資安事件新聞週報 2022/10/3 ~ 2022/10/7

###### tags: `資安事件新聞週報` # 資安事件新聞週報 2022/10/3 ~ 2022/10/7 1.重大弱點漏洞/後門/Exploit/Zero Day 駭客攻陷微軟Exchange伺服器的RCE零時差漏洞 https://www.cisa.gov/uscert/ncas/current-activity/2022/09/30/microsoft-releases-guidance-zero-day-vulnerabilities-microsoft State-Sponsored Hackers Likely Exploited MS Exchange 0-Days Against ~10 Organizations https://thehackernews.com/2022/10/state-sponsored-hackers-likely.html GTSC Blog: NEW ATTACK CAMPAIGN UTILIZED A NEW 0-DAY RCE VULNERABILITY ON MICROSOFT EXCHANGE SERVER https://gteltsc.vn/blog/warning-new-attack-campaign-utilized-a-new-0day-rce-vulnerability-on-microsoft-exchange-server-12715.html Microsoft Blog: Customer Guidance for Reported Zero-day Vulnerabilities in Microsoft Exchange Server https://msrc-blog.microsoft.com/2022/09/29/customer-guidance-for-reported-zero-day-vulnerabilities-in-microsoft-exchange-server/ 微軟針對Exchange零時差漏洞ProxyNotShell提出的緩解措施可被輕易繞過 https://www.bleepingcomputer.com/news/security/microsoft-exchange-server-zero-day-mitigation-can-be-bypassed/ 尚未有修補程式的微軟Exchange零時差漏洞出現新亂象！有人在GitHub假借兜售概念性驗證程式進行詐騙 https://www.bleepingcomputer.com/news/security/fake-microsoft-exchange-proxynotshell-exploits-for-sale-on-github/ Exchange Online本月關閉基礎驗證，企業小心密碼潑灑攻擊 https://times.hinet.net/news/24178872 研究人員針對ProxyNotShell漏洞提出的緩解措施仍有不足之處，有人提出新的解法 https://www.bleepingcomputer.com/news/security/microsoft-updates-mitigation-for-proxynotshell-exchange-zero-days/ fProxyNotShell— the story of the claimed zero days in Microsoft Exchange https://doublepulsar.com/proxynotshell-the-story-of-the-claimed-zero-day-in-microsoft-exchange-5c63d963a9e9 ZDI-CAN-18333，ZDI-CAN-18802 https://www.zerodayinitiative.com/advisories/upcoming/ Microsoft Exchange Server 的最新 0-day 暫時解決方案可遭略過 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10109 思科修補網路系統軟體的高風險漏洞 https://www.securityweek.com/cisco-patches-high-severity-vulnerabilities-networking-software VLAN堆疊漏洞恐被用於DoS、中間人攻擊 https://kb.cert.org/vuls/id/855201 思科修補網路通訊系統的嚴重漏洞 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-expressway-csrf-sqpsSfY6 Cisco 近日發布更新以解決SD-WAN Software的安全性弱點 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sd-wan-priv-E6e8tEdF CISA Warns of Hackers Exploiting Critical Atlassian Bitbucket Server Vulnerability https://thehackernews.com/2022/10/cisa-warns-of-hackers-exploiting.html CISA Orders Federal Agencies to Regularly Track Network Assets and Vulnerabilities https://thehackernews.com/2022/10/cisa-orders-federal-agencies-to.html Chrome「5高風險漏洞」恐遭駭客入侵！Google更新補救新頭殼 https://m.match.net.tw/pc/news/technology/20220930/6820721 PHP套件管理器的元件Packagist存在重大漏洞，恐被用於供應鏈攻擊 https://blog.sonarsource.com/securing-developer-tools-a-new-supply-chain-attack-on-php/ Carlo Gavazzi停車場管理系統存在重大漏洞，攻擊者可取得完整的存取權限 https://www.securityweek.com/critical-vulnerabilities-expose-parking-management-system-hacker-attacks 研究人員發現Akamai組態錯誤配置漏洞 https://medium.com/@jacopotediosi/worldwide-server-side-cache-poisoning-on-all-akamai-edge-nodes-50k-bounty-earned-f97d80f3922b 美國公布最常被中國駭客濫用的20個安全漏洞，Apache Log4j居首位 https://www.ithome.com.tw/news/153513 最不安全瀏覽器調查！2到4名漏洞數量加總都輸第一名 https://3c.ltn.com.tw/news/51141 Atlassian旗下CI/CD解決方案的重大漏洞已出現攻擊行動 https://twitter.com/Balgan/status/1573363247239278594 研究人員公布能繞過Gatekeeper的macOS漏洞CVE-2022-32910細節 https://www.jamf.com/blog/jamf-threat-labs-macos-archive-utility-vulnerability/ 2.銀行/金融/保險/證券/支付系統/金融監理新聞及資安馬來西亞國行推打擊金融欺詐五大措施吳添泉認同並提六項建議 http://www.ocdn.com.my/news.cfm?NewsID=105301 叡揚資訊協助凱基銀行導入API安全平台強化資安 https://www.digitimes.com.tw/tech/dt/n/shwnws.asp?id=0000645669_RBY5KUGG7IQUH28JAPWTK 胖手指才會亂下單？「撞庫攻擊」也會偷偷幫你買港股 https://money.udn.com/money/story/5613/6657654 強化網路申報資安防護電子申報繳稅系統10/20起調整簡易電子認證密碼強度 https://times.hinet.net/news/24169501 兆豐金通過ISO 27001驗證，接軌國際資安管理制度 https://www.moneydj.com/kmdj/news/newsviewer.aspx?a=3f3e520d-4249-4fa8-9fcf-3a110e9312c6 護資安金融業防駭大練兵 https://ctee.com.tw/news/finance/730707.html 網路證券交易夯　資安事件更須留意 https://www.digitimes.com.tw/tech/dt/n/shwnws.asp?CnlID=1&id=0000646665_RFY59I617734BF4LECZBE 關注證券期貨市場資訊安全，安碁資訊前三季營收成長近一倍 https://today.line.me/tw/v2/article/Zayo7BN 國票金設置資訊安全長，由陳冠舟擔任 https://www.moneydj.com/kmdj/news/newsviewer.aspx?a=e1bbfabc-aff2-4302-8d66-42a4c0fb19aa 公股銀拒駭內外聯防、多管齊下 https://ctee.com.tw/news/finance/730709.html 手機報稅3.0明年登場新增現金繳稅與申請延分期功能 https://www.cna.com.tw/news/afe/202210040297.aspx 聯邦銀攜手兩大國際組織「商店快綁」服務同時上線 https://ec.ltn.com.tw/article/breakingnews/4080701 英國保險交易所勞合社疑遭到網路攻擊 https://www.reuters.com/technology/lloyds-london-investigates-possible-cyber-attack-2022-10-05/ 3.電子支付/行動支付/pay/資安防疫紓困訊息詐騙多電子支付疑洩個資 https://news.cts.com.tw/cts/general/202210/202210022093764.html PCI SSC 安全標準介紹及案例 https://www.gss.com.tw/cn/blog/pci-ssc 奠定新支付樣貌「先買後付」擴大數位金融新契機 https://view.ctee.com.tw/monetary/44972.html 狂閃退！「超級悠遊卡」上線一天加值「出槌」 https://reurl.cc/bEpx0l 防疫紓困訊息詐騙多電子支付疑洩個資 https://reurl.cc/V1VekQ FED 理事：混合工作模式、非接觸式支付或成新常態 https://technews.tw/2022/10/05/flexible-work-contactless-payments-may-be-the-new-normal/ 電子支付大戰誰會勝出 https://view.ctee.com.tw/business/44991.html 金融、科技業搶進「無感消費」 https://technews.tw/2022/10/06/bnpl/ 電支武林高手輩出！零售業跨入支付大戰，虧錢也要拚龍頭 https://technews.tw/2022/10/01/retail-enters-payment-wars/ 僵屍電子支付帳號來襲 https://talk.ltn.com.tw/article/paper/1543558 電子支付攻生活繳費磁吸用戶 https://www.chinatimes.com/newspapers/20221004000295-260208?chdtv WeChat Pay HK擬採用Visa Cybersource支付安全及欺詐管理解決方案 http://www.aastocks.com/tc/stocks/news/aafn-news/NOW.1217609/2 現金付款染疫風險高，為何台灣人仍愛用？網曝行動支付1缺點，直呼太不方便 https://www.storm.mg/lifestyle/4552778 行動支付為何無法取代現金？和電子支付差在哪？「1關鍵」讓台灣人愛用現金：有夠麻煩 https://www.businesstoday.com.tw/article/category/183030/post/202210060030/ 國保繳費再進化多2種行動支付 https://reurl.cc/8pm7r4 4.加密貨幣/數位貨幣/挖礦/區塊鍊/智能合約/WEB3 資安 OpenSea突下架所有Azuki掛單！後證實NFT平台出包、問題已解決 https://www.blocktempo.com/azukis-were-delisted-from-opensea-because-of-os-ststem-error/ OpenSea回應下架Azuki：因平台信任和安全標記系統出錯導致 https://news.cnyes.com/news/id/4968671 Web3加密錢包詳解：冷熱、公鏈、託管，千億級的基礎建設賽道 https://reurl.cc/KQgkNy BAYC #8585以777 ETH價格成交，以ETH計價排名交易記錄第三 https://news.cnyes.com/news/id/4968719 TP錢包閃兌DEX Transit Swap遭駭客攻擊，資產損失或超1500萬美元，提醒用戶取消授權 https://news.cnyes.com/news/id/4968712 TokenPocket(TP錢包)閃兌用 DEX Transit遭駭2,000萬鎂！又是合約無限授權惹的禍 https://www.blocktempo.com/transit-swap-hack-leads-to-20-million-loss/ 那些區塊鏈騙子所「教懂」我的事 https://reurl.cc/GE0VzG Aurora向兩名解決漏洞的白帽駭客各支付100萬美元Token https://news.cnyes.com/news/id/4967751 駭客組織Water Labbu入侵詐騙網站，轉走受害者的加密貨幣錢包 https://www.trendmicro.com/en_us/research/22/j/water-labbu-abuses-malicious-dapps-to-steal-cryptocurrency.html Transit Swap：駭客攻擊系代碼錯誤，已確定駭客IP、電郵地址及相關鏈上地址 https://news.cnyes.com/news/id/4968724 Bill Murray的NFT拍賣受駭客攻擊駭客試圖竊取800個NFT https://www.coinledge.io/detail/news_2314 Transit Swap駭客已歸還另外2612枚BNB，並保留1萬枚BNB作為漏洞賞金 https://news.cnyes.com/news/id/4969292 囂張嗆可盜更多！Transit駭客欲留1萬枚BNB作賞金，官方求再還多點… https://www.blocktempo.com/transit-hackers-keep-6-million-as-bounty/ 慢霧：Transit Swap最大駭客目前已歸還超8成被盜資金 https://news.cnyes.com/news/id/4969623 TokenPocket 閃兌服務商被盜！快檢查你開通了多少「無限授權」 https://blockcast.it/2022/10/03/infinite-approval-a-battle-between-convenience-and-security/ 元宇宙寬頻網路設施安全 https://blog.trendmicro.com.tw/?p=73952 Elliptic：2020年以來駭客已通過區塊鏈技術轉移超40億美元非法資金 https://news.cnyes.com/news/id/4970161 別讓駭客有機可乘！幣圈黑暗森林「自救指南」 https://blockcast.it/2022/10/04/ways-to-protect-your-crypto-from-hackers/ 區塊鏈偵探 ZachXBT 出動》反追攻擊 Beeple 的駭客、贓款 225 ETH流向 https://www.surviews.com/post/5499.html 韓媒：檢方已全數凍結Do Kwon轉至OKX、Kucoin的3313顆比特幣 https://www.blocktempo.com/south-korea-to-freeze-67m-of-do-kwons-funds/ 跨鏈橋遭駭、幣安智能鏈 BSC 緊急停機！估計流失約 1 億美元 https://blockcast.it/2022/10/07/binance-bsc-halts-after-potential-exploit-drains-estimated-100m/ 重磅！BNB Chain 跨鏈橋遭駭或損7.18億美元，幣安BSC全鏈已暫停 https://www.blocktempo.com/bnb-chain-cross-chain-bridge-hack-the-loss-is-suspected-to-exceed-600-million/ BNB Chain駭客已轉移近1億鎂至Fantom、以太坊！CZ：用戶資產是安全的，币圈新闻 https://reurl.cc/V1dX15 今年鏈上駭客非常積極呀 https://www.dcard.tw/f/blockchain/p/240187214 幣安遭駭客攻擊估計盜走約1億美元 https://ctee.com.tw/livenews/gj/ctee/a98628002022100713544808 區塊鏈重塑金融新疆界 CNBC解析DeFi利弊 https://news.tvbs.com.tw/focus/1927296 5.資安事件新聞 A.病毒木馬 / 殭屍網路 / 勒索軟體 / Adware /APT /後門程式/IOC 趨勢科技：勒索病毒集團攻擊 H1創2位數成長 https://times.hinet.net/news/24169093 趨勢科技警告：針對Linux系統的勒索病毒攻擊暴增75% https://www.techbang.com/posts/99907-ransomware-attacks-against-linux-surge-by-75percent-according Linux勒索軟體Cheerscrypt背後的駭客來自中國 https://blog.sygnia.co/revealing-emperor-dragonfly-a-chinese-ransomware-group 賽車製造商法拉利遭網路攻擊，疑為勒索軟體駭客RansomEXX所為 https://www.reuters.com/technology/ferrari-says-no-evidence-system-breach-ransomware-2022-10-03/ 北韓駭客Lazarus濫用Dell驅動程式散布惡意程式 https://www.welivesecurity.com/2022/09/30/amazon-themed-campaigns-lazarus-netherlands-belgium/ 駭客組織Witchetty鎖定中東政府，將惡意軟體埋藏在圖片並存放於檔案共享服務，以規避偵測 https://symantec-enterprise-blogs.security.com/blogs/threat-intelligence/witchetty-steganography-espionage 駭客威脅10/3前交錢洛聯合學區不屈服 https://www.worldjournal.com/wj/story/121359/6654186 黑客勒索要不到贖金公開洛聯合學區數據 https://reurl.cc/O4WqGR 美國洛杉磯學區LAUSD遭到勒索軟體攻擊，駭客將部分學生資料外洩 https://www.bleepingcomputer.com/news/security/ransomware-gang-leaks-data-stolen-from-lausd-school-system/ 使用勒索軟體Netwalker發動攻擊的加拿大人將面臨20年徒刑、2,150萬美元罰款 https://thehackernews.com/2022/10/canadian-netwalker-ransomware-affiliate.html 勒索軟體Royal透過電話客服入侵受害電腦 https://www.bleepingcomputer.com/news/security/new-royal-ransomware-emerges-in-multi-million-dollar-attacks/ 惡意軟體SolarMarker假冒瀏覽器更新名義散布，過程中濫用存在弱點的網站代管惡意程式 https://www.esentire.com/blog/popular-info-stealing-malware-solarmarker-is-using-watering-hole-attacks-and-fake-chrome-browser-updates-to-infect-business-professionals-warns-esentire 心懷不滿的駭客組織REvil內部人士向研究人員透露運作細節 https://www.trellix.com/en-us/about/newsroom/stories/research/dismantling-a-prolific-cybercriminal-empire.html 美國國防承包商NJVC遭勒索軟體BlackCat攻擊 https://cybernews.com/news/blackcat-breached-department-of-defense-contractor-went-offline/ 即時通訊系統Comm100的電腦版軟體遭植入木馬程式，疑中國駭客所為 https://www.crowdstrike.com/blog/new-supply-chain-attack-leverages-comm100-chat-installer/ 勒索軟體BlackByte利用含有漏洞的微星驅動程式，來停用防毒軟體 https://news.sophos.com/en-us/2022/10/04/blackbyte-ransomware-returns/ 駭客透過YouTube頻道向中國用戶散布惡意的Tor瀏覽器安裝程式 https://securelist.com/onionpoison-infected-tor-browser-installer-youtube/107627/ Akamai 2022 年上半年亞太及日本區勒索軟體報告 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10107 逾七成台灣企業供應鏈曾遭勒索病毒襲擊，遠高於全球 https://technews.tw/2022/10/04/ransomware/ 防毒軟體業者Avast發布勒索軟體Hades的解密工具 https://www.bleepingcomputer.com/news/security/avast-releases-free-decryptor-for-hades-ransomware-variants/ 國家級的網攻！針對半導體製造業的勒索軟體攻擊將持續並產生重大影響 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10110 安卓間諜軟體RatMilad鎖定中東手機竊取資料 https://blog.zimperium.com/we-smell-a-ratmilad-mobile-spyware/ 惡意軟體Bumblebee會依據受害電腦所屬網路環境，下載不同的作案工具 https://research.checkpoint.com/2022/bumblebee-increasing-its-capacity-and-evolving-its-ttps/ 後門程式Maggie鎖定微軟SQL Server而來 https://medium.com/@DCSO_CyTec/mssql-meet-maggie-898773df3b01 美國政府警告，國防單位遭駭客鎖定，透過惡意軟體CovalentStealer竊取機密 https://www.cisa.gov/uscert/ncas/alerts/aa22-277a Amazon‑themed campaigns of Lazarus in the Netherlands and Belgium https://www.welivesecurity.com/2022/09/30/amazon-themed-campaigns-lazarus-netherlands-belgium/ CrowdStrike Falcon Platform Identifies Supply Chain Attack via a Trojanized Comm100 Chat Installer https://www.crowdstrike.com/blog/new-supply-chain-attack-leverages-comm100-chat-installer/ Bumblebee: increasing its capacity and evolving its TTPs https://research.checkpoint.com/2022/bumblebee-increasing-its-capacity-and-evolving-its-ttps/ Malicious Tor Browser spreads through YouTube https://securelist.com/onionpoison-infected-tor-browser-installer-youtube/107627/ New attack campaign utilized a new 0-day RCE vulnerability on Microsoft Exchange Server https://gteltsc.vn/blog/warning-new-attack-campaign-utilized-a-new-0day-rce-vulnerability-on-microsoft-exchange-server-12715.html Bad VIB(E)s Part One: Investigating Novel Malware Persistence Within ESXi Hypervisors https://www.mandiant.com/resources/blog/esxi-hypervisors-malware-persistence DeftTorero TTPs in 2019–2021 https://securelist.com/defttorero-tactics-techniques-and-procedures/107610/ New Malware Families Found Targeting VMware ESXi Hypervisors https://thehackernews.com/2022/09/new-malware-families-found-targeting.html 駭客把惡意程式藏在微軟的Windows商標中 https://www.ithome.com.tw/news/153406 Cyber Attacks Against Middle East Governments Hide Malware in Windows Logo https://thehackernews.com/2022/09/cyber-attacks-against-middle-east.html China Chopper Webshells https://www.cisa.gov/uscert/ncas/analysis-reports/ar22-277c LockBit 3.0 Ransomware Distributed via Word Documents - ASEC BLOG https://asec.ahnlab.com/en/39242/ HyperBro Malware Samples https://www.cisa.gov/uscert/ncas/analysis-reports/ar22-277b Experts Warn of New RatMilad Android Spyware Targeting Enterprise Devices https://thehackernews.com/2022/10/experts-warn-of-new-ratmilad-android.html Canadian Netwalker Ransomware Affiliate Sentenced to 20 Years in U.S. Prison https://thehackernews.com/2022/10/canadian-netwalker-ransomware-affiliate.html Experts Warn of New RatMilad Android Spyware Targeting Enterprise Devices https://thehackernews.com/2022/10/experts-warn-of-new-ratmilad-android.html MSSQL, meet Maggie https://medium.com/@DCSO_CyTec/mssql-meet-maggie-898773df3b01 B.行動安全 / iPhone / Android /穿戴裝置 /App / 5G / 即時通訊資安拉警報！蘋果手機也「微封城」　專家提首要自保之道 https://www.nownews.com/news/5944195 iPhone不更新會怎樣？詳解iOS不要更新到最新優缺點 https://mrmad.com.tw/iphone-not-updating 臉書只剩老人在玩！祖克柏：Meta近期將大裁員　縮減公司規模 https://www.setn.com/News.aspx?NewsID=1186451 研究人員於Google Play及App Store上發現逾80款廣告詐騙程式 https://ic.cgu.edu.tw/p/406-1016-98010,r62.php?Lang=zh-tw iPhone不更新會怎樣？詳解iOS不要更新到最新優缺點 https://mrmad.com.tw/iphone-not-updating 加我賴了嗎? iPhone開共享相簿又見垃圾訊息 https://news.cts.com.tw/cts/life/202210/202210012093722.html 如何解決iPhone上的 Wi-Fi 隱私權警告 https://blog.trendmicro.com.tw/?p=74370 李濠仲專欄：因為習近平　拜登也擔心TikTok https://www.upmedia.mg/news_info.php?Type=2&SerialNo=155387 問一下中國手機號碼的資安問題 https://www.ptt.cc/bbs/MobileComm/M.1664968881.A.B5C.html C.事件 / 駭客 / DDOS / APT / 雲端/ 暗網/ 徵才 / 國際資安事件 / 資安人力下班作Coser，上班當CEO！２４歲少女成科技大廠最愛講師 https://www.cheers.com.tw/article/article.action?id=5101248 離職員工權限沒有註銷惹禍！為了要公司以高薪重新僱用，前IT系統管理員癱瘓網站及電子郵件運作 https://www.bleepingcomputer.com/news/security/fired-admin-cripples-former-employers-network-using-old-credentials/ Google在數個月內阻止了第三次破新紀錄的 DDoS 攻擊 https://blog.twnic.tw/2022/10/05/24431/ Uber前首席安全官被判妨礙FTC調查的刑事罪名成立 https://reurl.cc/vWNXR1 隱匿公司被駭還和歹徒私下協商，Uber前資安長罪名成立 https://www.justice.gov/usao-ndca/pr/former-chief-security-officer-uber-convicted-federal-charges-covering-data-breach 黑吃黑？駭客將詐騙網站受害者的加密貨幣轉至自己錢包 https://www.ithome.com.tw/news/153499 竊取美國選務數據還送往中國華裔CEO被捕 https://reurl.cc/KQajQy 駭客組織Water Labbu入侵詐騙網站，轉走受害者錢包的加密貨幣 https://www.trendmicro.com/en_us/research/22/j/water-labbu-abuses-malicious-dapps-to-steal-cryptocurrency.html 電玩業者暴雪娛樂剛正式上線的遊戲「鬥陣特攻2」出現玩家無法登入的現象，原因是該公司伺服器遭到DDoS攻擊 https://www.theverge.com/2022/10/4/23388132/overwatch-2-down-mass-ddos-attack-blizzard-president-mike-ybarra 男友媽監控手段駭客都跪了　女崩潰：刪對話、改密碼照樣被抓包 https://www.mirrormedia.mg/story/20221001web004/ 澳洲Costa公司遭到駭客攻擊 https://www.ptt.cc/bbs/Gossiping/M.1665024148.A.534.html 超尷尬！北約秘書長才拒絕烏克蘭直播畫面又遭駭 https://www.chinatimes.com/realtimenews/20221001001020-260408?chdtv 尷尬! 北約秘書長記者會直播疑遭駭插播普丁併吞儀式高喊勝利 https://reurl.cc/aGyvl9 微軟發現北韓駭客集團正將眾多開源工具當作攻擊武器 https://www.ithome.com.tw/news/153386 供應鏈攻擊再現疑中國駭客入侵加拿大企業軟體 https://www.cna.com.tw/news/aopl/202210010072.aspx 供應鏈攻擊又一例疑為中國大陸駭客侵入加拿大企業軟體 https://reurl.cc/D3561E 俄羅斯反戰駭客傳出攻擊政府網站 https://www.kyivpost.com/world/russian-citizens-wage-cyberwar-from-within.html 臉書被駭駐溫哥華處長：台加更應合作對抗資訊戰 https://times.hinet.net/news/24170983 專家：中共黑客活動激增針對美政府和公司 https://www.epochtimes.com/b5/22/10/2/n13837254.htm 中國與專制國家共謀利用上合會打擊海外異議者 https://news.ltn.com.tw/news/world/breakingnews/4076824 PwC報告：中駭客對美政府、企業攻擊增加竊密還詐騙 https://reurl.cc/D35v66 新華社批美國大搞駭客活動是全球網路安全公害 https://reurl.cc/7pxyo5 手法老練中澳防長新加坡與會期間遭駭客攻擊 https://www.chinatimes.com/realtimenews/20221005002222-260408?chdtv 「放棄台獨幻想，我們流的是中國人血液」　台驚現「統戰」翻譯筆 | https://reurl.cc/bEpzno 中共資訊戰延伸北美台外交官、加政要都遭攻擊 https://reurl.cc/7pxlxk 「需讓中國清楚對臺動武會危及政權」國安局長陳明通：習近平一定連任，臺灣要做足準備 https://watchout.tw/reports/V39jbJDcqzDv12BxhlWn 美國大型醫療組織CommonSpirit Health遭到攻擊，關閉部分IT系統 https://www.bleepingcomputer.com/news/security/commonspirit-us-nonprofit-health-system-discloses-security-incident/ FBI, CISA, and NSA Reveal How Hackers Targeted a Defense Industrial Base Organization https://thehackernews.com/2022/10/fbi-cisa-and-nsa-reveal-how-hackers.html 資安工程師 https://www.linkedin.com/jobs/view/%E8%B3%87%E5%AE%89%E5%B7%A5%E7%A8%8B%E5%B8%AB-at-kunyou-%E5%9D%A4%E4%BE%91%E7%A7%91%E6%8A%80%E8%82%A1%E4%BB%BD%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8-3293091227/?originalSubdomain=tw 數位發展部民主網絡司誠徵「資安系統分析師」1 名 https://moda.gov.tw/press/recruitment/2654 資安文字客服專員 https://job.taiwanjobs.gov.tw/Internet/jobwanted/JobDetail.aspx?R2=5&EMPLOYER_ID=528812&HIRE_ID=11495405 資訊安全管理師-TB901A https://glints.com/vn/opportunities/jobs/%E8%A6%96%E8%A8%8A%E9%9D%A2%E8%A9%A6%E8%B3%87%E8%A8%8A%E5%AE%89%E5%85%A8%E7%AE%A1%E7%90%86%E5%B8%AB-tb901a/2529335a-058a-4d5d-8ef1-f812692ebbb8 資訊安全工程師 https://glints.com/tw/opportunities/jobs/%E8%B3%87%E8%A8%8A%E5%AE%89%E5%85%A8%E5%B7%A5%E7%A8%8B%E5%B8%AB/e52e80a8-4fec-4c6a-bc03-45ad4e17baad 《總公司》資安稽核儲備主管 https://www.104.com.tw/job/7s1p4 資訊部-資安工程師 https://job.taiwanjobs.gov.tw/Internet/jobwanted/JobDetail.aspx?EMPLOYER_ID=1126031&HIRE_ID=11493123 資安顧問 https://www.104.com.tw/job/7s24o 證交所招募新血徵求資安、會計等8類32名人才 https://ec.ltn.com.tw/article/breakingnews/4077743 擁抱數位，鞏固資安：集保結算所以「人才」迎戰創新轉型 https://www.cheers.com.tw/article/article.action?id=5101247 資安管理工程師 https://www.104.com.tw/job/7s6zh D.資料外洩/個資法/GDPR/網路詐騙/網路釣魚/盜刷/假新聞/網路霸凌/帳號安全香格里拉資料外洩　私隱公署：料涉29萬港人　批評逾兩個月才通報 https://www.hk01.com/article/820997?utm_source=01articlecopy&utm_medium=referral 香格里拉集團8飯店爆資安事故顧客個資恐外洩 https://news.ltn.com.tw/news/life/breakingnews/4076098 旗下8間酒店遭入侵洩客戶資料　香格里拉：掌握涉港酒店後已通報私隱公署 https://reurl.cc/GE0V7G 美日澳防長新加坡會談　傳出飯店住房資訊全遭駭 https://www.ftvnews.com.tw/news/detail/2022A05P09M1 香格里拉飯店集團亞洲客戶資料庫遭駭，臺灣也在外洩範圍 https://times.hinet.net/news/24171924 香格里拉飯店集團旗下臺灣、香港、新加坡等8家飯店客戶資料外洩，亞洲安全會議與會者名單恐受波及 https://www.securityweek.com/shangri-la-hotels-customer-database-hacked 「香格里拉對話」飯店遭竊資陳明通被「露臉」非單一個案 https://reurl.cc/QbQ73O 國安局長訪泰照片、酒店收據為何全外洩？陳明通：泰國海關都用華為設備 https://www.chinatimes.com/realtimenews/20221006002125-260407?chdtv 陳明通遭駭翻版？澳防長見魏鳳和期間飯店遭竊資 https://reurl.cc/3YVmmM 澳防長行程被竊取立委籲民主陣營合作 https://reurl.cc/3YVmqR 拉丁美洲全遭駭墨總統病歷外洩 https://news.ltn.com.tw/news/world/paper/1543430 洩露事件後，澳洲外長要求Optus付出鉅額代價，將修法對此類事件增加罰款 https://vitomag.com/tech/pcnfyy.html 澳洲電信業者Optus證實210萬客戶的身分證字號遭竊 https://www.singtel.com/content/dam/singtel/investorRelations/stockExchange/2022/MR-20221003-OptusMediaAlert.pdf BEC Scammer Gets 25-Year Jail Sentence for Stealing Over $9.5 Million https://thehackernews.com/2022/10/bec-scammer-gets-25-year-jail-sentence.html Optus Hack Exposes Data of Nearly 2.1 Million Australian Telecom Customers https://thehackernews.com/2022/10/optus-hack-exposes-data-of-nearly-21.html 郭文貴班農閆麗夢詐騙之路——演戲式的假救援 https://reurl.cc/GE0V7x 有人在LinkedIn上自稱是財星500大企業的資安長，企圖誤導關注相關動態的人士 https://krebsonsecurity.com/2022/09/fake-ciso-profiles-on-linkedin-target-fortune-500s 俄羅斯家電聯鎖賣場DNS傳出資料外洩，1,600萬人個資流入駭客論壇 https://www.bleepingcomputer.com/news/security/russian-retail-chain-dns-confirms-hack-after-data-leaked-online/ Chrome瀏覽器的應用程式模式被用於網路釣魚攻擊 https://mrd0x.com/phishing-with-chromium-application-mode/ 防疫紓困訊息詐騙多電子支付疑洩個資 https://reurl.cc/rRW84r 推特刊登廣告竟連結兒童色情內容企業急喊卡 https://news.ltn.com.tw/news/world/breakingnews/4074480 YG動作了！Jennie手機遭駭提吿　警告網友：轉發是二次傷害 https://www.mirrormedia.mg/story/20221003edi046/ 趁美國期中選舉發動訊息戰? FBI 控中、俄等故意宣揚選舉結果不可信 https://newtalk.tw/news/view/2022-10-04/826622 期中選舉近 FBI：俄中「網攻」散布假消息 https://www.worldjournal.com/wj/story/121186/6661111 順發三吸資安管理太差了吧 https://forum.gamer.com.tw/C.php?bsn=60076&snA=7377865&tnum=2&bPage=5&last=1#down 台灣身分證、居留證上的個資太多？他們想要隱私，更想擁有選擇權 https://theinitium.com/article/20221004-taiwan-id-card-privacy-of-the-individual/ 繼Optus之後，另一家澳洲大型電信業者Telstra也傳出資料外洩事故 https://www.reuters.com/technology/australias-telstra-hit-by-data-breach-two-weeks-after-attack-optus-2022-10-04/ Telstra Telecom Suffers Data Breach Potentially Exposing Employee Information https://thehackernews.com/2022/10/telstra-telecom-suffers-data-breach.html 高調反柬埔寨詐騙會引來駭客 https://ptthito.com/marginalman/m-1665007248-a-326/ 南加多位僑領的Line被駭騙子都要求代買這樣東西 https://www.worldjournal.com/wj/story/121471/6665828 免費Wi-Fi恐遭駭客"造假" 個資全盜光 https://reurl.cc/AOZD5Z 資安小貼士：慎防誤墮登入提供圈套推送通知必需格外留神 https://www.techritual.com/2022/10/06/336426/ 沙烏地阿拉伯、阿拉伯聯合大公國、新加坡的麥當勞及肯德基客戶遭網釣攻擊鎖定 https://cloudsek.com/threatintelligence/phishing-campaigns-targeting-kfc-and-mcdonalds/ 澳洲警方逮捕利用Optus外洩資料進行簡訊詐騙的19歲青年 https://thehackernews.com/2022/10/19-year-old-hacker-arrested-for-using.html 19-Year-Old Teen Arrested for Using Leaked Optus Breach Data in SMS Scam https://thehackernews.com/2022/10/19-year-old-hacker-arrested-for-using.html Former Uber Security Chief Found Guilty of Data Breach Coverup https://thehackernews.com/2022/10/former-uber-security-chief-found-guilty.html 衛福部、中華電信、momo都有人冒用！圖解看詐騙犯罪新趨勢 https://www.bnext.com.tw/article/72010/gogolook-oct-22 構築反詐防護網　陷阱駭客從源頭斬斷詐騙產業鏈 https://forum.ettoday.net/news/2352683 微軟簡報展示服務Sway遭到濫用，駭客將其用於網釣與惡意軟體攻擊 https://www.proofpoint.com/us/blog/cloud-security/proofpoint-analyzes-potentially-dangerous-functionality-microsoft-sway-enables 美國Family Medical Center遭駭，23萬病人資料恐遭到外流 https://www.scmagazine.com/analysis/ransomware/family-medical-reports-informs-234k-patients-of-possible-data-compromise E.研究報告/工具支撐疫後新常態，CISO應關注SASE https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10105 誰說資安寫不了情書-21(MITRE ATT&ck) https://ithelp.ithome.com.tw/articles/10302497 誰說資安寫不了情書-22(ThreatHunting) https://ithelp.ithome.com.tw/articles/10303124 資安新人30 Day18 網站常見攻擊手法(二) https://ithelp.ithome.com.tw/articles/10303476 掌握敵之必攻，重新對焦整體資安防護策略 https://www.ithome.com.tw/article/153213 用Rust開發的四大優勢 https://times.hinet.net/news/24169116 數位身分證發行之資安風險 https://hackmd.io/@Aaronace/Hy7y09bSu 開發板的資安問題 https://hackmd.io/@accomdemy/rk9QbLuzi [資安]逆向工程及底層架構 https://hackmd.io/@hyu/SkPIRHzW9 111年10月第1週-01-資安教育專題（上）｜莒光園地 20221006 https://www.youtube.com/watch?v=caRVZ-_7pTA [Vtuber x 資安] Day 17 OSSTMM 開源安全測試方法手冊 https://ithelp.ithome.com.tw/articles/10303059 Day30 借用IDPRR建構資安韌性III-範例篇：從個人到公司，從心理到生理 https://ithelp.ithome.com.tw/articles/10301665?sc=iThelpR 讀書這麼多年，我們真的懂得讀書嗎？（上）：我們是如何學習的 https://www.thenewslens.com/article/174059 雲端不露白：如何建構安全的雲端資安環境 https://reurl.cc/yMVg8y CSS 衍生的資安問題(上) - 初探 CSS Ingection https://lidemy5thwbc.coderbridge.io/2022/10/03/css-injection-with-hotupdate/ CSS 衍生的資安問題(中) - 不用 Hot Update 也行 https://lidemy5thwbc.coderbridge.io/2022/10/05/css-injection-withou-hotupdate/ CSS 衍生的資安問題(下) - 我愛偷甚麼就偷甚麼 https://reurl.cc/xQr07V 30 Days writing challange https://andimh.medium.com/30-days-writing-challange-863a4aadabfc SQL use case in Business Intelligence/Data Analysis https://medium.com/@solomonbanuba/sql-use-case-in-business-intelligence-data-analysis-be9f74815519 The 5 Hardest Things to Do in SQL https://medium.com/learning-sql/the-5-hardest-things-to-do-in-sql-b626c663c3f7 9 SQL Core Concepts That Helped Me Get My First Data Analyst Job https://towardsdatascience.com/9-sql-core-concepts-that-helped-me-get-my-first-data-analyst-job-a582f892276f Edit your data directly from Power BI using PowerApps https://medium.com/@marapereira_20609/edit-your-data-directly-from-power-bi-using-powerapps-9f2d1f7d8e6d $40,000 Bounty, Authentication Bypass Techniques, Cache Poisoning, IDORs https://infosecwriteups.com/40-000-bounty-authentication-bypass-techniques-cache-poisoning-idors-password-recovery-2ec097380c57 How to choose Retention model for your product https://medium.com/@ll.ltsnk/how-to-choose-retention-model-for-your-product-4b34239082d6 Small Python script that’ll keep you “online” all day https://iman-kassim.medium.com/small-python-script-thatll-keep-you-online-all-day-cfc1984725fe Python 3.14 Will be Faster than C++ https://towardsdatascience.com/python-3-14-will-be-faster-than-c-a97edd01d65d 5 Killer Automation Scripts in Python https://medium.com/codex/5-killer-automation-scripts-in-python-42c273fc37c4 .NET 7: Microsoft Reveals New ASP.NET Core Features https://medium.com/bytehide/net-7-microsoft-reveals-new-asp-net-core-features-905fed487ae6 GitLab Bans Employees From Using Windows https://medium.com/codex/gitlab-bans-employees-from-using-windows-a6a0190acc32 Hackers Have Taken Over An Abandoned Satellite https://vertrose.medium.com/hackers-have-taken-over-an-abandoned-satellite-45f9efa90795 Top Cybersecurity Projects With Source Code https://naemazam.medium.com/top-cybersecurity-projects-with-source-code-4c06dc74ad9a 7 Best Productivity Apps For Linux https://medium.com/beyond-productivity/8-best-productivity-apps-for-linux-60fe29eb0f42 Pay What You Want for This Collection of White Hat Hacking Courses https://thehackernews.com/2022/10/pay-what-you-want-for-this-collection.html Back to Basics: Cybersecurity's Weakest Link https://thehackernews.com/2022/10/back-to-basics-cybersecuritys-weakest.html ProxyNotShell – the New Proxy Hell https://thehackernews.com/2022/10/proxynotshell-new-proxy-hell.html Intrusion Detection System (IDS) and Its Detailed Working Function – SOC/SIEM https://gbhackers.com/intrusion-detection-system-ids-2/ Want More Secure Software? Start Recognizing Security-Skilled Developers https://thehackernews.com/2022/10/want-more-secure-software-start.html F.商業仁大資訊 EDR 結合 HP 商用桌機，有效阻擋惡意軟體來襲，讓端點威脅無所遁形 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10079 IBM發布《企業轉型指數：上雲現況》報告，資安隱憂居上位 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10098 趨勢科技提2022四大網路陷阱，推最新防毒軟體PC-cillin 2023 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10099 儲存系統添功能　強化資料與存取安全破解勒索攻擊　儲存體自抗刪改 https://www.netadmin.com.tw/netadmin/zh-tw/market/DC03A36AD8154E2FACD28977AD371928 遏止資安攻擊出招研華攜手慧景通過VPC資安認證防護 http://www.ctimes.com.tw/DispNews-tw.asp?O=HK6A39FISGOSAA00N0 求「資」若渴！叡揚資訊首屆「安全達人養成計畫」吸引超過110家業界人士參與參賽者敲碗第二屆 https://times.hinet.net/news/24174147 資安需求大增安碁資訊9月與第3季營收創高 https://www.cna.com.tw/news/afe/202210050247.aspx 實例比較雲/地EDR與託管MDR　彈性隱私維護管理優劣互見資安工具部署模式迥異　雲端地端正確選擇有訣竅 https://www.netadmin.com.tw/netadmin/zh-tw/technology/61C38768F6C24CE8B03B169D0FBFEBBE 微軟攜手和碩展示國產 5G O-RAN應用延展災防通訊韌性 https://news.microsoft.com/zh-tw/5g-microsoft-pegatron/ AIT：和碩與微軟打造5G ORAN 成功驗證通訊韌性 https://ec.ltn.com.tw/article/breakingnews/4080980 G.政府第8屆TWIGF 臺灣網路治理論壇與數位部唐鳳探討台灣網路韌性發展 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10097 國科會首次委員會議吳政忠：B5G衛星將加碼發射 https://www.rti.org.tw/news/view/id/2146306 調查官追查加密貨幣犯罪有SOP可遵循 https://news.ltn.com.tw/news/society/paper/1543616 國慶期間資通安全應行事項 https://www.ydn.com.tw/news/newsInsidePage?chapterID=1537062 防駭客入侵中控系統　唐鳳提兩解方因應 https://www.nownews.com/news/5945235 唐鳳：中介法無共識推動難達效果 https://reurl.cc/qNem1y 唐鳳：抵禦駭客入侵台灣部會應強化擬真攻防 https://news.cts.com.tw/cna/politics/202210/202210042094042.html 數位部長唐鳳：抵禦駭客入侵　台灣應培養「紅隊」能量•強化擬真攻防 https://www.taiwannews.com.tw/ch/news/4676568 唐鳳專欄：打造多元異質通訊韌性「沒有最好，只有更好」 https://www.storm.mg/article/4539904 汲取烏克蘭經驗唐鳳：建置備用衛星網路 https://www.rti.org.tw/news/view/id/2146700 汲取烏克蘭經驗　唐鳳：未來花5億6811萬「建置備用衛星網路」 https://www.setn.com/News.aspx?NewsID=1189024 數發部撒32億防堵資安漏洞陳椒華批公私協力模式缺乏課責制度 https://reurl.cc/5pAq1q 資安攻擊癱瘓網路？時力：應強化評鑑 https://udn.com/news/story/7266/6666320 時力呼籲數位發展部善用國家資安預算強化台灣資安防禦 https://udn.com/news/story/6656/6666019 支持數位發展部資安業務時力：首要任務是聘得到適才適用人才 https://reurl.cc/dWZ8pM 行政院有關大陸廠牌資通訊產品盤點結果中，屬「在臺陸資廠商」之產品採購。 https://cc.ncku.edu.tw/p/406-1002-229154,r804.php?Lang=zh-tw 數發部19億資安預算指定捐助第三方團體　陳椒華：遴選與評鑑機制何在 https://www.storm.mg/article/4552770?page=1 數位部推晶片資安實驗室　助台廠加入安全供應鏈 https://www.digitimes.com.tw/tech/dt/n/shwnws.asp?id=0000646639_B9I5FVC84QVSV68O9ZG8S 訪泰行程遭曝光陳明通：案涉泰國的華為監視器 https://www.epochtimes.com/b5/22/10/6/n13840199.htm H.工控系統/ICS/SCADA/IOT/物聯網/車聯網/電動車/人工智慧/AI/ML/人臉辨識/醫療相關資安英國政府對企業提出最高20萬英鎊補助，協助企業提升連網設備安全性 https://www.trade.gov.tw/Pages/Detail.aspx?nodeID=45&pid=750600 Top 6 Machine Learning Algorithms https://medium.datadriveninvestor.com/top-6-machine-learning-algorithms-44db10129c66 調查指出高達 68% 製造業未能完全掌握其工業製造系統內外存取情形 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10102 Claroty 全新報告 2021全球工業網路安全的態勢：面臨危機的應變能力 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10093 Canon Medical醫療影像存取軟體存在漏洞，恐導致資料外洩 https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/cve-2022-37461-two-reflected-xss-vulnerabilities-in-canon-medicals-vitrea-view/ 共享汽車靈活調度　聯網橋接器遠距控制達陣 https://reurl.cc/3YVLkj 2022 沙崙資安新秀大賽盛大登場！新世代「資蛛人」攜手產官學研，共編臺灣縝密資安網 https://www.inside.com.tw/article/29115-acw-south-4 建立智慧產業幸福感明日醫療AI齊步走 https://www.digitimes.com.tw/iot/article.asp?id=0000646077_AV6LIJ918AIVU5680TARR TXOne Networks睿控網安與NEC台灣合作推出零售業新世代POS系統提供強大資安防護網 https://zeekmagazine.com/archives/184421 資安廠商發現針對以色列工業生產控制系統的大規模駭侵活動 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=10104 資策會AI技術資安醫療添翼 https://wantrich.chinatimes.com/news/20221006900053-420301 安全驗證硬體身分及連結　物聯網裝置擊退駭客威脅 https://www.2cm.com.tw/2cm/zh-tw/recommend/141DEBD482B7400DB479ED79683289E2 I.教育訓練 iPAS資訊安全工程師中級筆記 https://hackmd.io/@Not/iPASInformationSecuritySpecialist iPas資安工程師證照考前研習 https://reurl.cc/GEbA3p Coursera 盤點 7 項雲端資安認證，高薪跳板都在這了！ https://buzzorange.com/techorange/2022/07/12/cloud-security-certificates/ 全球網絡安全勞動力失衡 (ISC)2免費課程及考試填補人才缺口 https://reurl.cc/m39MDj CISSP考試心得 https://reurl.cc/KbY83j CISSP考試心得 – Benson https://reurl.cc/GbWvxd 目標導向-20天光速考過CISSP https://reurl.cc/2Zq6zn CISSP證照考試實戰心得第一章：初期準備工作 https://netmag.tw/2022/06/17/the-cissp-has-learned-the-first-chapter-in-actual-combat CPSA(CREST Practitioner Security Analyst) 資安分析師考試心得 https://tech-blog.cymetrics.io/posts/huli/crest-cpsa-prepare/ EC-Council CEH v11 考試心得、改版資訊以及準備方向 2021、2022 https://reurl.cc/1oyEM8 CEH v11 考試心得與準備方式 https://blog.sean.taipei/2022/01/ceh 深度解析 CPENT 考試心得、以及與 OSCP 的比較 https://reurl.cc/41eL8v EC-Council CPENT v1 滲透測試認證 – 內容及心得分享 https://hackercat.org/pentesting/ec-council-cpent-v1-experience-review [備考心得]CompTIA Security+ (SY0–601) 上篇 https://reurl.cc/M053DK [備考心得]CompTIA Security+ (SY0–601) 下篇 https://reurl.cc/M053Gv 不只是工程師才要懂的 App 資訊安全：取得資安檢測合格證書血淚史（iT邦幫忙鐵人賽系列書） https://news.pchome.com.tw/living/books/20220202/index-64375841669874292009.html Learn NIST Inside Out With 21 Hours of Training @ 86% OFF https://thehackernews.com/2022/06/learn-nist-inside-out-with-21-hours-of.html 駭客與國家: 網路攻擊與地緣政治新常態 The hacker and the state: cyber attacks and the new normal of geopolitic https://reurl.cc/D3nKKj Practical Network Penetration Tester (PNPT) Certification Review https://tmc222.medium.com/practical-network-penetration-tester-pnpt-certification-review-4280e4e164df WUSON常用的基本詞彙 https://choson.lifenet.com.tw/?p=1958 我國網路資安狂被駭監委申請自動調查 https://www.chinatimes.com/realtimenews/20220810003152-260407?chdtv 6.近期資安活動及研討會 Coffee & Code 2022/10/9 https://www.meetup.com/innovate-taiwan/events/288746700/ 運用 Apple 資安優勢，建置零信任資安環境 2022/10/12 https://jamf.kktix.cc/events/trust1012 有備無患，先掃再說？—— 簡訊實聯制的觀察與爭議 2022/10/12 https://ocftw.kktix.cc/events/internetfreedom-oct2022 HackingThursday 黑客星期四 - Week meetup Tamsui 固定聚會淡水 2022/10/13 https://www.meetup.com/hackingthursday/events/288668294/ 「下世代通訊關鍵資源政策研究與規劃專家座談會」- 期末成果研討會 2022/10/13 https://impr.kktix.cc/events/5455cc21 MOPCON 2022 2022/10/15 ~ 2022/10/16 https://mopcon.org/ 金融資安案例研習 2022/10/17 https://www.sitca.org.tw/OPF/B0000/PPT049_2022_01.asp Kubernetes Summit 2022 2022/10/18 ~ 2022/10/19 https://k8s.ithome.com.tw/ Taipei dbt Meetup #7 (in-person 👫 & online 👨‍💻) 2022/10/19 https://www.meetup.com/taipei-dbt-meetup/events/288207892/ 國家高速網路與計算中心教育訓練「大數據程式開發平台(VM版本)」建置與開發實務課程 2022/10/21 https://edu.nchc.org.tw/course/one_course_introduction.asp?lms_auto_course_id=4009&from_course_list_url=course_index CISCO 資安講堂 2022/10/21 https://www.accupass.com/event/2209281120037267603420 【SP-ISAC資安沙龍】活動 2022/10/21 https://reurl.cc/qNl8Zn 資安情蒐暨資安政策趨勢研討會—以半導體供應鏈為核心 2022/10/25 https://stli.iii.org.tw/news-event.aspx?no=16&d=1177 【Monosparta】②⓪②③ 第一梯次軟體開發實戰訓練營➠線上說明會 2022/10/26 https://trunk-studio.kktix.cc/events/monosparta-202301 CODE BLUE 2022 @TOKYO 2022/10/27 ~ 2022/10/28 https://codeblue.jp/2022/en/ 金融產業跨域資安人力高峰論壇 2022/10/28 https://isipevent.kktix.cc/events/f2ce8bcc 資訊安全與人工智慧實作 2022/10/28 https://www.cisanet.org.tw/Course/Detail/2867 資訊安全發展趨勢| 數位社會與資訊安全 - 董監事系列認證課程 2022/11/5 https://www.accupass.com/event/2208120843261385349231 行動應用APP 安全檢測（APK/IPA）2022-11-18 09:00 ~ 2022-11-18 12:00 https://www.cisanet.org.tw/Course/Detail/2865 ICS 2022 WORKSHOP PROGRAM -「Ubiquitous Cybersecurity and Forensics」 2022/12/15 ~ 2022/12/17 https://ics2022.esam.io/ TANET 2022 WORKSHOP PROGRAM -「第二屆數位鑑識、醫療私密與網駭安全」 2022/12/15 ~ 2022/12/17 https://tanet2022.esam.io/