資安事件新聞週報 2022/12/19 ~ 2022/12/23

###### tags: `資安事件新聞週報` # 資安事件新聞週報 2022/12/19 ~ 2022/12/23 1.重大弱點漏洞/後門/Exploit/Zero Day CISA Alert: Veeam Backup and Replication Vulnerabilities Being Exploited in Attacks https://thehackernews.com/2022/12/cisa-alert-veeam-backup-and-replication.html 執行Spring Boot的Akamai應用程式防火牆恐被繞過，遠端執行任意程式碼 https://h1pmnh.github.io/post/writeup_spring_el_waf_bypass/ 4至5年前修補的思科產品漏洞出現攻擊行動 https://www.securityweek.com/cisco-warns-many-old-vulnerabilities-being-exploited-attacks 新發現的 Python 惡意軟體，會在 VMware ESXi 伺服器開啟遠端遙控後門 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10248 VMware ESXi 處理網絡套接字的方式中存在內存損壞漏洞 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2022-31696 vRealize Network Insight (vRNI) http://nvd.nist.gov/nvd.cfm?cvename=CVE-2022-31702 citrix application_delivery_controller_firmware http://nvd.nist.gov/nvd.cfm?cvename=CVE-2022-27518 Samba Issues Security Updates to Patch Multiple High-Severity Vulnerabilities https://thehackernews.com/2022/12/samba-issues-security-updates-to-patch.html Samba修補高風險漏洞，若不更新恐導致電腦被駭客控制 https://securityaffairs.co/wordpress/139760/hacking/samba-multiple-flaws.html 針對9月修補的CVE-2022-37958漏洞，微軟提高其風險評分 https://securityaffairs.co/wordpress/139709/hacking/microsoft-revised-cve-2022-37958-rate.html 微軟12月安全性更新造成Hyper-V VM啟動失敗，緊急釋出例外更新修復 https://learn.microsoft.com/en-us/windows/release-health/windows-message-center#2988 Microsoft Details Gatekeeper Bypass Vulnerability in Apple macOS Systems https://thehackernews.com/2022/12/microsoft-details-gatekeeper-bypass.html 思科揭露Ghost CMS存在兩個漏洞 https://thehackernews.com/2022/12/two-new-security-flaws-reported-in.html Two New Security Flaws Reported in Ghost CMS Blogging Software https://thehackernews.com/2022/12/two-new-security-flaws-reported-in.html Passwordstate密碼管理方案修補多個嚴重漏洞 https://www.modzero.com/static/MZ-22-03_Passwordstate_Security_Disclosure_Report-v1.0.pdf 2022年MITRE CNA成員增加超過50個 https://www.securityweek.com/over-50-new-cve-numbering-authorities-announced-2022?&web_view=true 熱門猜字遊戲網站Wordle存在API漏洞 https://siliconangle.com/2022/12/19/api-vulnerabilities-wordle-exposed-answers-opened-door-potential-hacking/ 二手樂高市集網站API存在漏洞，恐讓駭客挾持帳號 https://salt.security/blog/missing-bricks-finding-security-holes-in-lego-apis 臉書祭出30萬美元RCE漏洞抓漏獎金 https://about.fb.com/news/2022/12/metas-bug-bounty-program-2022/ 駭客發動 Fortinet SSL-VPN 弱點攻擊! 請管理者盡快更新 https://www.cc.ntu.edu.tw/chinese/cert/cert20221221.asp IBM Db2U 3.5、4.0 和 4.5 容易受到跨站點請求偽造的影響 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2022-41296 2.銀行/金融/保險/證券/支付系統/金融監理新聞及資安 Fin7 Unveiled: A deep dive into notorious cybercrime gang https://www.prodaft.com/resource/detail/fin7-unveiled-deep-dive-notorious-cybercrime-gang FIN7 Cybercrime Syndicate Emerges as a Major Player in Ransomware Landscape https://thehackernews.com/2022/12/fin7-cybercrime-syndicate-emerges-as.html Phishing Attacks Impersonating Famous Korean Banking Apps https://asec.ahnlab.com/en/44680/ 金融木馬「教父」近一年鎖定400家銀行與加密貨幣交易所用戶 https://blog.group-ib.com/godfather-trojan GodFather Android Banking Trojan Targeting Users of Over 400 Banking and Crypto Apps https://thehackernews.com/2022/12/godfather-android-banking-trojan.html 安卓木馬BrasDex鎖定巴西銀行用戶而來 https://www.threatfabric.com/blogs/brasdex-a-new-brazilian-ats-malware.html 集保公開「營運持續管理」落實與精進的經驗，強調外部支援單位磨合 https://www.ithome.com.tw/news/154800 玉山銀行攜手微軟打造雲端技術人才 https://news.microsoft.com/zh-tw/esun-bank-microsoft/ 『華南永昌證券』12月27日APP換版公告 https://www.entrust.com.tw/entrust/news/in.do?id=20221222104233930932 勒索病毒、金融詐騙與日俱增！國泰世華如何透過三道防線嚴守資安危機 https://news.wearn.com/c1177166.html 引領金融創新，開發金控攜手Red Hat從三大方向加速轉型 https://www.bnext.com.tw/article/73307/redhat202212 金融業明年金檢重點大股東干政、資安、防詐入列 https://udn.com/news/story/7239/6860041 金管會明年金檢重點出爐緊盯業者財務韌性與投資風險 https://news.cnyes.com/news/id/5045382 出國全靠信用卡，真可以不用帶現金嗎 https://www.cardu.com.tw/message/detail.php?48291 3.電子支付/行動支付/pay/資安駭Sim卡截取認證碼不法徒轉盜電子錢包 https://reurl.cc/33pG6M 軟銀日本三網站　2023整合用戶資料拚服務 https://www.digitimes.com.tw/iot/article.asp?id=0000652784_F726E9Y39GV5UM3GEDHUJ 虛擬健保卡串接 967 家特約院所！APAY、街口支付上線完善金流 https://technews.tw/2022/12/13/cash-flow/ 全聯全支付攻下台鐵、特力集團通路 https://ctee.com.tw/news/industry/761661.html Pay戰白熱化！只有3個錢包能活下來，55.9%選擇關鍵是它 https://www.bnext.com.tw/article/73353/mastercard-annual-report-2022q4 數位車牌化身電子支付工具！它如何讓你的生活變得更安全、更便利 https://www.businesstoday.com.tw/article/category/183015/post/202212160020/ 悠遊卡公司明年1/3興櫃擬拓展金融業務 https://reurl.cc/WqMjWx Z世代金融觀！難離電子支付、勇於投資　知識多來自「這」 https://news.tvbs.com.tw/money/1995483 4.加密貨幣/數位貨幣/挖礦/區塊鍊/智能合約/WEB3 資安 2度獲選台灣區塊鏈最有影響力人物／涉吸金數億 Steaker創辦人遭約談 https://news.ltn.com.tw/news/society/paper/1558491 中心化交易所還靠普嗎？資安公司教你如何安全存放加密資產 ft. SecuX Alice & Woody https://open.firstory.me/story/clbzdh0mc00hi010g1jvigcdd 區塊鏈寒流發威！美國最大上市礦業公司Core Scientific聲請破產 https://www.bnext.com.tw/article/73373/bitcoin-miner-core-scientific-filing-for-bankruptcy-will-keep-mining 報告：DeFi、NFT和區塊鏈遊戲推動整個行業的DApp使用 https://news.cnyes.com/news/id/5043471 最常見的 DeFi 經濟模型攻擊：幣價操縱、預言機錯誤、槓桿清算… https://www.blocktempo.com/review-various-types-of-defi-attacks/ Raydium發布漏洞補償提案，稱有足夠協議收入補償用戶 https://news.cnyes.com/news/id/5043462 北韓竊虛擬貨幣手法達世界級　南韓國情院估：近5年全球遭竊近36億台幣 https://www.taisounds.com/Global/Top-News/NEA/uid5234879205 5.資安事件新聞 A.病毒木馬 / 殭屍網路 / 勒索軟體 / Adware /APT /後門程式/IOC Sophos : 已有數位憑證簽章的惡意驅動程式可攻陷EDR後發動勒索軟體攻擊 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10250 研究人員發現使用硬體斷點來規避EDR的新技術，許多業者系統可被Blindside技術繞過 https://cymulate.com/blog/blindside-a-new-technique-for-edr-evasion-with-hardware-breakpoints 多倫多兒童醫院遭勒索軟體攻擊 https://www.itworldcanada.com/article/breaking-news-toronto-childrens-hospital-confirms-it-was-hit-by-ransomware/519357 英國衛報疑遭勒索軟體攻擊 https://www.theguardian.com/media/2022/dec/21/guardian-hit-by-serious-it-incident-believed-to-be-ransomware-attack 德國鋼鐵工業ThyssenKrupp AG遭網路攻擊 https://securityaffairs.co/wordpress/139870/hacking/thyssenkrupp-targeted-cyberattack.html 勒索軟體駭客利用新的攻擊手法OWASSRF，針對Exchange下手 https://www.crowdstrike.com/blog/owassrf-exploit-analysis-and-recommendations/ 駭客透過PyPI套件庫散播竊密軟體W4SP變種 https://blog.phylum.io/phylum-discovers-new-stealer-variants-in-burgeoning-pypi-supply-chain-attack 竊密軟體RisePro透過惡意軟體服務PrivateLoader散播 https://flashpoint.io/blog/risepro-stealer-and-pay-per-install-malware-privateloader/ 德國旅館連鎖集團H-Hotels遭Play勒索軟體攻擊 https://www.bleepingcomputer.com/news/security/play-ransomware-claims-attack-on-german-hotel-chain-h-hotels/ 殭屍網路軟體MCCrash以不同方式滲透與綁架Windows、Linux電腦與物聯網設備，隨後將這些裝置用於DDoS攻擊 https://www.microsoft.com/en-us/security/blog/2022/12/15/mccrash-cross-platform-ddos-botnet-targets-private-minecraft-servers/ Nitol DDoS Malware Installing Amadey Bot https://asec.ahnlab.com/en/44504/ Qakbot Being Distributed via Virtual Disk Files (*.vhd) https://asec.ahnlab.com/en/44662/ New Ransomware Strains Emerging from Leaked Conti’s Source Code https://blog.cyble.com/2022/12/22/new-ransomware-strains-emerging-from-leaked-contis-source-code/ Custom-Branded Ransomware: The Vice Society Group and the Threat of Outsourced Development https://www.sentinelone.com/labs/custom-branded-ransomware-the-vice-society-group-and-the-threat-of-outsourced-development/ Stolen certificates in two waves of ransomware and wiper attacks https://securelist.com/ransomware-and-wiper-signed-with-stolen-certificates/108350/ New Ransomware Strains Emerging from Leaked Conti’s Source Code https://blog.cyble.com/2022/12/22/new-ransomware-strains-emerging-from-leaked-contis-source-code/ Malicious Macros Adapt to Use Microsoft Publisher to Push Ekipa RAT | Trustwave https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/malicious-macros-adapt-to-use-microsoft-publisher-to-push-ekipa-rat/ Gamaredon - Threat Actor https://blog.talosintelligence.com/2021/02/gamaredonactivities.html Threat Spotlight: XLLing in Excel - threat actors using malicious add-ins https://blog.talosintelligence.com/xlling-in-excel-malicious-add-ins/ CVE-2022-41040 and CVE-2022-41082 – zero-days in MS Exchange https://securelist.com/cve-2022-41040-and-cve-2022-41082-zero-days-in-ms-exchange/108364/ SentinelSneak: Malicious PyPI module poses as security software development kit https://blog.reversinglabs.com/blog/sentinelsneak-malicious-pypi-module-poses-as-security-sdk Twitter Feed - 500mk500 - 15-12-2022 https://otx.alienvault.com/pulse/639bb546789375ed6512b326 Trojanized Windows 10 Installer Used in Cyberattacks Against Ukrainian Government Entities https://thehackernews.com/2022/12/trojanized-windows-10-installer-used-in.html Minecraft Servers Under Attack: Microsoft Warns About Cross-Platform DDoS Botnet https://thehackernews.com/2022/12/minecraft-servers-under-attack.html 惡意軟體Glupteba濫用區塊鏈發動攻擊 https://www.nozominetworks.com/blog/tracking-malicious-glupteba-activity-through-the-blockchain/ Glupteba Botnet Continues to Thrive Despite Google's Attempts to Disrupt It https://thehackernews.com/2022/12/glupteba-botnet-continues-to-thrive.html New Agenda Ransomware Variant, Written in Rust, Aiming at Critical Infrastructure https://thehackernews.com/2022/12/new-agenda-ransomware-variant-written.html Beware: Cybercriminals Launch New BrasDex Android Trojan Targeting Brazilian Banking Users https://thehackernews.com/2022/12/beware-cybercriminals-launch-new.html KmsdBot Botnet Suspected of Being Used as DDoS-for-Hire Service https://thehackernews.com/2022/12/kmsdbot-botnet-suspected-of-being-used.html Raspberry Robin Worm Strikes Again, Targeting Telecom and Government Systems https://thehackernews.com/2022/12/raspberry-robin-worm-strikes-again.html Ransomware Hackers Using New Way to Bypass MS Exchange ProxyNotShell Mitigations https://thehackernews.com/2022/12/ransomware-hackers-using-new-way-to.html 烏克蘭軍事情報系統Delta遭到竊密軟體攻擊 https://cert.gov.ua/article/3349703 Ukraine's DELTA Military System Users Under Attack from Info Stealing Malware https://thehackernews.com/2022/12/ukraines-delta-military-system-users.html 新興Zerobot殭屍網路威脅擴大，新鎖定7個重大漏洞 https://www.microsoft.com/en-us/security/blog/2022/12/21/microsoft-research-uncovers-new-zerobot-capabilities/ Zerobot Botnet Emerges as a Growing Threat with New Exploits and Capabilities https://thehackernews.com/2022/12/zerobot-botnet-emerges-as-growing.html 釣魚網站假冒思科及Grammarly的名義散布惡意軟體DarkTortilla https://blog.cyble.com/2022/12/16/sophisticated-darktortilla-malware-spreading-via-phishing-sites/ 哥倫比亞能源供應商EPM遭到勒索軟體BlackCat攻擊 https://www.bleepingcomputer.com/news/security/colombian-energy-supplier-epm-hit-by-blackcat-ransomware-attack/ Inside the IcedID BackConnect Protocol https://www.team-cymru.com/post/inside-the-icedid-backconnect-protocol Vidar Stealer Exploiting Various Platforms https://asec.ahnlab.com/en/44554/ Vice Society Ransomware Attackers Adopt Robust Encryption Methods https://thehackernews.com/2022/12/vice-society-ransomware-attackers-adopt.html B.行動安全 / iPhone / Android /穿戴裝置 /App / 5G / 即時通訊 Facebook Cracks Down on Spyware Vendors from U.S., China, Russia, Israel, and India https://thehackernews.com/2022/12/facebook-cracks-down-on-spyware-vendors.html 當心即時通訊聊天截圖洩露OTP驗證碼，台灣大哥大表示接獲客戶通報有此狀況 https://www.cna.com.tw/news/ahel/202212220117.aspx 研究人員揭露macOS漏洞Achilles，能繞過應用程式檢測機制Gatekeeper https://www.microsoft.com/en-us/security/blog/2022/12/19/gatekeepers-achilles-heel-unearthing-a-macos-vulnerability/ 蘋果修補可繞過Gatekeeper安全機制的新漏洞，微軟揭露相關細節 https://www.ithome.com.tw/news/154807 食安有問題得下架 App資安有問題卻不必下架？數據中心在海外刷抖音個資恐全都露 https://udn.com/news/story/6852/6857515 C.事件 / 駭客 / DDOS / APT / 雲端/ 暗網/ 徵才 / 國際資安事件 / 資安人力資安需求高漲人才嚴重不足 https://ctee.com.tw/news/tech/778325.html 被馬斯克「招安」到推特當實習生的天才駭客Geohot，做不到六週已從Twitter辭職 https://www.techbang.com/posts/102636-prominent-iphone-and-ps-hacker-geohot-has-confirmed-his 微軟Cyber Signals報告指出，需留意關鍵基礎架構風險上升的現況 https://query.prod.cms.rt.microsoft.com/cms/api/am/binary/RE5daTD 阿里旗下RedMart遭新加坡當局罰款7.2萬坡元 https://news.cnyes.com/news/id/5044229 香港網絡保安新生代奪旗挑戰賽2022　培育新一代網絡保安人才 https://www.hk01.com/article/849550?utm_source=01articlecopy&utm_medium=referral 日本政治團體遭到駭客MirrorFace鎖定，在眾議院選舉前進行網釣攻擊 https://www.welivesecurity.com/2022/12/14/unmasking-mirrorface-operation-liberalface-targeting-japanese-political-entities/ 俄羅斯駭客企圖入侵北約國家的煉油廠 https://unit42.paloaltonetworks.com/trident-ursa/ 法國醫療業今年下半遭遇兩次重大資安事件，該國政府祭出強化安全新承諾 https://www.interieur.gouv.fr/actualites/communiques/de-nouveaux-engagements-pour-renforcer-cybersecurite-des-etablissements-de 美國FBI威脅情資交換平臺InfraGard遭駭，8.7萬成員資料一度流入駭客論壇 https://www.hackread.com/hacker-halt-sale-fbi-infragard-database/ 美國白宮簽署量子運算網路安全準備法案（H.R. 7535），以實踐後量子密碼學過渡計畫 https://www.darkreading.com/risk/biden-signs-post-quantum-cybersecurity-guidelines-into-law 美國司法部起訴書透露紐約JFK機場計程車調度系統遭駭事件，網路犯罪者藉改變排班順序牟利 https://www.justice.gov/usao-sdny/pr/two-men-arrested-conspiring-russian-nationals-hack-taxi-dispatch-system-jfk-airport 美19州禁TikTok 台續蒐集資料專案審視 https://reurl.cc/DXLam5 針對兒童、青少年網路性勒索威脅，美政府發布國家公共安全警報 https://www.ice.gov/news/releases/hsi-federal-partners-issue-national-public-safety-alert-sextortion-schemes 惡意PyPI套件假冒資安公司名義，竊取開發者電腦資料 https://blog.reversinglabs.com/blog/sentinelsneak-malicious-pypi-module-poses-as-security-sdk Researchers Discover Malicious PyPI Package Posing as SentinelOne SDK to Steal Data https://thehackernews.com/2022/12/researchers-discover-malicious-pypi.html The Rise of the Rookie Hacker - A New Trend to Reckon With https://thehackernews.com/2022/12/the-rise-of-rookie-hacker-new-trend-to.html 美國聯邦政府將於2031年停用SHA-1演算法 https://www.ithome.com.tw/news/154769 Goodbye SHA-1: NIST Retires 27-Year-Old Widely Used Cryptographic Algorithm https://thehackernews.com/2022/12/goodbye-sha-1-nist-retires-27-year-old.html Okta說明程式原始碼遭竊，今年第三起資安事故 https://sec.okta.com/articles/2022/12/okta-code-repositories Hackers Breach Okta's GitHub Repositories, Steal Source Code https://thehackernews.com/2022/12/hackers-breach-oktas-github.html Ex-Twitter employee Gets 3.5 Years Jail for Spying on Behalf of Saudi Arabia https://thehackernews.com/2022/12/ex-twitter-employee-gets-35-years-jail.html Russian Hackers Targeted Petroleum Refinery in NATO Country During Ukraine War https://thehackernews.com/2022/12/russian-hackers-target-major-petroleum.html 年後轉職！北市府釋133名職缺最高起薪54K https://news.ttv.com.tw/news/11112220029200N 管理部主管 https://www.104.com.tw/job/7umvw 資安研究員 https://reurl.cc/nZ4kLl 萬能科技大學圖書資訊中心誠聘約僱事務員 https://job.taiwanjobs.gov.tw/Internet/jobwanted/JobDetail.aspx?EMPLOYER_ID=301098&HIRE_ID=11662929 D.資料外洩/個資法/GDPR/網路詐騙/網路釣魚/盜刷/假新聞/網路霸凌/帳號安全 Meddler-in-the-Middle Phishing Attacks Explained https://unit42.paloaltonetworks.com/meddler-phishing-attacks/ FTC Fines Fortnite Maker Epic Games $275 Million for Violating Children's Privacy Law https://thehackernews.com/2022/12/ftc-fines-fortnite-maker-epic-games-275.html FBI警告網路犯罪者正利用搜尋引擎廣告、假冒品牌業者，引誘民眾上當 https://www.ic3.gov/Media/Y2022/PSA221221 LastPass發布安全事件公告，客戶加密密碼資料庫備份遭存取 https://blog.lastpass.com/2022/12/notice-of-recent-security-incident/ LastPass Admits to Severe Data Breach, Encrypted Password Vaults Stolen https://thehackernews.com/2022/12/lastpass-admits-to-severe-data-breach.html AI機器人ChatGPT可用於社交工程攻擊，Check Point揭露能以此產生夾帶惡意程式碼的釣魚信攻擊手法 https://research.checkpoint.com/2022/opwnai-ai-that-can-save-the-day-or-hack-it-away/ 中國電動車業者蔚來傳出車主資料外洩事故，對方向該廠商勒索225萬美元比特幣封口費 https://ir.nio.com/news-events/news-releases/news-release-details/nio-inc-promptly-responds-data-leakage 蔚來40萬用戶個資被竊遭駭客勒索逾200萬美元 https://www.ntdtv.com/b5/2022/12/22/a103603939.html 運動投注網站DraftKings證實資料外洩，6.7萬賭客個資曝光 https://www.bleepingcomputer.com/news/security/draftkings-warns-data-of-67k-people-was-exposed-in-account-hacks/ 社群網站分析平臺Social Blade證實資料外洩 https://www.bleepingcomputer.com/news/security/social-blade-confirms-breach-after-hacker-posts-stolen-user-data/ 餐廳顧客管理平臺SevenRooms證實資料外洩 https://www.bleepingcomputer.com/news/security/restaurant-crm-platform-sevenrooms-confirms-breach-after-data-for-sale/ T-Mobile門市店長入侵電信集團內部系統破解手機牟利，遭判10年監禁 https://www.bleepingcomputer.com/news/security/t-mobile-hacker-gets-10-years-for-25-million-phone-unlock-scheme/ 美國食品業者成為駭客發動BEC攻擊的目標 https://www.ic3.gov/Media/News/2022/221216.pdf 偽冒國家資通安全會報技服中心的攻擊郵件流竄中 https://www.netadmin.com.tw/netadmin/zh-tw/snapshot/80BFFC1C504A432F9260F6D166DE7037 澳洲對重大網路攻擊後的資料洩露行為加重處罰 https://blog.twnic.tw/2022/12/23/25198/ Researchers Warn of Kavach 2FA Phishing Attacks Targeting Indian Govt. Officials https://thehackernews.com/2022/12/researchers-warn-of-kavach-2fa-phishing.html E.研究報告/工具 2022年臺灣APT攻擊研究大公開，TeamT5觀察到APT攻擊行動109起，受駭單位有26個 https://www.ithome.com.tw/news/154758 Mandiant揭露針對2022年美國中期選舉的影響行動 https://www.mandiant.com/resources/blog/information-operations-2022-midterm-elections 不只ChatGPT有遭濫用風險，Check Point揭露結合Codex可導致攻擊門檻降低的情境 https://research.checkpoint.com/2022/opwnai-ai-that-can-save-the-day-or-hack-it-away/ 學習資安的好地方 (連結大全) https://ithelp.ithome.com.tw/articles/10309256 資安議題—公司用的「人資系統」安全嗎 https://www.thenewslens.com/article/178497 Cyber Security Is Not a Losing Game – If You Start Right Now https://thehackernews.com/2022/12/cyber-security-is-not-losing-game-if.html Cybercrime (and Security) Predictions for 2023 https://thehackernews.com/2022/12/cybercrime-and-security-predictions-for.html Hunting Emotet Made Easy with EclecticIQ Endpoint Response https://medium.com/eclecticiq/hunting-emotet-made-easy-with-eclecticiq-endpoint-response-caef410772c8 Creating Trojan Virus in 5 minutes https://medium.com/@s12deff/creating-trojan-virus-in-5-minutes-480723077b49 Never have separate sign-in routes https://medium.com/@alexey.inkin/never-have-separate-sign-in-routes-7c9a6dd4dc7c Building a Python Interpreter inside ChatGPT https://levelup.gitconnected.com/building-a-python-interpreter-inside-chatgpt-49251af35fea Google mail Hacking — Ghunt V2 (Gmail OSINT) https://systemweakness.com/google-mail-hacking-ghunt-v2-gmail-osint-6c76ce78ad35 How to Succeed in Bug Bounty https://praveenjalasutram.medium.com/how-to-succeed-in-bug-bounty-9b9ff5d0542f Dynamic Multiple Base URL with Annotations | Android https://proandroiddev.com/dynamic-multiple-base-url-with-annotations-android-f3af03e3cd4 URL Validation Bypass Using Browser URI Normalization https://marxchryz.medium.com/url-validation-bypass-using-browser-uri-normalization-cf545d33d13f FrodoPIR: New Privacy-Focused Database Querying System https://thehackernews.com/2022/12/frodopir-new-privacy-focused-database.html F.商業 GitHub Announces Free Secret Scanning for All Public Repositories https://thehackernews.com/2022/12/github-announces-free-secret-scanning.html GitHub釋出免費憑證掃描工具、新增5類用戶強制啟用2FA https://www.ithome.com.tw/news/154779 GitHub為公開儲存庫提供秘密掃描功能 https://www.ithome.com.tw/news/154767 Google在臺闡述其零信任防禦原則，聚焦以身分作為存取控制的安全邊界 https://www.ithome.com.tw/news/154735 Google為網頁版Gmail提供端對端加密功能 https://www.bleepingcomputer.com/news/security/google-introduces-end-to-end-encryption-for-gmail-on-the-web/ Google Takes Gmail Security to the Next Level with Client-Side Encryption https://thehackernews.com/2022/12/gmail-encryption.html Google推出 OSV-Scanner 工具以識別開源漏洞 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10243 CTO給CIO的2023年建議：戴爾全球技術長預測新技術趨勢 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10241 趨勢科技Cloud Sentry推升雲端資安可視性與有效防護 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10247 Red Hat：「安全」取代「創新」成 2023 年數位轉型投資重點 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10240 A Guide to Efficient Patch Management with Action1 https://thehackernews.com/2022/12/a-guide-to-efficient-patch-management.html The Era of Cyber Threat Intelligence Sharing https://thehackernews.com/2022/12/the-era-of-cyber-threat-intelligence.html 趨勢科技在12月中旬發布2023資安預測報告 https://www.trendmicro.com/vinfo/us/security/research-and-analysis/predictions/2023 為防範中間人攻擊，Let's Encrypt在ACME-CAA支援帳戶綁定和驗證方法綁定 https://www.ithome.com.tw/news/154782 精誠集團扶植7家ESG新創聚焦自動化與資安方案 https://www.cna.com.tw/news/afe/202212220048.aspx 資安新創TXOne Networks B+輪募資再獲1,800萬美元 https://udn.com/news/story/7240/6858196 東捷資訊衝營運攻資安、雲端智能客服 https://wantrich.chinatimes.com/news/20221222900197-420101 調查：身分仍是網路攻擊主因，企業需將身分治理列為資安防禦最前線 https://technews.tw/2022/12/22/sailpoint-it/ SailPoint：身分安全將成為網路防禦的最前線 https://www.ctimes.com.tw/DispNews-tw.asp?O=HK6CMANSLNASAA00N5 微軟強迫使用者接受廣告cookie　法國裁罰逾19億元 https://www.ftvnews.com.tw/news/detail/2022C23W0082 France Fines Microsoft €60 Million for Using Advertising Cookies Without User Consent https://thehackernews.com/2022/12/france-fines-microsoft-60-million-for.html Sophos 揭露 20 個專門黑吃黑的假地下市集 https://n.yam.com/Article/20221223276346 Accelerate Your Incident Response https://thehackernews.com/2022/12/accelerate-your-incident-response.html G.政府勞保資料傳出流入駭客論壇的消息！但勞保局表示無外洩情事 https://www.bli.gov.tw/0107558.html 為強化公部門資安，數發部長唐鳳預告A級機關將於1年內導入零信任機制 https://www.cna.com.tw/news/afe/202212160289.aspx 台灣資安人才缺口達 9 萬人，數位部如何縮小缺才困境 https://technews.tw/2022/12/22/cyber-security-in-taiwan/ 行政院資安會報26日討論中國製APP資安問題 https://www.rti.org.tw/news/view/id/2154168 唐鳳賣麵線部長換人當 https://udn.com/news/story/6656/6856372 沒防毒、連接私人裝置立委批外館資安管理太差 https://reurl.cc/NGL365 資安漏洞？部桃醫院12部主機遭駭　薛瑞元允諾3個月內改善 https://www.ettoday.net/news/20221222/2406867.htm 醫院資訊系統老舊有中資疑慮洪申翰要求衛福部改善 https://times.hinet.net/news/24321878 軍人網路洩密納陸海空軍刑法國防部評估報告出爐 https://udn.com/news/story/10930/6856943 H.工控系統/ICS/SCADA/IOT/物聯網/車聯網/電動車/人工智慧/AI/ML/人臉辨識/醫療相關資安微軟：關鍵基礎設施被攻擊風險提升，超過 75% 工業控制器有未修補嚴重漏洞 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10246 美國CISA發布6項ICS安全公告，5項屬於高風險漏洞 https://www.cisa.gov/uscert/ncas/current-activity/2022/12/20/cisa-releases-six-industrial-control-systems-advisories 電動車資安日益嚴重，供應鏈成駭客首要的攻擊目標 https://www.vicone.com/en/reports/2022-automotive-cybersecurity-report 研華、自由系統策略聯手串起從IoT邊緣到IT的資安防禦網 https://www.digitimes.com.tw/tech/dt/n/shwnws.asp?cnlid=14&cat=60&id=0000653109_1MK20OM1LGY1BALMVH70J 強力落實軟/硬體防護供應鏈全面把關車用資安 https://www.2cm.com.tw/2cm/zh-tw/recommend/6989ADA26A724040BD0FC47513D7BEB4 汽車供應鏈強化合規滿足資安要求 https://www.2cm.com.tw/2cm/zh-tw/market/A98BC06B270D47DCA9ADB44D14C2BB91?type= 物聯網成長大爆發 5G AIoT啟動資安數位轉型 https://www.2cm.com.tw/2cm/zh-tw/recommend/0E2EFD720D4E4BACA3325A12E2E96660 TXOne Networks宣布在台成立戰略中樞　加速完備工控產業資安部署 https://tw.nextapple.com/finance/20221222/98A99757F6799B1C5CD2887BE5556E85 發現固件為 120B03 的 D-Link DIR-3040 設備通過 SetTriggerLEDBlink 函數包含命令注入漏洞 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2022-44832 Cisco ATA 190 系列模擬電話適配器固件漏洞 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2022-20689 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2022-20690 Cisco IP Phone 7800 和 8800 系列固件漏洞 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2022-20968 Tenda AX12 V22.03.01.21_CN被發現漏洞 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2022-45043 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2022-45977 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2022-45980 物聯網資安晶片方案粲然齊備 https://www.2cm.com.tw/2cm/zh-tw/market/DD3CBDEDAC664644AB1D7B7BF05D20D4 資安脆弱又代價高昂的那一塊⋯⋯醫療物聯網何以曝險 https://www.hst.org.tw/tw/story/content/3404 自IC設計階段阻絕駭客　Matter全力保護IoT裝置資安 https://www.2cm.com.tw/2cm/zh-tw/market/28B876068E524DAC9B0ABF1D8C32B3C9?type= 用ChatGPT作弊：AI聊天機器人能通過AP文學考試嗎 https://www.wsj.com/video/china/zh-hant/8DD0B5C8-A90C-47B7-AECD-C6FEED4286B3.html I.教育訓練 iPAS資訊安全工程師中級筆記 https://hackmd.io/@Not/iPASInformationSecuritySpecialist iPas資安工程師證照考前研習 https://reurl.cc/GEbA3p Coursera 盤點 7 項雲端資安認證，高薪跳板都在這了！ https://buzzorange.com/techorange/2022/07/12/cloud-security-certificates/ 全球網絡安全勞動力失衡 (ISC)2免費課程及考試填補人才缺口 https://reurl.cc/m39MDj CISSP資安認證的8大領域 https://2formosa.blogspot.com/2022/12/CISSP-topic-domains.html CISSP考試心得 https://reurl.cc/KbY83j CISSP考試心得 – Benson https://reurl.cc/GbWvxd 目標導向-20天光速考過CISSP https://reurl.cc/2Zq6zn CISSP證照考試實戰心得第一章：初期準備工作 https://netmag.tw/2022/06/17/the-cissp-has-learned-the-first-chapter-in-actual-combat CPSA(CREST Practitioner Security Analyst) 資安分析師考試心得 https://tech-blog.cymetrics.io/posts/huli/crest-cpsa-prepare/ EC-Council CEH v11 考試心得、改版資訊以及準備方向 2021、2022 https://reurl.cc/1oyEM8 CEH v11 考試心得與準備方式 https://blog.sean.taipei/2022/01/ceh 深度解析 CPENT 考試心得、以及與 OSCP 的比較 https://reurl.cc/41eL8v EC-Council CPENT v1 滲透測試認證 – 內容及心得分享 https://hackercat.org/pentesting/ec-council-cpent-v1-experience-review [備考心得]CompTIA Security+ (SY0–601) 上篇 https://reurl.cc/M053DK [備考心得]CompTIA Security+ (SY0–601) 下篇 https://reurl.cc/M053Gv 不只是工程師才要懂的 App 資訊安全：取得資安檢測合格證書血淚史（iT邦幫忙鐵人賽系列書） https://news.pchome.com.tw/living/books/20220202/index-64375841669874292009.html Learn NIST Inside Out With 21 Hours of Training @ 86% OFF https://thehackernews.com/2022/06/learn-nist-inside-out-with-21-hours-of.html 駭客與國家: 網路攻擊與地緣政治新常態 The hacker and the state: cyber attacks and the new normal of geopolitic https://reurl.cc/D3nKKj Practical Network Penetration Tester (PNPT) Certification Review https://tmc222.medium.com/practical-network-penetration-tester-pnpt-certification-review-4280e4e164df WUSON常用的基本詞彙 https://choson.lifenet.com.tw/?p=1958 我國網路資安狂被駭監委申請自動調查 https://www.chinatimes.com/realtimenews/20220810003152-260407?chdtv 6.近期資安活動及研討會 OWASP Taiwan Meetup (DEC, 2022) 2022/12/27 https://www.meetup.com/taipei-owasp-meetup-group/events/290194787/ Eric 訪談 / 2022 學習心得分享 2022/12/27 https://www.meetup.com/tensorflow-user-group-taipei/events/289926252/ 年終歲末社群尾牙 2022/12/28 https://www.meetup.com/clojure-tw/events/290153342/ SyntaxError 2022/12/28 https://www.meetup.com/pythonhug/events/290474251/ HackingThursday 黑客星期四 - Week meetup Tamsui 固定聚會淡水 2022/12/29 https://www.meetup.com/hackingthursday/events/290418979/ 美國 Fintech 新創 Infra / DevOps 工程師的一天 2023/1/7 https://www.meetup.com/pyladiestw/events/290403644/ 線上資安專題講座-微軟雲端資安趨勢解析及學習資源 2023/1/7 https://isipevent.kktix.cc/events/e58d0573-copy-10 一鍵完成設備部署、資安、合規的實作秘笈 | In Taipei Apple Office 2023/1/12 https://jamf.kktix.cc/events/onetouch2023-1 【高雄限定】一日駭客體驗營｜６小時了解資安滲透 2023/1/14 https://www.accupass.com/event/2211150721101457239234