###### tags: `資安事件新聞週報` # 資安事件新聞週報 2023/9/11 ~ 2023/9/15 1.重大弱點漏洞/後門/Exploit/Zero Day Cisco 發布多個產品的安全公告 https://www.cisa.gov/news-events/alerts/2023/09/07/cisco-releases-security-advisories-multiple-products 思科多功能網路資安設備ASA、FTD存在零時差漏洞，已出現攻擊行動 https://www.bleepingcomputer.com/news/security/cisco-warns-of-vpn-zero-day-exploited-by-ransomware-gangs/ 思科示警 VPN 漏洞可能已被勒索軟體利用 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10683 思科雲端平臺BroadWorks存在身分驗證漏洞 https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-bw-auth-bypass-kCggMWhX Cisco Issues Urgent Fix for Authentication Bypass Bug Affecting BroadWorks Platform https://thehackernews.com/2023/09/cisco-issues-urgent-fix-for.html SAP發布9月例行更新，修補影響BusinessObjects、NetWeaver、S/4HANA的重大漏洞 https://onapsis.com/blog/sap-security-patch-day-september-2023 North Korean Hackers Exploit Zero-Day Bug to Target Cybersecurity Researchers https://thehackernews.com/2023/09/north-korean-hackers-exploit-zero-day.html Critical GitHub Vulnerability Exposes 4,000+ Repositories to Repojacking Attack https://thehackernews.com/2023/09/critical-github-vulnerability-exposes.html WebP 函式庫爆漏洞波及大量軟件　Chrome 等四大瀏覽器齊修補 https://www.pcmarket.com.hk/webp-codec-library-vulnerability-affect-not-just-browsers-but-many-apps/ Google Rushes to Patch Critical Chrome Vulnerability Exploited in the Wild - Update Now https://thehackernews.com/2023/09/google-rushes-to-patch-critical-chrome.html Google發布電腦版Chrome 116.0.5845.187，修補零時差漏洞CVE-2023-4863 https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop_11.html 微軟發佈9月份安全性公告 https://www.cisa.gov/news-events/alerts/2023/09/12/microsoft-releases-september-2023-updates 微軟發布9月例行更新，修補2個零時差漏洞 https://www.bleepingcomputer.com/news/microsoft/microsoft-september-2023-patch-tuesday-fixes-2-zero-days-59-flaws/ https://www.zerodayinitiative.com/blog/2023/9/12/the-september-2023-security-update-review Microsoft Releases Patch for Two New Actively Exploited Zero-Days Flaws https://thehackernews.com/2023/09/microsoft-releases-patch-for-two-new.html Adobe旗下的PDF編輯工具與檢視器存在零時差漏洞，已被用於攻擊行動 https://www.bleepingcomputer.com/news/security/adobe-warns-of-critical-acrobat-and-reader-zero-day-exploited-in-attacks/ Adobe 已發布安全更新 https://www.cisa.gov/news-events/alerts/2023/09/12/adobe-releases-security-updates-multiple-products Update Adobe Acrobat and Reader to Patch Actively Exploited Vulnerability https://thehackernews.com/2023/09/update-adobe-acrobat-and-reader-to.html Mozilla發布Firefox、Thunderbird更新，修補已出現攻擊行動的零時差漏洞 https://www.bleepingcomputer.com/news/security/mozilla-patches-firefox-thunderbird-against-zero-day-exploited-in-attacks/ https://www.mozilla.org/en-US/security/advisories/mfsa2023-40/ https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop_11.html Mozilla Rushes to Patch WebP Critical Zero-Day Exploit in Firefox and Thunderbird https://thehackernews.com/2023/09/mozilla-rushes-to-patch-webp-critical.html Alert: New Kubernetes Vulnerabilities Enable Remote Attacks on Windows Endpoints https://thehackernews.com/2023/09/alert-new-kubernetes-vulnerabilities.html 開源資料圖像化及搜尋工具Apache Superset存在RCE漏洞 https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-bw-auth-bypass-kCggMWhX 開放原始碼分析服務Azure HDInsight Analytics存在XSS漏洞 https://orca.security/resources/blog/cross-site-scripting-vulnerabilities-in-apache-services-azure-hd-insight Researchers Detail 8 Vulnerabilities in Azure HDInsight Analytics Service https://thehackernews.com/2023/09/researchers-detail-8-vulnerabilities-in.html Webinar: Identity Threat Detection & Response (ITDR) – Rips in Your Identity Fabric https://thehackernews.com/2023/09/webinar-identity-threat-detection.html The Interdependence between Automated Threat Intelligence Collection and Humans https://thehackernews.com/2023/09/the-interdependence-between-automated.html Security bulletin: Security Bulletin: IBM QRadar User Behavior Analytics is vulnerable to components with known vulnerabilities https://www.ibm.com/support/pages/node/7029864?myns=swgother&mynp=OCSSBQAC&mync=E&cm_sp=swgother-_-OCSSBQAC-_-E Kubernetes漏洞有可能被用於攻擊叢集裡的Windows端點 https://www.akamai.com/blog/security-research/kubernetes-critical-vulnerability-command-injection 程式庫ncurses存在高風險漏洞，影響執行Linux、macOS作業系統的電腦 https://thehackernews.com/2023/09/microsoft-uncovers-flaws-in-ncurses.html 開放自動化軟體平臺OAS存在8個漏洞 https://blog.talosintelligence.com/eight-vulnerabilities-in-open-automation/ Nullsoft Scriptable Install System (NSIS)軟體含有DLL Hijacking漏洞，影響多個 web 應用程式 https://www.twcert.org.tw/tw/cp-132-3392-9df94-1.html 旭聯科技 SUNNET WMPro 智慧大師 - Command Injection https://www.twcert.org.tw/tw/cp-132-7373-4ef46-1.html 2.銀行/金融/保險/證券/金融監理 新聞及資安 美國金融業者遭遇633.7 Gbps的大規模DDoS攻擊 https://www.akamai.com/blog/security/akamai-prevents-the-largest-ddos-attack-on-a-us-financial-company Akamai: 美國金融機構遭遇史上最大規模DDoS攻擊 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10690 政大、證交所並肩前行　協助學生無縫接軌證券市場 https://www.nccu.edu.tw/p/405-1000-15015,c87.php?Lang=zh-tw 本國銀行辦理112年度監理壓力測試結果 https://www.banking.gov.tw/ch/home.jsp?id=540&parentpath=0,524,539&mcustomize=multimessage_view.jsp&dataserno=202309140004&aplistdn=ou=news,ou=multisite,ou=chinese,ou=ap_root,o=fsc,c=tw&dtable=News 中信銀行遠距服務再升級　理財諮詢更便利 Wealth chat線上即時雙向對談、空中理財規劃師全新上線 https://news.cnyes.com/news/id/5324769 3.信用卡/電子支付/行動支付/pay/支付系統/資安 醫療院所數位支付工具醫指付傳出去年就發現身分驗證缺失，但遲遲未得到處理 https://www.thenewslens.com/article/191786 手機醫療費用支付App醫指付個資外洩，傳出用戶信用卡遭盜刷 https://news.tvbs.com.tw/life/2238572 https://ec.ltn.com.tw/article/breakingnews/4426459 https://www.facebook.com/ehealthpay/posts/pfbid0UReS7hSi7kdDsWHZQLXQ6FPPf6aPCorYQuLVyRFZcL6HCR8NmJyfbLyBi6dHBNZcl 醫指付APP驚傳遭盜刷　星展爭議款項不用付 https://www.cardu.com.tw/news/detail.php?49734 讀者爆駭客協會去年6月已通報醫指付漏洞，大洸醫管提2改善承諾、3使用建議 https://www.thenewslens.com/article/191786 「醫指付」疑有資安漏洞 金管會：財金公司協助處理 https://tw.news.yahoo.com/%E9%86%AB%E6%8C%87%E4%BB%98-%E7%96%91%E6%9C%89%E8%B3%87%E5%AE%89%E6%BC%8F%E6%B4%9E-%E9%87%91%E7%AE%A1%E6%9C%83-%E8%B2%A1%E9%87%91%E5%85%AC%E5%8F%B8%E5%8D%94%E5%8A%A9%E8%99%95%E7%90%86-114008914.html 紐西蘭奧克蘭交通局傳出遭到勒索軟體攻擊，導致付款系統失效 https://at.govt.nz/bus-train-ferry/service-announcements/at-hop-technical-outage 4.加密貨幣/數位貨幣/挖礦/區塊鍊/智能合約/WEB3 資安 CoinEx 加密貨幣交易所遭駭，損失達 5,300 萬美元 https://www.twcert.org.tw/tw/cp-104-7376-9f8df-1.html 5.資安事件新聞 A.病毒木馬 / 殭屍網路 / 勒索軟體 / Adware /APT /後門程式/IOC ALPHV勒索軟體集團承認是駭進MGM Resorts的元兇 https://www.ithome.com.tw/news/158768 MGM Resorts傳出遭到勒索軟體BlackCat旗下組織攻擊，VMware虛擬化平臺被加密而停擺 https://www.ithome.com.tw/news/158768 https://www.bleepingcomputer.com/news/security/mgm-casinos-esxi-servers-allegedly-encrypted-in-ransomware-attack/ https://twitter.com/vxunderground/status/1701758864390050145 https://twitter.com/mikko/status/1702421207738663281 https://www.reuters.com/technology/moodys-says-breach-mgm-is-credit-negative-disruption-lingers-2023-09-13/ https://www.bloomberg.com/news/articles/2023-09-13/mgm-caesars-hacked-by-scattered-spider-in-span-of-few-weeks 竊資軟體RedLine、Vidar濫用EV憑證，以此對旅館業者發動勒索軟體攻擊 https://www.trendmicro.com/en_us/research/23/i/redline-vidar-first-abuses-ev-certificates.html 惡意軟體BatLoader透過Google廣告散布 https://www.malwarebytes.com/blog/threat-intelligence/2023/09/ongoing-webex-malvertising-drops-batloader 駭客執行LockBit加密檔案未果，竟拿出另一款勒索軟體再度出手 https://symantec-enterprise-blogs.security.com/blogs/threat-intelligence/3am-ransomware-lockbit 惡意軟體載入工具HijackLoader被用於散布DanaBot、SystemBC、RedLine Stealer https://www.zscaler.com/blogs/security-research/technical-analysis-hijackloader 國內首例！駭客入侵中彰肉市勒索　2千頭豬沒得賣2千萬飛了 https://www.mirrormedia.mg/story/20230913edi055/ 彰化、臺中肉品拍賣市場疑遭勒索軟體攻擊 https://www.cna.com.tw/news/aloc/202309120284.aspx https://news.ltn.com.tw/news/Changhua/breakingnews/4426063 惡意軟體DarkGate Loader濫用微軟Teams進行散布 https://www.truesec.com/hub/blog/darkgate-loader-delivered-via-teams 伊朗駭客散布惡意程式SideTwist及Agent Tesla https://nsfocusglobal.com/apt34-unleashes-new-wave-of-phishing-attack-with-variant-of-sidetwist-trojan/ 勒索軟體Ragnar Locker聲稱攻擊以色列醫療中心Mayanei Hayeshua https://www.bleepingcomputer.com/news/security/ragnar-locker-claims-attack-on-israels-mayanei-hayeshua-hospital/ 惡意廣告鎖定Mac電腦，散布竊資軟體Atomic Stealer https://www.malwarebytes.com/blog/threat-intelligence/2023/09/atomic-macos-stealer-delivered-via-malvertising 惡意軟體MetaStealer鎖定Intel處理器的Mac電腦而來 http://www.sentinelone.com/blog/macos-metastealer-new-family-of-obfuscated-go-infostealers-spread-in-targeted-attacks/ Email campaigns leverage updated DBatLoader to deliver RATs, stealers https://securityintelligence.com/posts/email-campaigns-leverage-updated-dbatloader-deliver-rats-stealers Downloader Disguised With Contents on Violation of Intellectual Property Rights https://asec.ahnlab.com/en/57001/ OriginBotnet Spreads via Malicious Word Document https://www.fortinet.com/blog/threat-research/originbotnet-spreads-via-malicious-word-document Spyware Telegram mod distributed via Google Play https://securelist.com/trojanized-telegram-mod-attacking-chinese-users/110482/ MAR-10454006.r5.v1 SUBMARINE, SKIPJACK, SEASPRAY, WHIRLPOOL, and SALTWATER Backdoors https://www.cisa.gov/news-events/analysis-reports/ar23-250a-0 The Case of LummaC2 v4.0 https://www.esentire.com/blog/the-case-of-lummac2-v4-0 “MrTonyScam” — Botnet of Facebook Users Launch High-Intent Messenger Phishing Attack on Business Accounts https://labs.guard.io/mrtonyscam-botnet-of-facebook-users-launch-high-intent-messenger-phishing-attack-on-business-3182cfb12f4d HijackLoader https://www.zscaler.com/blogs/security-research/technical-analysis-hijackloader Analysis of Cuba ransomware gang activity and tooling https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2023/09/11091834/Cuba-ransomware-IoCs.pdf https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2023/09/11095522/Cuba-ransomware-TTPs.pdf https://securelist.com/cuba-ransomware/110533/ macOS MetaStealer | New Family of Obfuscated Go Infostealers Spread in Targeted Attacks https://www.sentinelone.com/blog/macos-metastealer-new-family-of-obfuscated-go-infostealers-spread-in-targeted-attacks/ Attacker combines phone, email lures into believable, complex attack chain https://news.sophos.com/en-us/2023/08/10/image-spam-attack/ https://github.com/sophoslabs/IoCs/blob/master/IOC_imagespam.csv Sponsor with batch-filed whiskers: Ballistic Bobcat’s scan and strike backdoor https://www.welivesecurity.com/en/eset-research/sponsor-batch-filed-whiskers-ballistic-bobcats-scan-strike-backdoor/ Rust-Written 3AM Ransomware: A Sneak Peek into a New Malware Family https://thehackernews.com/2023/09/rust-written-3am-ransomware-sneak-peek.html 3AM: New Ransomware Family Used As Fallback in Failed LockBit Attack https://symantec-enterprise-blogs.security.com/blogs/threat-intelligence/3am-ransomware-lockbit Protecting Your Microsoft IIS Servers Against Malware Attacks https://thehackernews.com/2023/09/protecting-your-microsoft-iis-servers.html New HijackLoader Modular Malware Loader Making Waves in the Cybercrime World https://thehackernews.com/2023/09/new-hijackloader-modular-malware-loader.html Beware: MetaStealer Malware Targets Apple macOS in Recent Attacks https://thehackernews.com/2023/09/beware-metastealer-malware-targets.html NodeStealer Malware Now Targets Facebook Business Accounts on Multiple Browsers https://thehackernews.com/2023/09/nodestealer-malware-now-targets.html B.行動安全 / iPhone / Android /穿戴裝置 /App / 5G / 即時通訊 Apple 緊急修復 2 個已遭用於攻擊的 iMessage 0-day 漏洞 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10682 蘋果發布iOS 15.7.9、iPadOS 15.7.9、macOS Monterey 12.6.9、macOS Big Sur 11.7.10，修補零點擊漏洞Blastpass https://www.bleepingcomputer.com/news/security/apple-backports-blastpass-zero-day-fix-to-older-iphones/ Millions Infected by Spyware Hidden in Fake Telegram Apps on Google Play https://thehackernews.com/2023/09/millions-infected-by-spyware-hidden-in.html Apple Rushes to Patch Zero-Day Flaws Exploited for Pegasus Spyware on iPhones https://thehackernews.com/2023/09/apple-rushes-to-patch-zero-day-flaws.html 企業臉書用戶在Meta Messenger收到檔案下載連結的訊息要小心，有可能誤裝竊資軟體而被奪走臉書帳號 https://labs.guard.io/mrtonyscam-botnet-of-facebook-users-launch-high-intent-messenger-phishing-attack-on-business-3182cfb12f4d Vietnamese Hackers Deploy Python-Based Stealer via Facebook Messenger https://thehackernews.com/2023/09/vietnamese-hackers-deploy-python-based.html Russian Journalist's iPhone Compromised by NSO Group's Zero-Click Spyware https://thehackernews.com/2023/09/russian-journalists-iphone-compromised.html 疑報復帳號遭到停用，駭客組織Anonymous Sudan對Telegram發動DDoS攻擊 https://socradar.io/telegram-hit-by-a-ddos-attack-what-is-the-cause-behind-it/ 安卓惡意軟體Evil Telegram現身Google Play市集，鎖定中文用戶及中國少數民族而來 https://securelist.com/trojanized-telegram-mod-attacking-chinese-users/110482/ 印尼擬禁社群媒體商品交易，保護線下市場不受掠奪性定價威脅 https://www.thenewslens.com/article/191739 公務手機也有資安危險！指向科技讓手機擁有「影分身」保護企業機密資料 https://meet.bnext.com.tw/articles/view/50626? 傳「早安圖問候」手機會被駭？　資安專家打臉這樣說 https://today.line.me/tw/v2/article/WBrQoMQ 三星打造最強資安保護生態系　Knox Vault多層保障手機個資 https://www.ettoday.net/news/20230914/2582719.htm 陸疑iphone有資安問題 美媒憂：蘋果在中國還有好日子嗎 https://www.chinatimes.com/realtimenews/20230915001372-260409?chdtv 防詐、堵詐，中華電信行動、市話「國際來話語音警示服務」上線 https://technews.tw/2023/09/15/scam-cht/ 蘋果關閉iOS 16.6認證通道！無法透過iOS 16.6.1降級 https://mrmad.com.tw/apple-ios166-downgrade-stops-signing C.事件 / 駭客 / DDOS / APT / 雲端/ 暗網/ 徵才 / 國際資安事件 / 資安人力 美揭新版網路戰略 肆應俄「中」威脅 https://www.ydn.com.tw/news/newsInsidePage?chapterID=1615049 抓到了 網攻大陸西工大神祕駭客 鎖定美國安局 https://m.match.net.tw/pc/news/international/20230914/7587948 國家級駭客組織攻擊美國航太機構，鎖定Zoho、Fortinet漏洞下手 https://www.securityweek.com/us-aeronautical-organization-hacked-via-zoho-fortinet-vulnerabilities/ https://www.cisa.gov/news-events/alerts/2023/09/07/cisa-fbi-and-cnmf-release-advisory-multiple-nation-state-threat-actors-exploit-cve-2022-47966-and https://www.cybercom.mil/Media/News/Article/3518476/cnmf-and-partners-illuminate-multiple-nation-state-exploitation-efforts/ 中國駭客組織Redfly鎖定亞洲國家的電網下手，從中進行網路間諜攻擊 https://symantec-enterprise-blogs.security.com/blogs/threat-intelligence/critical-infrastructure-attacks 中國對臺灣及東亞的網路攻擊與AI認知作戰增加 https://www.microsoft.com/en-us/security/business/security-insider/reports/nation-state-reports/digital-threats-from-east-asia-increase-in-breadth-and-effectiveness/ 北韓駭客再度鎖定資安研究人員下手 https://blog.google/threat-analysis-group/active-north-korean-campaign-targeting-security-researchers/ 伊朗駭客APT33發起密碼潑灑攻擊 https://aka.ms/peach-sandstorm 伊朗駭客TA453對全球34個組織部署後門程式Sponsor https://www.welivesecurity.com/en/eset-research/sponsor-batch-filed-whiskers-ballistic-bobcats-scan-strike-backdoor/ Google Agrees to $93 Million Settlement in California's Location-Privacy Lawsuit https://thehackernews.com/2023/09/google-agrees-to-93-million-settlement.html Cybercriminals Weaponizing Legitimate Advanced Installer Tool in Crypto-Mining Attacks https://thehackernews.com/2023/09/cybercriminals-weaponizing-legitimate.html 美英聯手起訴11名俄羅斯駭客組織TrickBot成員 https://securityaffairs.com/150632/cyber-crime/uk-us-sanctioned-11-trickbot-gang-members.html U.K. and U.S. Sanction 11 Russia-based TrickBot Cybercrime Gang Members https://thehackernews.com/2023/09/uk-and-us-sanction-11-russia-based.html Chinese Redfly Group Compromised a Nation's Critical Grid in 6-Month ShadowPad Campaign https://thehackernews.com/2023/09/chinese-redfly-group-compromised.html 【資訊安全處/資安部 資安管理課】課長 https://www.104.com.tw/job/83cdy 網路資安工程師 https://www.104.com.tw/job/8422r?jobsource=googlejobs 資安工程師 https://www.104.com.tw/job/81oax?jobsource=jolist_c_relevance 資安檢測工程師（紅隊） https://www.104.com.tw/job/64myq?jobsource=jolist_c_relevance 資安檢測工程師（滲透測試） https://www.104.com.tw/job/805aq?jobsource=jolist_c_relevance 資訊安全人員 https://www.104.com.tw/job/75fy2?jobsource=jolist_c_relevance 網路管理工程師 https://www.104.com.tw/job/8314m?jobsource=jolist_c_relevance 資安工程師 (白帽駭客) https://www.104.com.tw/job/6rxul?jobsource=jolist_c_relevance Engineer Intern (Security Team) 資訊安全實習生 https://www.104.com.tw/job/7q1vz?jobsource=jolist_c_relevance 【研究開發】資安工程師 Platform Security Engineer https://www.104.com.tw/job/7ojt5?jobsource=jolist_c_relevance IoT 資安檢測分析師 https://www.104.com.tw/job/7xmft?jobsource=jolist_c_relevance 技術服務處-App資安檢測工程師 https://www.104.com.tw/job/7q31a?jobsource=jolist_c_relevance 資安工程師(21042801) https://www.104.com.tw/job/79prn?jobsource=jolist_c_relevance 【Android 資安工程師】 Android Security Engineer https://www.104.com.tw/job/80rqo?jobsource=jolist_c_relevance 資安工程師 https://www.104.com.tw/job/7zdtl?jobsource=jolist_c_relevance 資深資安規劃人員 https://www.104.com.tw/job/58ry6?jobsource=jolist_c_relevance 資安軟體導入助理工程師(22122801) https://www.104.com.tw/job/7uui7?jobsource=jolist_c_relevance App資安檢測工程師_高雄 https://www.104.com.tw/job/7yx6y?jobsource=jolist_c_relevance 【檢測防禦中心】漏洞研究工程師 https://www.104.com.tw/job/7xjp0?jobsource=jolist_c_relevance 資安工程師(21012701A) https://www.104.com.tw/job/76fvf?jobsource=jolist_c_relevance 資深資安分析工程師 (資訊部) https://www.104.com.tw/job/81bim?jobsource=jolist_c_relevance D.資料外洩/個資法/GDPR/網路詐騙/網路釣魚/盜刷/假新聞/網路霸凌/帳號安全 美國賭場業者Caesars證實遭網路攻擊攻擊，熟客資料庫外洩 https://www.ithome.com.tw/news/158767 https://www.sec.gov/ix?doc=/Archives/edgar/data/0001590895/000119312523235015/d537840d8k.htm https://www.wsj.com/business/hospitality/caesars-paid-ransom-after-suffering-cyberattack-7792c7f0 https://www.bloomberg.com/news/articles/2023-09-13/caesars-entertainment-paid-millions-in-ransom-in-recent-attack 英國曼徹斯特警局資料外洩，起因是外部供應商遭勒索軟體攻擊 https://www.gmp.police.uk/news/greater-manchester/news/news/2023/september/greater-manchester-police-statement-on-data-breach/ 空中巴士著手調查資料外洩事故 https://www.securityweek.com/airbus-launches-investigation-after-hacker-leaks-data/ 軟體臭蟲追蹤公司Rollbar遭駭，攻擊者尋找用戶個資、帳密與存取系統的Token https://twitter.com/troyhunt/status/1700531521835454502 救助兒童會傳出遭遇勒索軟體BianLian攻擊，近7 TB資料外洩 https://www.theregister.com/2023/09/11/bianlian_save_the_children/ https://twitter.com/vxunderground/status/1701309441272926369 https://twitter.com/BrettCallow/status/1701240730876838250 郵件服務業者網擎資訊部署後量子加密技術，強化敏感資料防護 https://www.openfind.com.tw/taiwan/news_detail.php?news_id=10328 Google將提供Chrome更為即時的釣魚網站防護機制 https://blog.google/products/chrome/Google-chrome-new-features-redesign-2023/ 美聯社新聞寫作範本網站AP Stylebook資料外洩 https://apps.web.maine.gov/online/aeviewer/ME/40/bb8594ec-9e53-41ff-b6e1-1284d3941b8e.shtml 嬌生醫療照護系統傳出資料外洩，起因是IBM代管的應用系統遭到攻擊 https://www.bleepingcomputer.com/news/security/johnson-and-johnson-discloses-ibm-data-breach-impacting-patients/ 資科辦提各部門檢討資安 出事通報 數碼港董事劉國勳稱資料外泄 管理層原料涉70GB https://reurl.cc/E1nL3a Sophisticated Phishing Campaign Deploying Agent Tesla, OriginBotnet, and RedLine Clipper https://thehackernews.com/2023/09/sophisticated-phishing-campaign.html Microsoft Warns of New Phishing Campaign Targeting Corporations via Teams Messages https://thehackernews.com/2023/09/microsoft-warns-of-new-phishing.html N-Able's Take Control Agent Vulnerability Exposes Windows Systems to Privilege Escalation https://thehackernews.com/2023/09/n-ables-take-control-agent.html Cybercriminals Combine Phishing and EV Certificates to Deliver Ransomware Payloads https://thehackernews.com/2023/09/cybercriminals-combine-phishing-and-ev.html Iranian Nation-State Actors Employ Password Spray Attacks Targeting Multiple Sectors https://thehackernews.com/2023/09/iranian-nation-state-actors-employ.html E.研究報告/工具 資安威脅大揭密：常見的資安攻擊手法 https://www.flyelephant.com.tw/post/%E8%B3%87%E5%AE%89%E5%A8%81%E8%84%85%E5%A4%A7%E6%8F%AD%E5%AF%86%EF%BC%9A%E5%B8%B8%E8%A6%8B%E7%9A%84%E8%B3%87%E5%AE%89%E6%94%BB%E6%93%8A%E6%89%8B%E6%B3%95 研究人員揭露更為隱密的惡意軟體載入工具MidgeDropper變種 https://www.fortinet.com/blog/threat-research/new-midgedropper-variant 研究人員揭露WiKI-Eve攻擊手法，有機會透過Wi-Fi竊取數字組成的密碼 https://arxiv.org/pdf/2309.03492.pdf 以數字組成的Wi-Fi連線密碼，被找出可能的破解方式，研究人員揭露WiKI-Eve攻擊手法 https://www.bleepingcomputer.com/news/security/new-wiki-eve-attack-can-steal-numerical-passwords-over-wifi/ https://arxiv.org/pdf/2309.03492.pdf https://nordpass.com/most-common-passwords-list/ 電腦下載盜版圖像處理、3D內容製作軟體增添新危機，有可能被駭客視為植入挖礦軟體的最佳目標 https://blog.talosintelligence.com/cybercriminals-target-graphic-designers-with-gpu-miners/ 逾4千個網站曝露程式碼儲存庫 https://trufflesecurity.com/blog/4500-of-the-top-1-million-websites-leaked-source-code-secrets/ AI 發展促進網路資安技術 法人：把握市場轉折機會 https://money.udn.com/money/story/5618/7438388?from=edn_newest_index Windows 系統　多階段惡意軟體攻擊目標 https://www.technice.com.tw/cloudtech/infosecurity/70031/ How to Prevent API Breaches: A Guide to Robust Security https://thehackernews.com/2023/09/how-to-prevent-api-breaches-guide-to.html Google Chrome Rolls Out Support for 'Privacy Sandbox' to Bid Farewell to Tracking Cookies https://thehackernews.com/2023/09/google-chrome-rolls-out-support-for.html 駭客發起Steal-It攻擊行動，透過PowerShell盜取NTLMv2雜湊值 https://www.zscaler.com/blogs/security-research/steal-it-campaign Cybercriminals Using PowerShell to Steal NTLMv2 Hashes from Compromised Windows https://thehackernews.com/2023/09/cybercriminals-using-powershell-to.html 技術支援型態的詐騙增加，駭客濫用Windows通知中心讓使用者上當 https://www.zscaler.com/blogs/security-research/rise-tech-support-scams-abusing-windows-action-center-notifications 7 Steps to Kickstart Your SaaS Security Program https://thehackernews.com/2023/09/7-steps-to-kickstart-your-saas-security.html How Cyberattacks Are Transforming Warfare https://thehackernews.com/2023/09/how-cyberattacks-are-transforming.html Go further and faster with your technology https://www.insight.com/en_US/home.html?_m=3n.009a.3147.kl0ao0dcsu.24us Avoid These 5 IT Offboarding Pitfalls https://thehackernews.com/2023/09/avoid-these-5-it-offboarding-pitfalls.html Cybersecurity Law A graduate degree for working professionals https://www.law.umaryland.edu/academics/ms-in-law-program/landing-pages/cybersecurity-hacker-news/?_m=3n.009a.3148.kl0ao0dcsu.24w6 Microsoft Uncovers Flaws in ncurses Library Affecting Linux and macOS Systems https://thehackernews.com/2023/09/microsoft-uncovers-flaws-in-ncurses.html F.商業 前進無密碼時代！網際威信 HiTRUST 聯手 VinCSS 進軍越南市場 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10677 Sophos 推出可遠端管理的新一代 Wi-Fi 6 存取點 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10674 Palo Alto Networks 啟動 Cortex台灣雲端資料中心 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10672 微軟 DevDays Asia 2023 聚焦AI https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10681 資安業者JFrog支援機器學習模型管理，強化AI應用開發安全 https://www.ithome.com.tw/news/158751 安碁資訊估未來1~3年成長10%以上；看好製造業潛力 https://www.moneydj.com/kmdj/news/newsviewer.aspx?a=6557ece0-4ff7-41e7-aa7b-721aee575085 叡揚資訊 雲地兼備數位轉型領導者 https://www.moneyweekly.com.tw/Magazine/Info/%E7%90%86%E8%B2%A1%E5%91%A8%E5%88%8A/128843 中華資安國際與Mandiant強強聯手、提供最即時、真實與專業的BAS驗證服務 https://www.chtsecurity.com/news/14e77274-1ecf-40dd-a0cc-10f8ee288738 微軟 Security Copilot 協助資安人才短缺問題，生成式 AI 助抵禦持續進化的駭客攻擊 https://www.techbang.com/posts/109609-the-global-shortage-of-information-security-talents-is-facing G.政府 數位部成果深受肯定 盼生成式AI、高齡科技、資安能量等續攜手 https://n.yam.com/Article/20230913167967 政府攜手電信業打詐 短碼簡訊平台月底試辦 https://www.msn.com/zh-tw/news/living/%E6%94%BF%E5%BA%9C%E6%94%9C%E6%89%8B%E9%9B%BB%E4%BF%A1%E6%A5%AD%E6%89%93%E8%A9%90-%E7%9F%AD%E7%A2%BC%E7%B0%A1%E8%A8%8A%E5%B9%B3%E5%8F%B0%E6%9C%88%E5%BA%95%E8%A9%A6%E8%BE%A6/ar-AA1gEiTn 資安院與逢甲大學簽MOU 促進技術創新應用 https://www.cna.com.tw/news/afe/202309130303.aspx 數位部測試中! 公文做到端到端加解密，未來推廣到各部會 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10692 新竹縣打造韌性城鄉 多管齊下 https://www.wealth.com.tw/articles/3e106dbf-73ea-47a8-bd9a-0fa95200bb1d 沙崙智慧綠能科學城舉辦低碳轉型座談 探索企業可行路徑 https://www.tainan.gov.tw/News_Content.aspx?n=13371&s=8589530 H.工控系統/ICS/SCADA/IOT/物聯網/車聯網/電動車/人工智慧/AI/ML/人臉辨識/醫療 相關資安 DDoS 2.0: IoT Sparks New DDoS Alert https://thehackernews.com/2023/09/ddos-20-iot-sparks-new-ddos-alert.html MITRE 和 CISA 共同推出OT攻擊模擬平台 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10678 鎖定大樓自動化系統弱點的攻擊行動加劇，今年上半升溫 https://www.forescout.com/blog/2023h1-threat-review-vulnerabilities-threat-actors-malware/ 西門子多項工控設備受到CodeMeter元件重大漏洞影響 https://www.securityweek.com/ics-patch-tuesday-critical-codemeter-vulnerability-impacts-several-siemens-products/ Socomec不斷電系統存在漏洞，有可能導致設備遭到挾持 https://www.cisa.gov/news-events/ics-advisories/icsa-23-250-03 馬斯克稱台灣屬於中國　專家：小心在特斯拉車上的一舉一動，都要符合中國法規 https://dq.yam.com/post/15705 跳針反問「中國是民主國家」！　中國「小愛同學」恐遭駭 https://news.cts.com.tw/cts/international/202309/202309152228396.html I.教育訓練 iPAS資訊安全工程師中級筆記 https://hackmd.io/@Not/iPASInformationSecuritySpecialist iPas資安工程師證照考前研習 https://reurl.cc/GEbA3p Coursera 盤點 7 項雲端資安認證，高薪跳板都在這了！ https://buzzorange.com/techorange/2022/07/12/cloud-security-certificates/ 全球網絡安全勞動力失衡 (ISC)2免費課程及考試填補人才缺口 https://reurl.cc/m39MDj CISSP資安認證的8大領域 https://2formosa.blogspot.com/2022/12/CISSP-topic-domains.html CISSP考試心得 https://reurl.cc/KbY83j CISSP考試心得 – Benson https://reurl.cc/GbWvxd 目標導向-20天光速考過CISSP https://reurl.cc/2Zq6zn CISSP證照考試實戰心得 第一章：初期準備工作 https://netmag.tw/2022/06/17/the-cissp-has-learned-the-first-chapter-in-actual-combat CISSP證照考試實戰心得 第二章：規律且有紀律的讀書策略 https://netmag.tw/2022/07/01/the-cissp-is-in-the-field-of-combat-chapter-two-regular-and-disciplined-reading-strategies CISSP證照考試實戰心得 第三章：終極一戰 https://netmag.tw/2022/07/12/the-cissp-has-learned-a-third-chapter-in-actual-combat-experience-the-ultimate-battle Quick CISSP Infographic for IPSec https://www.studynotesandtheory.com/single-post/quick-cissp-infographic-for-ipsec CSSLP Certification - Security models in F# https://github.com/vbocan/csslp Certified Secure Software Lifecycle Professional in bullet points https://github.com/joeyhage/csslp-notes CPSA(CREST Practitioner Security Analyst) 資安分析師考試心得 https://tech-blog.cymetrics.io/posts/huli/crest-cpsa-prepare/ EC-Council CEH v11 考試心得、改版資訊以及準備方向 2021、2022 https://reurl.cc/1oyEM8 CEH v11 考試心得與準備方式 https://blog.sean.taipei/2022/01/ceh CEH https://github.com/a3cipher/CEH CodeRed by EC-Council https://github.com/codered-by-ec-council EC-Council CEH Practical / Master 準備心得 — 讓理論與實作相輔相成的學習 https://medium.com/blacksecurity/ceh-practical-master-3e80cac180a2 EC-Council CEHP考試準備心得 https://hackmd.io/@9dCJrgb6QHGd8dRfgHO0zg/r14xNn1po ECSA v10 考試心得與讀書資料分享/ ECSA v10 Review and Study Materials https://medium.com/blacksecurity/ecsa-v10-1ec76c0eb7d4 EC-Council ECSA資安分析專家 v10 考試心得分享 https://javaxtalk.blogspot.com/2019/05/ec-council-ecsa-v10.html 20180817 EC-Council ECSA v10 PASS https://www.ptt.cc/bbs/License/M.1534571704.A.5BA.html 關於EC-Council CPENT和LPT Master滲透測試證照準備方式及心得分享 https://medium.com/@ChadSecurity/%E9%97%9C%E6%96%BCec-council-cpent%E5%92%8Clpt-master%E6%BB%B2%E9%80%8F%E6%B8%AC%E8%A9%A6%E8%AD%89%E7%85%A7%E6%BA%96%E5%82%99%E6%96%B9%E5%BC%8F%E5%8F%8A%E5%BF%83%E5%BE%97%E5%88%86%E4%BA%AB-efb63de00a8d 深度解析 CPENT 考試心得、以及與 OSCP 的比較 https://reurl.cc/41eL8v EC-Council CPENT v1 滲透測試認證 – 內容及心得分享 https://hackercat.org/pentesting/ec-council-cpent-v1-experience-review CPENT 從暴力到破解 https://hackmd.io/@3WAsoRFgSlyy7pm10p60kg/ByO0zs295 Ec-Council CPENT心得 - 資安菜鳥從CEH到LPT Master https://4hsienyang.medium.com/cpent-lpt-master-ccaebf2dbc7f CPENT考試心得分享：一次拿到 LPT 滲透測試大師認證 https://ucom.uuu.com.tw/web/Testimony/Article/4404 kaizensecurity/CPENT https://github.com/kaizensecurity/CPENT/tree/master CPENT : Pentesting like NO OTHERS ! https://www.linkedin.com/pulse/cpent-pentesting-like-others-belly-rachdianto/ Journey of My CPENT Exam https://medium.com/techiepedia/journey-of-my-cpent-exam-3a5d7ee6d917 [備考心得]CompTIA Security+ (SY0–601) 上篇 https://reurl.cc/M053DK [備考心得]CompTIA Security+ (SY0–601) 下篇 https://reurl.cc/M053Gv comptia-security-plus https://github.com/ajfuto/comptia-security-plus security-plus https://github.com/fjavierm/security-plus CompTIA Security+ Certification Practice Test Questions https://www.examcompass.com/comptia/security-plus-certification/free-security-plus-practice-tests#google_vignette 不只是工程師才要懂的 App 資訊安全：取得資安檢測合格證書血淚史（iT邦幫忙鐵人賽系列書） https://news.pchome.com.tw/living/books/20220202/index-64375841669874292009.html OSEP (Evasion Techniques and Breaching Defenses (PEN-300) 心得分享 https://hackmd.io/@henry-ko/HyQ56e8eF OSCP（Offensive Security Certified Professional） https://github.com/0x584A/oscp-notes/tree/master ISACA Certified Information Systems Auditor® (CISA) 國際電腦稽核師認證準備歷程心得、申請流程分享- 2023年 https://reurl.cc/aVLoX9 Learn NIST Inside Out With 21 Hours of Training @ 86% OFF https://thehackernews.com/2022/06/learn-nist-inside-out-with-21-hours-of.html 駭客與國家: 網路攻擊與地緣政治新常態 The hacker and the state: cyber attacks and the new normal of geopolitic https://reurl.cc/D3nKKj Practical Network Penetration Tester (PNPT) Certification Review https://tmc222.medium.com/practical-network-penetration-tester-pnpt-certification-review-4280e4e164df WUSON常用的基本詞彙 https://choson.lifenet.com.tw/?p=1958 證照仍是學習資安基本功的主要管道，有專家打造「資安證照地圖」 https://www.ithome.com.tw/news/156754 用證照證明自己實力之餘，更應將證照視為督促學習的最大動力 https://www.ithome.com.tw/news/156756 打破證照誤解與迷思，資安專家帶你釐清資安證照的意義 https://www.ithome.com.tw/news/156755 Accelerate Your Career with the Global Leader in Cyber Security Training https://www.sans.org/mlp/promo-partnership-hacker-news/ 6.近期資安活動及研討會 WordPress - 桃園午茶小聚 Linner Meetup #28 2023/9/16 https://www.meetup.com/taoyuan-wordpress-meetup/events/295803043/ [GDG] Artificial Intelligence Information Security Day 2023/9/16 https://gdg-taipei.kktix.cc/events/artificial-intelligence-information-security-day 史諾登事件十週年，我們仍在找尋隱私與安全之平衡點 2023/9/20 https://www.twsig.tw/20230920/ SyntaxError 2023/9/20 https://www.meetup.com/pythonhug/events/295730605/ 2023金融資安發展論壇 2023/9/22 https://www.informationsecurity.com.tw/seminar/2023_finance/ 從 MLOps 到 LLMOps 的混合雲實踐 2023/9/25 https://www.meetup.com/rladies-taipei/events/295452194/ 四個月考過CCNA，成為網路工程師 2023/9/27 https://www.accupass.com/event/2308280820492735100520 【ACSI安碁資訊】上雲後的下一步——如何逐步建構雲端防護 2023/9/28 https://www.accupass.com/event/2307270328312367680900 Hou.Sec.Con 2023/10/12 ~ 2023/10/13 https://web.cvent.com/event/76d46ccb-fe00-4fe5-ba46-e4a77c807f21/summary Taipei DevOps User Group Launch Event 2023/10/13 https://www.meetup.com/taipei-devops-user-group/events/295716641/ 國家高速網路與計算中心 平行計算程式設計基礎課程 2023/10/17 https://edu.nchc.org.tw/course/one_course_introduction.asp?lms_auto_course_id=4033&from_course_list_url=homepage OCF 培訓活動: 如何建立安全的網路架構 II 2023/10/21 https://ocftw.kktix.cc/events/ocftot2023 (ISC)2 SECURITY CONGRESS LEAD WITH CONFINDENCE 2023/10/25 ~ 2023/10/27 https://www.isc2.org/Congress-2023 Web應用滲透測試 2023/11/9 ~ 2023/11/10 https://www.chtti.cht.com.tw/general/course_info.jsp?activity_id=631 【亞洲最具指標供應鏈高峰會】Supply Chain Summit 2023 2023/11/14 ~ 2023/11/15 https://www.accupass.com/event/2307070154211343470512 【Monosparta】②⓪②④ 第一梯次 軟體開發實戰訓練營➠線上說明會 2024/1/17 https://trunk-studio.kktix.cc/events/monosparta-202401