakingnews/2912545 北市多處「中國製監視器」爆資安疑慮　柯文哲一問三不知 https://www.nownews.com/news/20190911/3626252/ 北市採購中國監視器議員要求撤換柯文哲允諾 https://udn.com/news/story/7323/4042296 議員曝北市採購中國監視器資訊局：有全面列管 https://udn.com/news/story/7323/4042381 遭議員質疑裝中國製監視器北市府 : 已盤查並列管 https://newtalk.tw/news/view/2019-09-11/297783 台北市府採購陸製監視器議員：應清查汰換 http://www.epochtimes.com/b5/19/9/11/n11514190.htm 有關議員質詢中國製監視器一事台北市資訊局回應 http://bit.ly/2lJJE3g 驚！台中竟有34校1599支中國製監視器學生隱私全都露 https://news.ltn.com.tw/news/life/breakingnews/2910145 台中34校用陸製監視器1599支議員：盡速汰換一個不留 https://udn.com/news/story/7325/4037134 34校掛1599支中國監視器中市資安再陷疑慮 http://bit.ly/2kz2BoZ 中市學校1599支海康威視監視器議員促汰換 http://bit.ly/2k6e9jd 台中34所校園遭中國監視器入侵！學生個資恐外洩 https://www.ftvnews.com.tw/news/detail/2019909C08M1 海康威視入侵台中34所校園！學生個資恐外洩 http://bit.ly/2kt7Czv 「你在瀏覽色情網站時，已被側錄」駭客威脅不給錢,就公開 https://blog.trendmicro.com.tw/?p=61951 倪光南：網路安全空間如不能技術自主可控會有風險 https://news.sina.com.tw/article/20190909/32601818.html 趨勢科技2019上半年資安總評：無檔案式威脅成長265% https://www.techbang.com/posts/72624-trend-micro-reports-265-increase-in-undocumented-threat 大鑊！連登討論區受瀏覽器漏洞影響　　黑客放入假對話框偷密碼 https://www.winandmac.com/2019/09/dadengshouqiloudongyingheikefangrujiakuangtoumi/ 《魔獸世界》懷舊服太過火爆慘遭駭客DDoS攻擊 http://big5.pconline.com.cn/b5/news.pconline.com.cn/1289/12896768.html 維基百科遭DDoS攻擊歐洲數國網域癱瘓無法連線 https://news.ltn.com.tw/news/world/breakingnews/2909185 維基媒體遭DDoS攻擊數國查不了維基百科 http://bit.ly/2m5md4w 打造Satori殭屍網路的青少年認罪了 https://www.ithome.com.tw/news/132918 尼泊爾首富採購華為設備 http://bit.ly/2lEKCO6 向美靠攏？越南在5G上擬排除華為設備 https://news.cnyes.com/news/id/4377679 專家：中共山寨黑客武器在美設網絡「後門」 http://www.epochtimes.com/b5/19/9/6/n11504563.htm 北美防空司令部要求加拿大軍方增強網路安全 http://www.epochtimes.com/b5/19/9/9/n11510150.htm 熙爾擬創加拿大網絡安全認證驗證數碼產品符聯邦安全標準 http://www.mingpaocanada.com/Tor/htm/News/20190907/tdb1_r.htm 諜對諜：中國駭客設陷阱來捕獲美國NSA的網路攻擊工具 https://www.ithome.com.tw/news/132974 中國北韓名列10大媒體監控國　CPJ︰監禁和騷擾記者 https://tw.appledaily.com/new/realtime/20190910/1631136/ 全國2573萬人，只有2萬人可以上網的悲慘國度：全世界上網普及率最低的國家—北韓 https://www.storm.mg/article/1690701 以色列指伊朗有核武研發設施曝光後已摧毀 http://bit.ly/2lGGM78 CIA挖到黃金！潛伏在俄的間諜能拍下普亭辦公桌上文 https://udn.com/news/story/6809/4039314 神祕諜爆料：普亭為助川普親自介入美大選 https://udn.com/news/story/6813/4040734 普亭身旁臥底美在俄最高階間諜險曝光 CIA急撤人 http://bit.ly/2kFkbrp 北韓的駭客能力有多強呢？是連韓國都讚譽有加的「世界前五名」 https://www.thenewslens.com/article/124622 韓駭客組織HIDDEN COBRA利用惡意程式BADCALL運用知名網站憑證進行fake TLS連線，以及利用惡意程式ELECTRICFISH建立隱密通道進行通訊 https://www.kl.edu.tw/v7/eduweb/index.php?func=edu_msg&edumsg_id=69951 陸淨網再升級炒作八卦、緋聞Out扼止歪風最重可處停業甚至吊銷許可證 https://turnnewsapp.com/global/culture/128750.html 中國之手入侵全球社交網操控輿論《華郵》：香港前車可鑑促美國反擊 https://hk.news.appledaily.com/international/realtime/article/20190912/60032331 中國利用社群網站操控台港議題 https://tw.appledaily.com/new/realtime/20190912/1632075/ Attacks Targeting IoT Devices and Windows SMB Surge https://www.bankinfosecurity.com/attacks-targeting-iot-devices-windows-smb-surge-a-13082 Iranian Hacking Group Continues Targeting Universities https://www.bankinfosecurity.com/iranian-hacking-group-continues-targeting-universities-a-13081 Chinese APT Group 'Thrip' Powers Ahead https://www.bankinfosecurity.com/chinese-apt-group-thrip-powers-ahead-a-13077 European police arrest Dark Web counterfeit currency traders https://www.zdnet.com/article/european-police-arrest-dark-web-counterfeit-currency-traders/#ftag=RSSbaffb68 EUROPE’S SECOND-LARGEST COUNTERFEIT CURRENCY NETWORK ON THE DARK WEB TAKEN DOWN IN PORTUGAL https://www.europol.europa.eu/newsroom/news/europe%E2%80%99s-second-largest-counterfeit-currency-network-dark-web-taken-down-in-portugal Student pleads guilty to IRS hack attempt for Trump tax returns https://www.zdnet.com/article/student-pleads-guilty-to-irs-hack-attempt-for-trump-tax-returns/#ftag=RSSbaffb68 Cyber-security incident at US power grid entity linked to unpatched firewalls https://www.zdnet.com/article/cyber-security-incident-at-us-power-grid-entity-linked-to-unpatched-firewalls/#ftag=RSSbaffb68 Belarusian police shut down notorious hacking forum https://www.zdnet.com/article/belarusian-police-shut-down-notorious-hacking-forum/#ftag=RSSbaffb68 Alleged Capital One Hacker Pleads Not Guilty https://www.bankinfosecurity.com/alleged-capital-one-hacker-pleads-guilty-a-13044 Chinese APT Group Began Targeting SSL VPN Flaws in July https://www.bankinfosecurity.com/chinese-apt-group-began-targeting-ssl-vpn-flaws-in-july-a-13037 LYCEUM Takes Center Stage in Middle East Campaign https://www.secureworks.com/blog/lyceum-takes-center-stage-in-middle-east-campaign Here are 235 apps that will not run with macOS Catalina https://www.zdnet.com/article/here-are-235-apps-that-will-not-run-with-macos-catalina/#ftag=RSSbaffb68 US Government Ban on Kaspersky Formalized https://www.bankinfosecurity.com/us-government-ban-on-kaspersky-formalized-a-13058 Hackers Attempted DDoS Attack Against Utility: Report https://www.bankinfosecurity.com/hackers-attempted-ddos-attack-against-utility-report-a-13057 Cybercrime Black Markets: RDP Access Remains Cheap and Easy https://www.bankinfosecurity.com/cybercrime-black-markets-rdp-access-remains-cheap-easy-a-13054 Singapore turns on data channel linking Chongqing industrial parks https://www.zdnet.com/article/singapore-turns-on-data-channel-linking-chongqing-industrial-parks/#ftag=RSSbaffb68 駐點工程師(中區-資安) https://www.104.com.tw/job/6qb8a?jobsource=keyword2Keyword 中央存款保險公司甄才公告 https://www.cdic.gov.tw/main_ch/docDetail.aspx?uid=18&pid=6&docid=2151 資訊安全管理師 https://www.104.com.tw/job/6qeyl D.資料外洩/個資法/GDPR/網路詐騙/網路釣魚/盜刷/假新聞轉發近期台北大學電子郵件信箱近來屢次收到詐騙信件，這是駭客使用假造寄件人詐騙比特幣(BTC)勒索郵件 http://www.ntpu.edu.tw/admin/a6/news_more.php?id=1054 Google法國稅務詐欺調查逾300億和解 https://ec.ltn.com.tw/article/breakingnews/2914539 個資全都露網路時代你我都是透明人 https://www.cna.com.tw/news/afe/201909130040.aspx 以 Deepfake 技術偽造 CEO 來電，歹徒「命令」子公司匯款詐騙成功 https://www.twcert.org.tw/subpages/securityInfo/securitypolicy_details.aspx?id=920 網路釣魚進化成 AI 語音釣魚,偽裝老闆聲音騙走 770 萬台幣 https://blog.trendmicro.com.tw/?p=2091 PayPal假網站現金回贈慳幾蚊變輸幾千 http://bit.ly/2kFhupP Facebook遭爆超過4億用戶電話遭到洩漏 https://www.chinatimes.com/realtimenews/20190906004925-260412?chdtv Facebook 近四億二千萬筆用戶個資外洩，資料庫被公開在網路上 https://www.twcert.org.tw/subpages/securityInfo/securitypolicy_details.aspx?id=921 美動員產官學資源打擊假訊息 https://www.ydn.com.tw/News/351930 高中生竊取1億條公民信息獲利2萬高考卻落榜 https://news.sina.com.tw/article/20190910/32609614.html 陸追劇APP恐曝個資！讀取電話簿、錄音監聽 http://bit.ly/2kxt1aw 追劇要當心！這些中國APP爆錄音侵犯用戶隱私 http://bit.ly/2lE7yNo 刑事局論流程：無論真假須先受理報案 https://news.ltn.com.tw/news/society/paper/1316342 無碼外流片特多的AV女優是她網揭真相 https://www.chinatimes.com/realtimenews/20190907000946-260404?chdtv DevOps服務Circleci資料外洩事件調查，攻擊者未取得任何用戶機密資料 https://www.ithome.com.tw/news/132884 老翁接獲詐騙電話慌張報案機智警即時阻詐成功 https://times.hinet.net/news/22548364 假技術真詐財？　沈智慧踢爆「節電達人」行騙千萬　 https://www.ettoday.net/news/20190906/1530059.htm 接獲健保卡預購藥品電話要匯3萬　他不知真假警戮破詐騙技倆 https://www.ettoday.net/news/20190906/1529838.htm 「你中了香港彩券！」婦匯款保證金險被騙18萬 https://udn.com/news/story/7320/4034678 特派員在現場／微信嚴查個資海外吃不開 https://money.udn.com/money/story/5603/4035259 中國安徽破獲微博詐騙組織涉案金額高達2.19億台幣 http://bit.ly/2k8u4xC 【捐錢就能活400年】中國安徽破獲微博詐騙組織涉案金額高達2.19億台幣 http://bit.ly/2k8u4xC 北京警方打掉一「鏈條化」信用卡詐騙犯罪團伙 https://news.sina.com.tw/article/20190904/32557640.html 河南警方「雷霆」出擊破案１０３２起 https://news.sina.com.tw/article/20190909/32600562.html 偽造郵件、偽造筆跡、機器人電話、語音複製......AI「花式詐騙」的N種方式 https://www.techbang.com/posts/72650-fake-mail-forged-handwriting-robot-phone-calls-voice-reproduction-n-ways-to-ai-fancy-scams 誤信網友「CoCo」投資虛擬貨幣百萬「摳摳」差點被騙光 https://news.ltn.com.tw/news/society/breakingnews/2909760 「投資虛擬貨幣」工程師匯款百萬　警即時圈存保住匯款阻詐 https://www.ettoday.net/news/20190908/1531055.htm 【全民自保】檢查帳號有否被出賣　Firefox Monitor 幫到你 http://bit.ly/2lDVL1K 假冒國安局長騙婦結婚　無良再洗她540萬 https://www.ctwant.com/article/6590 收銀員靠「過目不忘」盜刷1300張信用卡 https://udn.com/news/story/6810/4036900?from=udn-catelistnews_ch2 日男趁結帳記顧客卡號「盜刷筆記本」藏1300筆資料 https://news.ltn.com.tw/news/world/breakingnews/2910266 豐田子公司遭變臉詐騙攻擊損失40億日圓 https://www.ithome.com.tw/news/132936 他受騙後找到「創業」靈感！被害人變百萬詐欺犯 https://money.udn.com/money/story/5648/4032970 南京破獲一起冒用他人身份證辦理信用卡並惡意透支案 https://news.sina.com.tw/article/20190905/32563998.html 新騙局來襲！「循環信用卡」鼓吹借錢不用還的荒唐論 https://twgreatdaily.com/3pj4GW0BJleJMoPMqjM8.html 陳德霖退休前再拍片教大家保護數碼身份 http://bit.ly/2kvL2pY 廣東掃詐騙破案數、抓獲人數雙升 https://udn.com/news/story/7332/4042868 建構兒童資安保護陸新定個資法 https://turnnewsapp.com/global/culture/128757.html 假司法官詐150萬存摺　ATM前才準備開領...就被抓了 https://www.ettoday.net/news/20190912/1534069.htm 卡巴斯基實驗室：2019年Q2垃圾郵件和網絡釣魚數據匯總 http://www.199it.com/archives/935177.html Google行事曆也淪陷！駭客已發起日曆釣魚詐騙 https://www.cheers.com.tw/article/article.action?id=5095194 Major Groupon, Ticketmaster Fraud Scheme Exposed By Insecure Database https://threatpost.com/major-groupon-ticketmaster-fraud-scheme-exposed-by-insecure-database/148246/ Report: Massive Fraud Network Uncovered, Targeting Groupon & Online Ticket Vendors https://www.vpnmentor.com/blog/report-groupon-fraud/ 198 Million Car-Buyer Records Exposed Online for All to See https://threatpost.com/198m-car-buyer-records-exposed-online/148231/ Facebook: 419 Million Scraped User Phone Numbers Exposed https://www.bankinfosecurity.com/facebook-419-million-scraped-user-phone-numbers-exposed-a-13024 Singapore Adopts Stricter ID Collection Rules https://www.bankinfosecurity.asia/singapore-adopts-stricter-id-collection-rules-a-13036 Flaws in Over Half a Million GPS Trackers Expose Children Location Data https://thehackernews.com/2019/09/gps-tracking-device-for-kids.html Google Fined $170 Million For Violating Kids' Privacy On YouTube https://thehackernews.com/2019/09/youtube-kids-privacy-fine.html Report: S. Korean Company's Database Leaking Business Data https://www.bankinfosecurity.asia/report-s-korean-companys-database-leaking-business-data-a-13042 281 suspects arrested in massive crackdown against BEC scammers https://www.zdnet.com/article/281-suspects-arrested-in-massive-crackdown-against-bec-scammers/#ftag=RSSbaffb68 51 tech CEOs send open letter to Congress asking for a federal data privacy law https://www.zdnet.com/article/51-tech-ceos-send-open-letter-to-congress-asking-for-a-federal-data-privacy-law/#ftag=RSSbaffb68 E.研究報告 TokyoWesterns CTF 2019格式化漏洞利用的新姿勢 https://www.anquanke.com/post/id/185709 個案分析-X大學系所網站駭侵攻擊事件分析報告_10808 https://cert.tanet.edu.tw/prog/opendoc.php?id=2019083011082828195490327742851.pdf 繞過WAF 限制利用php: 方法實現OOB-XXE 漏洞利用 https://www.chainnews.com/articles/648862940880.htm 網站被黑如何恢復網站修復網站漏洞 https://ek21.com/news/tech/138793/ CVE-2019-15846：exim遠程獲取root權限漏洞預警 https://www.anquanke.com/post/id/186039 滲透測試服務針對CSRF漏洞檢測與代碼防禦辦法 https://cloud.tencent.com/developer/article/1499834 Beosin漏洞分析：偽EOS及其變種攻擊 https://read01.com/J8RPPjg.html [漏洞預警]CVE-2019-0708遠程桌面代碼執行漏洞利用工具已放出 https://qiita.com/shimizukawasaki/items/4cfabcfb79d0b0270e5f 威脅預警|蠕蟲級漏洞BlueKeep(CVE-2019-0708)EXP被公佈 http://ikan.news/news/2019/0907/1800/5d73aa371e57895e14a13145 【安全預警】RDP遠程高危漏洞攻擊程序面世，大規模蠕蟲攻擊或將爆發 https://www.weibo.com/ttarticle/p/show?id=2309404413858956574734 CVE-2019-0708 RDP RCE漏洞重現(20190907-MSF-EXP) http://www.lsablog.com/networksec/awd/cve-2019-0708-rdp-rce-20190907-msf-exp/ 漏洞分析 - Atlassian Bitbucket數據中心目錄穿越漏洞到RCE（CVE-2019-3397） https://xz.aliyun.com/t/6266 深入探索在野外發現的iOS的漏洞利用鏈 https://www.anquanke.com/post/id/186262 Web漏洞分析之zzcms多個CVE分析 https://zhuanlan.zhihu.com/p/81136717 CVE-2019-0708/1181/1182：Windows RDP服務蠕蟲級漏洞修復指南(Version 3.0) https://cert.360.cn/warning/detail?id=5f83e1c0f6f00f3fe001422e81a7a4da 紅隊Pulse Secure SSLVPN 漏洞指南 https://www.cnblogs.com/backlion/p/11491333.html Adobe ColdFusion RCE(CVE-2019-7839) 漏洞分析 https://www.freebuf.com/vuls/210386.html 研究人員披露Android 0day 提權漏洞 https://www.solidot.org/story?sid=61995 java開發中使用json框架的注意安全漏洞 https://it.baiked.com/dev/4667.html Fastjson又被發現漏洞，這次危害可導致服務癱瘓 https://www.javazhiyin.com/42695.html 挖洞經驗| 通過購物車參數篡改實現低價免費購買商品 https://www.freebuf.com/vuls/212089.html 開源軟件的供應鏈安全嗎？黑客正在利用源代碼傳播惡意軟件 https://www.freebuf.com/articles/network/212434.html 用Golang打造一款便攜式網絡拓撲可視化的工具 https://www.freebuf.com/sectool/212374.html Rdpscan：一款BlueKeep快速掃描工具 https://www.freebuf.com/sectool/213344.html 揭秘地下黑客論壇最流行的惡意軟件和黑客工具 https://www.freebuf.com/articles/system/213765.html 摩訶草團伙利用公用平台分發C&C配置攻擊活動揭露 https://www.freebuf.com/articles/system/212584.html 夢裡參加攻防演習活動的過程分享（上） https://www.freebuf.com/vuls/212909.html TWINT：一款Twitter信息爬取工具 https://www.freebuf.com/sectool/212601.html 五大網絡威脅檢測和響應的挑戰 https://www.freebuf.com/articles/network/212533.html 釣魚郵件中的Remcos RAT變種分析 https://www.freebuf.com/articles/network/212400.html 一例信息竊取木馬分析報告 https://www.freebuf.com/articles/network/211875.html 漏洞掃描技巧之Web漏洞掃描器研究 https://www.freebuf.com/articles/web/212015.html Separ木馬分析報告案例分析 https://www.freebuf.com/articles/network/211691.html Adobe ColdFusion RCE(CVE-2019-7839) 漏洞分析 https://www.freebuf.com/vuls/210386.html CVE-2019-15512：Total Defense反病毒軟件權限提升漏洞分析 https://www.4hou.com/vulnerable/20224.html 罕見誤判？！Google Ads 被拒登，惡意連結處理方式 https://www.sakamoto.blog/google-ads-malicious/ Metasploit BlueKeep漏洞利用模塊簡要分析 https://bbs.pediy.com/thread-254375.htm Google 如何進行 Code Review - 1 https://tachingchen.com/tw/blog/how-to-do-a-code-review-by-google-1/ ModSecurity：一款優秀的開源WAF https://www.freebuf.com/sectool/211354.html CTF工控信息安全賽分析思路探討（一） https://www.freebuf.com/articles/ics-articles/212376.html 挖洞經驗| 谷歌peering.google.com中的本地文件包含（LFI）漏洞 https://www.freebuf.com/vuls/212222.html 移動基帶安全研究系列之一：概念和系統篇 https://www.freebuf.com/articles/terminal/213807.html HTTP被動掃描代理的那些事 https://www.freebuf.com/articles/web/212382.html 如何開展電力行業的安全檢查評估 https://www.freebuf.com/articles/ics-articles/212503.html 深入分析CVE-2019-1663漏洞 https://www.4hou.com/vulnerable/20240.html Java反序列化漏洞自動挖掘方法 http://www.vipread.com/library/item/2542 MongoDB未授權訪問漏洞分析及整改建議 https://www.freebuf.com/vuls/212799.html [資安] 常見後台滲透測試 https://firsemisphere.blogspot.com/2019/09/blog-post_9.html 專家教路嚴防內鬼偷檔案大法 http://bit.ly/2kz4LFh 直播第一集：Palo Alto Networks 2019 與資安大神同行！ https://www.zerone.com.tw/Content/Video/BBD50F460B9A69F9 直播第三集：Palo Alto Networks 當資安菜鳥遇到資安大神 https://www.zerone.com.tw/Content/Video/610C438DE1EC571D 直播第四集：Palo Alto Networks 啟動AI人工智慧為數位金融保駕護航 https://www.zerone.com.tw/Content/Video/5E60D173C33D6973 直播第五集：Palo Alto Networks【資安攻擊防禦新框架】深入淺出談 MITRE ATT&CK 新資安攻防 https://www.zerone.com.tw/Content/Video/F37BF034287C6085 移動基帶安全研究系列之一：概念和系統篇 https://www.freebuf.com/articles/terminal/213807.html MindShaRE: Hardware Reversing with the TP-Link TL-WR841N Router https://www.thezdi.com/blog/2019/9/2/mindshare-hardware-reversing-with-the-tp-link-tl-wr841n-router fireeye/stringsifter https://github.com/fireeye/stringsifter Derbycon 2019 Videos http://www.irongeek.com/i.php?page=videos/derbycon9/mainlist r2con2019 https://github.com/radareorg/r2con2019 Sophos open-sources Sandboxie, an utility for sandboxing any application https://www.zdnet.com/article/sophos-open-sources-sandboxie-an-utility-for-sandboxing-any-application/#ftag=RSSbaffb68 Download the latest version of Sandboxie https://www.sandboxie.com/DownloadSandboxie Network Forensic Analysis in an Encrypted World https://speakerdeck.com/icebrg/network-forensic-analysis-in-an-encrypted-world Evolution of Malware Sandbox Evasion Tactics – A Retrospective Study https://securingtomorrow.mcafee.com/other-blogs/mcafee-labs/evolution-of-malware-sandbox-evasion-tactics-a-retrospective-study/ macOS Notarization, Hardware-Backed Code Signing Keys, and Sparkle Code Signing Issues https://duo.com/labs/tech-notes/macos-notarization-hardware-backed-code-signing-keys-and-sparkle-code-signing-issues Using TensorFlow / machine learning for automated RF side-channel attack classification https://leveldown.de/blog/tensorflow-sidechannel-analysis/ Watchbog and the Importance of Patching https://feedproxy.google.com/~r/feedburner/Talos/~3/peidHg1L8SY/watchbog-patching.html Weisfeiler-Lehman Graph Kernel for Binary Function Analysis https://blog.quarkslab.com/weisfeiler-lehman-graph-kernel-for-binary-function-analysis.html chromium-v8-exploit https://github.com/cosdong7/chromium-v8-exploit A powerful hacker toolkit collected more than 10 categories of open source scanners from Github https://github.com/We5ter/Scanners-Box NodeJsScan is a static security code scanner for Node.js applications https://github.com/ajinabraham/NodeJsScan Exploitation Framework for Embedded Devices threat9/routersploit https://github.com/threat9/routersploit A container analysis and exploitation tool for pentesters and engineers https://github.com/brompwnie/botb Scaling Network Scanning https://github.com/natlas/natlas BlackArch Linux – Penetration Testing Distribution https://kalilinuxtutorials.com/blackarch-linux-penetration-testing-distribution/ WebARX — A Defensive Core For Your Website https://thehackernews.com/2019/09/webarx-web-application-security.html Ninja Reverse Engineering on Android APK packages https://github.com/rovellipaolo/NinjaDroid Ehtools : Penetration Tools That Can Be Explored Easily https://kalilinuxtutorials.com/ehtools-penetration-tools/ OWASP-Testing-Guide-v5 https://github.com/OWASP/OWASP-Testing-Guide-v5 How to enable DNS-over-HTTPS (DoH) in Google Chrome https://www.zdnet.com/article/how-to-enable-dns-over-https-doh-in-google-chrome/#ftag=RSSbaffb68 Threat Research SharPersist: Windows Persistence Toolkit in C# https://www.fireeye.com/blog/threat-research/2019/09/sharpersist-windows-persistence-toolkit.html Ransomware Protection and Containment Strategies: Practical Guidance for Endpoint Protection, Hardening, and Containment https://www.fireeye.com/blog/threat-research/2019/09/ransomware-protection-and-containment-strategies.html Definitive Dossier of Devilish Debug Details – Part One: PDB Paths and Malware https://www.fireeye.com/blog/threat-research/2019/08/definitive-dossier-of-devilish-debug-details-part-one-pdb-paths-malware.html Threat Research Healthcare: Research Data and PII Continuously Targeted by Multiple Threat Actors https://www.fireeye.com/blog/threat-research/2019/08/healthcare-research-data-pii-continuously-targeted-by-multiple-threat-actors.html What is Security Information and Event Management (SIEM) Tool? A Beginner’s Guide https://thelinuxos.com/what-is-security-information-and-event-management-siem-tool-beginners-guide/ BLUESPAWN - Windows Based Active Defense Tool To Empower Blue Teams https://www.kitploit.com/2019/09/bluespawn-windows-based-active-defense.html Evolution of Malware Sandbox Evasion Tactics – A Retrospective Study https://securingtomorrow.mcafee.com/other-blogs/mcafee-labs/evolution-of-malware-sandbox-evasion-tactics-a-retrospective-study/ When corporate communications look like a phish https://blog.malwarebytes.com/business-2/2019/09/when-corporate-communications-look-like-a-phish/ Thrip: Ambitious Attacks Against High Level Targets Continue https://www.symantec.com/blogs/threat-intelligence/thrip-apt-south-east-asia 10 Reasons Cyber Range Simulation Is Vital to Incident Response https://securityintelligence.com/articles/10-reasons-cyber-range-simulation-is-vital-to-incident-response/ 10 Surprisingly Bright Spots on the Darknet https://securityintelligence.com/articles/10-surprisingly-bright-spots-on-the-darknet/ From BinDiff to Zero-Day: A Proof of Concept Exploiting CVE-2019-1208 in Internet Explorer http://bit.ly/2lTT8bZ Areizen/Android-Malware-Sandbox https://github.com/Areizen/Android-Malware-Sandbox F.商業打入超微鏈資安需求強金居零壹前景看俏 https://www.chinatimes.com/newspapers/20190908000292-260210?chdtv GCP推出Shielded GKE節點測試版 https://www.ithome.com.tw/news/132993 IBM提三大策略打造智慧資安 https://news.cnyes.com/news/id/4381957 IBM launches z15 mainframe, aims to automate compliance via Data Privacy Passports https://www.zdnet.com/article/ibm-launches-z15-mainframe-aims-to-automate-compliance-via-data-privacy-passports/#ftag=RSSbaffb68 AWS provides update on Outposts launch, supported services https://www.zdnet.com/article/aws-provides-update-on-outposts-launch-supported-services/#ftag=RSSbaffb68 Kaspersky launches anti-cheat solution for pro esports tournaments https://www.zdnet.com/article/kaspersky-launches-anti-cheat-solution-for-pro-e-sports-tournaments/#ftag=RSSbaffb68 G.政府從基本個資到行為紀錄，新身分證隱私疑慮有增無減 https://www.storm.mg/article/1675190 憂慮數位身分證變成特洛伊木馬？民團請監委調查 https://newtalk.tw/news/view/2019-09-10/296970 《李忠憲專欄》晶片身分證的資安問題 https://taronews.tw/2019/09/10/461431/ 強化個資、資安保護　內政部：New eID比紙本身分證更能保護隱私 https://www.ettoday.net/news/20190910/1532559.htm 沒陸客！政院燒15億推電支挨批「又是選舉考量」 http://bit.ly/2m4jf01 對外網路去年遭駭17萬次國安局：均即時偵測阻絕 https://news.ltn.com.tw/news/politics/breakingnews/2908784 中國駭客攻擊無所不在國安局：全部都阻擋成功 https://newtalk.tw/news/view/2019-09-07/296023 學者：新式身分證恐釀資安危機／關鍵「私人金鑰」發包民間廠商處理晶片、系統將成駭客攻擊對象 https://news.ltn.com.tw/news/life/paper/1316927 重申新身分證無資安疑慮內政部：將辦駭客比賽測試 https://news.ltn.com.tw/news/politics/breakingnews/2912310 內政部：數位身分證私密金鑰無法重製 http://bit.ly/2mcl4Ir 國防報告首納假訊息學者：網安已受重視 https://www.cna.com.tw/news/aipl/201909110275.aspx 內政部：數位身分證程序嚴謹重資安 https://www.moi.gov.tw/chi/chi_news/news_detail.aspx?type_code=02&sn=16737 鄧家基副市長出席以色列資安高峰論壇 https://money.udn.com/money/story/10860/4042603 鄧家基副市長出席以色列資安高峰論壇期望智慧城市從資安開始做起 http://bit.ly/2meoGtw 身分證資安疑雲藍委批追蹤功能如回到戒嚴 https://www.chinatimes.com/realtimenews/20190912002912-260407?chdtv 2020總統選戰起跑首設應變中心處理突發狀況 https://www.cna.com.tw/news/aipl/201909120081.aspx H.ICS/SCADA 工控系統淺談工業物聯網終端面臨的安全威脅 http://article.cechina.cn/19/0911/09/20190911092931.htm I.教育訓練 [駭客工具 Day6] WAF偵測 - WAFW00F https://ithelp.ithome.com.tw/articles/10214125 [駭客工具 Day7] webserver fingerprinting - httprint https://ithelp.ithome.com.tw/articles/10214260 [駭客工具 Day8] 線上 fingerprinting - Netcraft https://ithelp.ithome.com.tw/articles/10214456 [駭客工具 Day9] 網站分析插件 - Wappalyzer https://ithelp.ithome.com.tw/articles/10214659 [駭客工具 Day10] web安全測試 - Burp Suite https://ithelp.ithome.com.tw/articles/10214839 如何申請成為稽核觀察員 https://ithelp.ithome.com.tw/articles/10214074 資安抗性符文 https://ithelp.ithome.com.tw/articles/10214227 那個夜裡的資安-3 https://ithelp.ithome.com.tw/articles/10214344 使用IDAPython尋找二進制漏洞 https://zhuanlan.zhihu.com/p/81444710 只會用 Excel 還不夠！七大主題，教你如何用 Python 優化數據分析效能 https://buzzorange.com/techorange/2019/09/09/python-replace-excel/ 109資訊安全碩士班招生說明會 https://web.ee.ntu.edu.tw/news_detail.php?sn=1474 Cyber Canon Book Review: Security Engineering https://blog.paloaltonetworks.com/2019/09/cyber-canon-book-review-security-engineering/ Tech Interview Handbook https://github.com/yangshun/tech-interview-handbook J.物聯網/IOT/人工智慧/車聯網/光聯網/深度學習/機器學習/無人機/人臉辨識以雲端為基底，加速催生 AIoT 新興服務 https://www.digitimes.com.tw/iot/article.asp?cat=130&cat1=40&cat2=13&id=0000568399_49R2ZUJPLU7NYO8ED65UP AI bringing truth to data journalism https://www.zdnet.com/article/ai-is-bringing-truth-to-data-journalism/#ftag=RSSbaffb68 IoT Attack Opportunities Seen in the Cybercrime Underground https://blog.trendmicro.com/trendlabs-security-intelligence/iot-attack-opportunities-seen-in-the-cybercrime-underground/ Are IoT Threats Discussed In The Cybercriminal Underground https://blog.trendmicro.com/are-iot-threats-discussed-in-the-cybercriminal-underground/ 6.近期資安活動及研討會 HITCON HackDoor 駭入辦公室 7/2 ~ 9/28 https://www.accupass.com/event/1906050355291064968019 資安檢核核心技術及進階技術研討會 9月16日至9月18日 http://bit.ly/2TN2UtD MLDM Monday｜TensorFlow All Around 9/16 https://www.meetup.com/Taiwan-R/events/264154315/ Kotlin/Everywhere GDG Hsinchu - Kotlin on Cloud and Web 9/17 https://www.meetup.com/GDG-Hsinchu/events/263741333/ Cosmos SDK Workshop - 打造自己的新手區塊鏈 9/17 https://www.meetup.com/Taipei-Blockchain/events/264188406/ 2019網路治理分享會台灣、亞太、與全球的焦點議題 9/17 https://www.nii.org.tw/events/igf19/ Cyber Attack Taipei Series 2019 9/17 https://www.eventbrite.com/e/cyber-attack-taipei-series-2019-tickets-68951581035 稽核主管研習班(108年第二期) 9/17 ~ 9/18 https://edu.tii.org.tw/pt_training/mpage/index/info/1072673781 Android Code Club(Taipei) 9/18 https://www.meetup.com/Taiwan-Android-Developer-Study-Group/events/bsctnqyzmbxb/ SyntaxError 9/18 https://www.meetup.com/pythonhug/events/tnzzgpyzmbxb/ HackingThursday 固定聚會 9/19 https://www.meetup.com/hackingthursday/events/vkhnnqyzmbzb/ Cybersecurity Framework 擴大資安視野 Seminar CYBERSEC 101 研討會 9/20 https://signupcybersec101.ithome.com.tw/ 金融資安培訓課程 9/20 https://twap.deloitte.com.tw/DTLCRA/Works/CourseDetail.aspx?CourseID=T1906002 Android Code Club(Taipei) 9/21 https://www.meetup.com/Taiwan-Android-Developer-Study-Group/events/bsctnqyzlbcc/ SyntaxError 9/21 https://www.meetup.com/pythonhug/events/tnzzgpyzlbcc/ 資策會開辦「認證系統安全從業人員 SSCP 輔導班」2019/9/21 https://ithome.com.tw/pr/131772 交通大學亥客書院-A011:入侵行為發覺與應變指南 9/21 https://hackercollege.nctu.edu.tw/?p=1082 AIC課程 _ Python 入門 9/21 ~ 9/22 https://www.facebook.com/events/429157554391837/?event_time_id=429157561058503 資訊安全管理系統-進階課程 9/21 https://www.accupass.com/event/1907160908138705889800 Open UP Summit Fukuoka Outreach 9/21 https://www.meetup.com/TaipeiWomeninTech/events/263683783/ Build Your First Custom Blockchain - 親手打造你的第一個客制區塊鏈 9/24 https://www.meetup.com/Polkadot-Taipei/events/264188190/ Android Taipei - 2019 九月聚會 9/24 https://www.facebook.com/events/421900911784891/ TANET 2019 - 臺灣網際網路研討會 9/25 https://www.twcert.org.tw/subpages/securityInfo/securityactivity_details.aspx?id=310 Nextlink Technology 9/25 (三) https://www.accupass.com/event/1908020858535104977240 DEVCORE Conference 2019 9/25 https://devco.re/conf/2019/ 面對 APT進階持續性滲透攻擊，企業如何建立正確防護觀念與有效、低成本的資安防護能力 9/26 https://www.techbang.com/posts/72484-lecturecorporate-apt Thinking Thursday 第四場 9/26 https://www.meetup.com/Thinking-Thursday/events/263826166/ [CyCarrier]-奧義智慧資安活動_Fintech威脅剖析金融科技資安升級 9/26 https://www.zerone.com.tw/TrainingDetial/Seminar/2CB2943BF5366C08%7C581222C91497B312 [Akamai]-Akamai線上研討會快速部署與高效預測抵禦的資安防護網 9/27 https://www.zerone.com.tw/TrainingDetial/Seminar/33439C9B5852933A%7C4D840EFFD881209B 交通大學亥客書院-B022:基礎網頁安全與滲透測試 9/28 https://hackercollege.nctu.edu.tw/?p=1084 JavaScript Developer Conference-2019 2019-09-28(六) 09:30 ~ 2019-10-26(六) 17:30 (GMT+8) https://www.accupass.com/event/1907081509101081922774 2019 NASA黑客松賽前技術分享[Microsoft]_Azure 雲端運算與認知識別服務 10/1 https://www.facebook.com/events/421753888461417/ GDG DevFest Taipei 2019 10/1 https://www.meetup.com/GDGTaipei/events/263142255/ 資安檢核核心技術及進階技術研討會 10月7日至10月9日 http://bit.ly/2TN2UtD HITB+ CYBER WEEK 2019/10/12 ~17 https://d2p.hitb.org/ AI時代下，資安與視覺化的觀點與實例 10/16 https://www.tiai.org.tw/tiaiActDetailClass?sno=19 交通大學亥客書院-A006:數位足跡追蹤與分析 10/19 https://hackercollege.nctu.edu.tw/?p=1088 Splunk .conf 19 10/21 ~ 10/24 https://conf.splunk.com/ AIoT智能物聯網開發人才就業養成班[免費諮詢] 10/22 https://ittraining.kktix.cc/events/aiot-training-2019 Industrial Control Systems (ICS) Cyber Security Conference USA October 21 – 24, 2019 https://www.icscybersecurityconference.com [Palo Alto Networks]-Palo Alto Networks 直播研討會Part6. MITRE ATT&CK 新資安攻防框架進階產業應用 10/24 https://www.zerone.com.tw/TrainingDetial/Seminar/7747B901A8198AC3%7C1C130FE6FEC34700 Cybersecurity Framework 擴大資安視野 Seminar CYBERSEC 101 研討會 10/25 https://signupcybersec101.ithome.com.tw/ 交通大學亥客書院-A015:進階網頁滲透測試 10/26 https://hackercollege.nctu.edu.tw/?p=1090 資安檢核核心技術及進階技術研討會 10月28日至10月30日 http://bit.ly/2TN2UtD Cybersecurity Framework 擴大資安視野 Seminar CYBERSEC 101 研討會 11/8 https://signupcybersec101.ithome.com.tw/ 交通大學亥客書院-P006:高階網頁滲透測試 11/16 https://hackercollege.nctu.edu.tw/?p=1092 Trend Micro CTF 2019 // Raimund Genes Cup FINAL / NOVEMBER 23–24, 2019 https://www.trendmicro.com/en_us/campaigns/capture-the-flag.html 資安檢核核心技術及進階技術研討會11月26日至11月28日 http://bit.ly/2TN2UtD Cybersecurity Framework 擴大資安視野 Seminar CYBERSEC 101 研討會 11/29 https://signupcybersec101.ithome.com.tw/ 交通大學亥客書院-B015:惡意程式檢測 11/30 https://hackercollege.nctu.edu.tw/?p=1098 交通大學亥客書院-A018:企業網域控管－Active Directory攻擊與防禦 12/14 https://hackercollege.nctu.edu.tw/?p=1094 Japan Security Analyst Conference https://jsac.jpcert.or.jp/