資安事件新聞週報 2022/2/21 ~ 2022/2/25

###### tags: `資安事件新聞週報` # 資安事件新聞週報 2022/2/21 ~ 2022/2/25 1.重大弱點漏洞/後門/Exploit/Zero Day Cisco 近日發布更新以解決多個產品的安全性弱點 https://tools.cisco.com/security/center/publicationListing.x New Flaws Discovered in Cisco's Network Operating System for Switches https://thehackernews.com/2022/02/new-flaws-discovered-in-ciscos-network.html CISA Alerts on Actively Exploited Flaws in Zabbix Network Monitoring Platform https://thehackernews.com/2022/02/cisa-alerts-on-actively-exploited-flaws.html 伺服器監控工具Zabbix驚傳嚴重漏洞，恐導致繞過身分驗證在伺服器上執行任意程式碼 https://blog.sonarsource.com/zabbix-case-study-of-unsafe-session-storage Apache APISIX 中存在安全弱點，該弱點源於產品的batch-requests擴充未對用戶的批次處理請求進行有效限制 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2022-24112 Apache Cassandra 存在程式碼注入弱點 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2021-44521 Foxit PDF Reader和Foxit PDF Editor 存在緩衝區錯誤弱點 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2022-24954 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2022-24955 Google Golang 存在安全弱點 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2022-23772 9-Year-Old Unpatched Email Hacking Bug Uncovered in Horde Webmail Software https://thehackernews.com/2022/02/9-year-old-unpatched-email-hacking-bug.html 開源網頁郵件管理系統Horde存在XSS漏洞，恐導致用戶帳號遭挾持 https://blog.sonarsource.com/horde-webmail-account-takeover-via-email WordPress網站備份外掛UpdraftPlus出現任意下載漏洞，攻擊者恐用來竊取網站機密 https://jetpack.com/2022/02/17/severe-vulnerability-fixed-in-updraftplus-1-22-3/ Linux快很多! Google 資安團隊提軟硬體與作業系統業者修補資安漏洞平均速度 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=9733 Google Chrome與Microsoft Edge瀏覽器存在多個高風險安全漏洞 https://www.klcg.gov.tw/tw/education/3522-251964.html 2.銀行/金融/保險/證券/支付系統/金融監理新聞及資安中國駭客組織 APT10 竊取我國金融單位內部資料，金融單位應清查供應鏈 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=9729 中共在背後資助駭客組織盯上台灣金融單位2個月 https://reurl.cc/nEXK3e 從竹科七家半導體廠遭駭　到七家金融業者遭攻擊！中國駭客全新手法　為何一般資安軟體難抓出 https://www.businesstoday.com.tw/article/category/183015/post/202202210032 從金融到半導體都不放過台灣？中國表面挖人才暗地也要派駭客 https://buzzorange.com/techorange/2022/02/22/tw-china-digital-safe/ Chinese Hackers Target Taiwan's Financial Trading Sector with Supply Chain Attack https://thehackernews.com/2022/02/chinese-hackers-target-taiwans.html 臺灣金融業遭軟體供應鏈攻擊，奧義智慧研判為中國駭客組織所為 https://reurl.cc/nEXaAD 陸駭客持續攻擊台金融單位奧義智慧籲企業速清查供應鏈 https://ctee.com.tw/industrynews/technology/598588.html 金融詐騙鎖定有弱點的 Exchange 伺服器進行Squirrelwaffle 攻擊 https://www.informationsecurity.com.tw/article/article_detail.aspx?tv=11&aid=9717 烏克蘭政府機關、兩大銀行再遭DDoS、資料破壞攻擊 https://www.bleepingcomputer.com/news/security/ukrainian-government-and-banks-once-again-hit-by-ddos-attacks/ 俄羅斯同步發動網路攻擊烏克蘭政府部門與金融機構網站遭癱瘓 https://www.storm.mg/article/4210608 網釣簡訊攻擊鎖定英國數位銀行Monzo用戶而來 https://www.bleepingcomputer.com/news/security/new-phishing-campaign-targets-monzo-online-banking-customers/ 拚ESG 金管會修法強化產壽險業資訊揭露 https://www.cna.com.tw/news/afe/202202250284.aspx 「金融機構間資料共享指引」上路　理專違規凸顯內控重要性資料共享跨機構效益加乘　善用金融科技輔助興利除弊 https://www.netadmin.com.tw/netadmin/zh-tw/viewpoint/FFDCEC24F4DA463BA9308BA826E3C15B 台新金:台新金控代子公司台新證券公告設置資安長 https://stock.pchome.com.tw/news/cat1/20220222/9700002887202202221.html 櫃買中心3月推戰略新板宣導說明會 https://www.chinatimes.com/realtimenews/20220223002432-260410?chdtv 開戶只要1分鐘！Line Bank用戶數成長第一，推手是一群白帽駭客 https://www.cw.com.tw/article/5120151 上市櫃資安金管會四路防駭 https://ctee.com.tw/news/finance/598833.html 公股銀提高消金獲客率祭數位金融服務優惠 https://news.cnyes.com/news/id/4817151 兆豐銀人事異動行資訊安全長、公司治理主管換人當 https://www.chinatimes.com/realtimenews/20220218004526-260410?chdtv 新加坡與英國簽署數位經濟協定提升數位貿易 https://udn.com/news/story/6809/6125032 3.電子支付/行動支付/pay/資安制裁生效！俄羅斯多家銀行無法使用電子支付 https://reurl.cc/akzObQ 全家電子支付執照到手 https://money.udn.com/money/story/122229/6122740 金管會修存保額度！　電支愛用者保障將增值 https://finance.ettoday.net/news/2196119 電支電票存保合併算　儲值金最高保額3百萬 https://www.cardu.com.tw/news/detail.php?45519 【塞掐 Side Chat】EP 57｜情人節分手！從 LINE Pay、一卡通看台灣電子支付 https://www.inside.com.tw/article/26836-side-chat-e57 從LINE Pay、一卡通合作與拆夥看台灣支付政策 https://www.inside.com.tw/feature/member-exclusive/26780-linepay-and-ipass 首家零售通路結合金融業！全盈支付執照金管會准了 https://www.setn.com/News.aspx?NewsID=1076228 誰能實現一個電支App一路用到底就能稱王生態圈成電子支付指標 https://reurl.cc/KpD7Ye LINE Pay切割一卡通、全聯攜手全家，電支玩家「黃金交叉」近了 https://www.gvm.com.tw/article/87388 全家搶先進軍「嗶市場」！全盈支付獲營業執照　今年Q2開業 https://tw.appledaily.com/property/20220224/ATYSYWUDJFEG3D24INRBYZKXPU/ 4.加密貨幣/數位貨幣/挖礦/區塊鍊/智能合約資安 OpenSea 帳號被盜走價值 2 百萬美元的 NFT https://blog.trendmicro.com.tw/?p=71422 Hackers Stole $1.7 Million Worth of NFTs from Users of OpenSea Marketplace https://thehackernews.com/2022/02/hackers-steal-17-million-worth-of-nfts.html Opensea 的 Polygon 網路出現穩定性問題 https://news.cnyes.com/news/id/4819246 OpenSea 正針對最近發生的釣魚攻擊進行調查 https://unwire.pro/2022/02/21/opensea-2/blockchain/ 控告 OpenSea！駭客鑽漏洞、低買高賣無聊猿 NFT，原藏家現求償逾 100 萬美元 https://www.blocktempo.com/bored-ape-owner-files-1m-lawsuit-against-opensea/ 事件始末｜駭客得手170萬美金，被OpenSea釣魚信嚇到？官方建議可用來Revoke保護 https://news.cnyes.com/news/id/4816974 俄羅斯逃避制裁的祕密武器：加密貨幣＋駭客 https://technews.tw/2022/02/24/russia-can-ease-sanction-from-west-by-digital-currency/ 工程師疑涉盜取市值5000萬元比特幣一審獲判無罪 https://udn.com/news/story/7321/6122260 當年偷走The DAO專案逾360萬個以太幣的駭客找到了 https://times.hinet.net/topic/23773256 以太坊史上最大竊案露曙光：盜走 360 萬顆 ETH 駭客遭「鏈上肉搜」現蹤 https://blocktrend.substack.com/p/428?utm_source=url 當元宇宙與區塊鏈科技發展到極致，「永續城市」的應用可能超乎想像 https://www.thenewslens.com/article/162495 駭客二選一：Coinbase 漏洞交易賺 1 億或是良心舉報賺 700 萬 https://technews.tw/2022/02/23/coinbase-debug-whitehat-hacker/ Unchained主理人：TenX 創始人疑似為2016年盜取360萬枚以太坊的駭客 https://news.cnyes.com/news/id/4818165?exp=b 110 億美元真兇！記者新書揭露2016年以太坊DAO駭客可能身份 https://news.cnyes.com/news/id/4818193 Coinbase系統出現核彈級漏洞！不同加密貨幣可等值出售 https://times.hinet.net/news/23770167 Wormhole跨鏈橋被駭事件簿 https://reurl.cc/LpDyQ3 一封詐騙郵件騙走了416萬美元！NFT防騙指南 https://www.techbang.com/posts/94369-nft-cheating 元宇宙你個頭！區塊鏈你個頭！──為什麼我們該小心「科技的話術」 https://crossing.cw.com.tw/article/15872 NFT醜聞連環爆，用戶資產被盜、假貨氾濫！各大平台下一步怎麼走 https://www.bnext.com.tw/article/67793/nft-hacker-phishing-attack? USDC穩定幣開發商Circle市值上看90億美元，延後上市時程 https://www.ithome.com.tw/news/149461 2022年最新假加密貨幣網站及交易平台列表 https://blog.trendmicro.com.tw/?p=71281 5.資安事件新聞 A.病毒木馬 / 殭屍網路 / 勒索軟體 / Adware /APT /後門程式/IOC 勒索軟體仍為攻擊大宗 2022慎防三大資安威脅 https://www.digitimes.com.tw/iot/article.asp?cat=158&id=0000629926_c7olko201ara3x7gpn577 UpdateAgent 木馬程式在 macOS 會下載惡意檔案至電腦上並竊取機敏資訊 https://technews.tw/2022/02/08/microsoft-365-defender-threat-intelligence-macos-updateagent/ 數千起駭客滲入Microsoft Teams 群組，散布惡意木馬軟體 https://www.informationsecurity.com.tw/article/article_detail.aspx?tv=12&aid=9731 SockDetour後門程式攻擊美國國防業者 https://unit42.paloaltonetworks.com/sockdetour/ 駭客以免費贈送加密貨幣的名義，意圖散布木馬程式 https://www.zscaler.com/blogs/security-research/freecryptoscam-new-cryptocurrency-scam-leads-installation-backdoors-and 勒索軟體Cuba鎖定Exchange Server而來 https://www.mandiant.com/resources/unc2596-cuba-ransomware 駭客鎖定Microsoft Exchange Server發動「古巴」勒索軟體攻擊 https://netmag.tw/2022/02/25/hackers-lock-microsoft-exchange-server-to-launch-cuban-ransomware-attack 惡意軟體Electron Bot偽裝成遊戲程式發布到微軟市集，意圖以被感染的電腦點擊特定網站，操弄社群網站的流量 https://research.checkpoint.com/2022/new-malware-capable-of-controlling-social-media-accounts-infects-5000-machines-and-is-actively-being-distributed-via-gaming-applications-on-microsofts-official-store/ 對俄羅斯制裁後美英歐警告潛在的勒索軟件攻擊 https://iknow.stpi.narl.org.tw/Post/Read.aspx?PostID=18838 美、英發現來自俄羅斯的新殭屍網路惡意程式Cyclops Blink https://www.ithome.com.tw/news/149551 殭屍網路Cyclops Blink鎖定WatchGuard防火牆設備，美國、英國提出警告 https://www.ncsc.gov.uk/news/new-sandworm-malware-cyclops-blink-replaces-vpnfilter 華芸NAS設備遭DeadBolt勒索軟體攻擊 https://www.ithome.com.tw/news/149499 為防範 ASUSTOR NAS 遭 DeadBolt 勒索病毒攻擊，建議相關用戶立即進行資安防護 https://www.tcrc.edu.tw/new/new-list/asustor-nas-deadbolt 華芸科技 NAS產品遭 DeadBolt 勒索病毒攻擊官方提供建議措施 https://www.kocpc.com.tw/archives/428403 華碩子公司華芸NAS遭駭客入侵加密檔案　被勒索支付比特幣才能解碼 https://tw.appledaily.com/property/20220223/N7JPYYXUK5C5LI3L4RZHTLM7NY/ Warning — Deadbolt Ransomware Targeting ASUSTOR NAS Devices https://thehackernews.com/2022/02/warning-deadbolt-ransomware-targeting.html 資安廠商發現一個會竊取 Windows 用戶加密貨幣的 Golang 僵屍網路 https://www.twcert.org.tw/tw/cp-104-5752-b041f-1.html 以Go語言開發的殭屍網路病毒Kraken，被用於散布竊密軟體RedLine https://www.zerofox.com/blog/meet-kraken-a-new-golang-botnet-in-development/ 安卓木馬Xenomorph透過Google Play市集散布，鎖定56個歐洲銀行用戶 https://www.threatfabric.com/blogs/xenomorph-a-newly-hatched-banking-trojan.html 25個NPM惡意套件偽裝成知名套件，意圖挾持受害者的Discord帳號 https://jfrog.com/blog/malware-civil-war-malicious-npm-packages-targeting-malware-authors/ 25 Malicious JavaScript Libraries Distributed via Official NPM Package Repository https://thehackernews.com/2022/02/25-malicious-javascript-libraries.html 解放 NVIDIA 顯示卡掘礦限制？！咪信！破解軟件實為惡意溫床！ https://www.pcmarket.com.hk/nvidia-rtx-lhr-v2-unlocker-is-malware/ 殭屍網路FritzFrog捲土重來鎖定醫療、教育、政府單位 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=9738 HP警告惡意軟體會在Discord上偽裝成Windows 11安裝程式 https://www.cool3c.com/article/173156 勒索軟體Conti併吞殭屍網路TrickBot，並集中研發惡意軟體BazarBackdoor成攻擊主要工具 https://www.advintel.io/post/the-trickbot-saga-s-finale-has-aired-but-a-spinoff-is-already-in-the-works 大型鍋具業者Meyer員工資料外洩，疑遭勒索軟體Conti攻擊所致 https://www.bleepingcomputer.com/news/security/cookware-giant-meyer-discloses-cyberattack-that-impacted-employees/ Conti latest samples Feb 2022 https://otx.alienvault.com/pulse/621a1437ff5bcc8887e08128 Emotet Malware back in Action https://blog.cyble.com/2022/02/26/emotet-malware-back-in-action/ APT-C-58 (Gorgon Group) attack warning https://mp.weixin.qq.com/s/X0kAIHOSldiFDthb4IsmbQ Details of recent DDoS attacks we've seen against Ukraine and Russia https://blog-netlab-360-com.translate.goog/wo-men-kan-dao-de-wu-ke-lan-bei-ddosgong-ji-xi-jie/?_x_tr_sl=zh-CN&_x_tr_tl=en&_x_tr_hl=zh-CN Left On Read: Telegram Malware Spotted in Latest Iranian Cyber Espionage Activity https://www.mandiant.com/resources/telegram-malware-iranian-espionage SockDetour, a Silent, Fileless, Socketless Backdoor. Targets U.S. Defense Contractors https://unit42.paloaltonetworks.com/sockdetour/ Iranian Government-Sponsored Actors Conduct Cyber Operations Against Global Government and Commercial Networks https://www.cisa.gov/uscert/ncas/alerts/aa22-055a From Dridex to Macaw, The Evolution of Evil Corp https://gist.github.com/antonio-s1/1fc53ed220012a91e66ea939d628da84 Bvp47 Top-tier Backdoor of US NSA Equation Group https://otx.alienvault.com/pulse/62165a9098875d0f12e0d0a8 Bvp47 Top-tier Backdoor of US NSA Equation Group https://www.pangulab.cn/files/The_Bvp47_a_top-tier_backdoor_of_us_nsa_equation_group.en.pdf Chinese Experts Uncover Details of Equation Group's Bvp47 Covert Hacking Tool https://thehackernews.com/2022/02/chinese-experts-uncover-details-of.html 美國國家安全局製作Linux後門程式，暗中行動長達10年 https://www.pangulab.cn/en/post/the_bvp47_a_top-tier_backdoor_of_us_nsa_equation_group/ New Sandworm malware Cyclops Blink replaces VPNFilter https://www.ncsc.gov.uk/files/Cyclops-Blink-Malware-Analysis-Report.pdf HermeticWiper, New Destructive Malware Used In Cyber Attacks on Ukraine https://www.sentinelone.com/labs/hermetic-wiper-ukraine-under-attack/ https://www.circl.lu/doc/misp/feed-osint/b9b6dcfa-0b11-40dc-9bf4-9a36a2c1a046.json EvilPlayout: Attack Against Iran’s State Broadcaster https://research.checkpoint.com/2022/evilplayout-attack-against-irans-state-broadcaster/ Cobalt Strike Being Distributed to Vulnerable MS-SQL Servers https://asec.ahnlab.com/en/31811/ Meet Kraken: A New Golang Botnet in Development https://www.zerofox.com/blog/meet-kraken-a-new-golang-botnet-in-development/ Operation Cache Panda organized supply chain attack against Taiwan's financial industry https://medium.com/cycraft/supply-chain-attack-targeting-taiwan-financial-sector-bae2f0962934 Qbot and Zerologon Lead To Full Domain Compromise https://thedfirreport.com/2022/02/21/qbot-and-zerologon-lead-to-full-domain-compromise/ Vulnerability Attack Threats on the Cloud https://blog.netlab.360.com/public-cloud-threat-intelligence-202201/ TeamTNT Cryptomining Explosion 🧨 - Intezer https://www.intezer.com/blog/malware-analysis/teamtnt-cryptomining-explosion/ Technical Analysis of the DDoS Attacks against Ukrainian Websites https://www.cadosecurity.com/technical-analysis-of-the-ddos-attacks-against-ukrainian-websites/ Arkei Infostealer Expands Reach Using SmokeLoader to Target Crypto Wallets and MFA https://blogs.blackberry.com/en/2022/02/threat-thursday-arkei-infostealer?utm_medium=social&utm_source=bambu 駭客利用Cobalt Strike攻擊微軟SQL Server，植入後門程式並進行挖礦 https://asec.ahnlab.com/en/31811/ 伊朗駭客MuddyWatter鎖定全球關鍵基礎設施下手，美國、英國公布駭客使用的惡意程式 https://www.cisa.gov/uscert/ncas/current-activity/2022/02/24/iranian-government-sponsored-muddywater-actors-conducting Iran's MuddyWater Hacker Group Using New Malware in Worldwide Cyber Attacks https://thehackernews.com/2022/02/irans-muddywater-hacker-group-using-new.html Notorious TrickBot Malware Gang Shuts Down its Botnet Infrastructure https://thehackernews.com/2022/02/notorious-trickbot-malware-gang-shuts.html TrickBot Gang Likely Shifting Operations to Switch to New Malware https://thehackernews.com/2022/02/trickbot-gang-likely-shifting.html U.S., U.K. Agencies Warn of New Russian Botnet Built from Hacked Firewall Devices https://thehackernews.com/2022/02/us-uk-agencies-warn-of-new-russian.html 駭客透過惡意軟體Dridex發動勒索軟體攻擊 https://news.sophos.com/en-us/2022/02/23/dridex-bots-deliver-entropy-ransomware-in-recent-attacks/ Dridex Malware Deploying Entropy Ransomware on Hacked Computers https://thehackernews.com/2022/02/dridex-malware-deploying-entropy.html Hackers Backdoor Unpatched Microsoft SQL Database Servers with Cobalt Strike https://thehackernews.com/2022/02/hackers-backdoor-unpatched-microsoft.html New Android Banking Trojan Spreading via Google Play Store Targets Europeans https://thehackernews.com/2022/02/xenomorph-android-banking.html Iranian State Broadcaster IRIB Hit by Destructive Wiper Malware https://thehackernews.com/2022/02/iranian-state-broadcaster-irib-hits-by_21.html Master Key for Hive Ransomware Retrieved Using a Flaw in its Encryption Algorithm https://thehackernews.com/2022/02/master-key-for-hive-ransomware.html B.行動安全 / iPhone / Android /穿戴裝置 /App / 5G / 即時通訊 Hackers Exploiting Infected Android Devices to Register Disposable Accounts https://thehackernews.com/2022/02/hackers-exploit-bug-in-sms-verification.html 三星手機存在加密缺陷，1億手機恐曝險 https://eyalro.net/publication/srw22.html 過億三星智慧手機出廠即有安全漏洞，但用戶似乎不須太擔心 https://technews.tw/2022/02/25/samsung-smartphones-security-flaw/ 遠傳併亞太電信回歸中華、遠傳、台哥大真三大電信局面 https://zeekmagazine.com/archives/166437 蘋果iPhone 14 進入試產階段，最終外觀設計與規格搶先看 https://mrmad.com.tw/iphone-14-enters-trial-production-stage DSCC：iPhone折疊手機最快2025問世，內部正研究折疊MacBook https://mrmad.com.tw/iphone-foldable-phone-will-come-out-as-soon-as-2025 老公手機發現疑似出軌跡象！神人4步驟調出LINE完整通話紀錄，對話框被刪除照現形 https://www.storm.mg/lifestyle/4204914 準備與 Touch ID 告別？爆料：未來 iPhone 全面只用 Face ID https://3c.ltn.com.tw/news/47781 特朗普社交 App「Truth Social」三月推出　測試員爆料：與 Twitter 相似 https://unwire.hk/2022/02/21/app-twitter/fun-tech/ 10款NCC 手機資安檢測報告出爐，僅iPhone 通過安全檢驗 https://mrmad.com.tw/ncc-mobile-phone-information-security-test-report iPhone 的 Wi-Fi 顯示安全層級薄弱怎麼加強？用這 3 個方法就能解決 https://applealmond.com/posts/132785 C.事件 / 駭客 / DDOS / APT / 雲端/ 暗網/ 徵才 / 國際資安事件 / 資安人力新版ISO 27002:2022出爐，資安控制措施正式修訂為4大類93項 https://www.ithome.com.tw/news/149520 2萬資安人才缺口從這找！一個暑期營隊，如何變國內資安人才搖籃 https://reurl.cc/EpDxVk 關鍵資訊基礎設施包山包海從法律到國家標準皆牽涉中國嚴管資訊建設與個資　西進者避禍須熟知法規 https://www.netadmin.com.tw/netadmin/zh-tw/viewpoint/C5024143EAE64EB89B72CF79CF8E133F 【中國 IT 系統爭議新功能】預測員工何時要離職，好讓老闆可以提前 Fire 員工 https://buzzorange.com/techorange/2022/02/23/chinese-tech-system-spying-online-activities/ 澳洲研究發現中國行動支付有資安、監管、法律與政治等風險 https://taronews.tw/2022/02/25/814519/ 跨國物流業者Expeditors遭網路攻擊，被迫中斷大部分業務 https://www.bleepingcomputer.com/news/security/expeditors-shuts-down-global-operations-after-likely-ransomware-attack/ 紐西蘭IT公司遭駭客攻擊，超過4GB數據被盜 https://visiontimes.co.nz/news/17615/ 冬奧選手未被中國監控？專家：目前斷言還太早 https://udn.com/news/amp/story/122669/6115335 憂心帶回受駭風險專家建議換掉密碼 https://udn.com/news/story/7005/6114124 憂從北京冬奧帶回遭駭風險　專家建議換掉設備密碼 https://tw.appledaily.com/international/20220221/TCTMMEH3ONG4HG3F6G7FNIJHTY/ 假員工真駭客華府捷運局推特遭網攻 https://www.worldjournal.com/wj/story/121277/6114863 約旦去年共發生897次網路攻擊，政府將加強網路安全措施 https://www.moneydj.com/kmdj/news/newsviewer.aspx?a=108f1612-fd30-4e68-8904-8c999d06f4f5 駭客以資料分析圖像化工具Power BI為幌子發動網釣攻擊，意圖竊取微軟帳號 https://cofensestaging.wpengine.com/blog/phishers-spoof-power-bi-to-visualize-your-credential-data?web_view=true 【威脅持續進化，密碼與壓縮檔反成攻擊者濫用手法】為何PPAP不能幫助提升資安 https://www.ithome.com.tw/news/149443 伊朗國營電視臺遭網路攻擊，駭客散播抗議政府訊息並進行破壞 https://research.checkpoint.com/2022/evilplayout-attack-against-irans-state-broadcaster/ 美國傳出考慮對俄羅斯關鍵基礎設施進行網路攻擊，遭白宮否認 https://www.zdnet.com/article/white-house-denies-report-about-cyberattacks-against-russian-infrastructure/ NBC爆料「美國將對俄軍發動網攻」國安會否認 https://www.worldjournal.com/wj/story/121173/6126217 中共趁俄烏危機攻台？邱太三：要注意駭客網攻 https://www.epochtimes.com/b5/22/2/25/n13605049.htm 資訊戰開打烏克蘭號召駭客抵禦俄羅斯 https://reurl.cc/oeXj0M 美、英指控俄羅斯對烏克蘭發動DDoS攻擊 https://times.hinet.net/topic/23768103 俄羅斯頭大！國際刑事法院擬查“戰爭罪” 知名駭客組織也宣戰 https://m.soundofhope.org/post/597283?lang=b5 向俄羅斯網路攻擊宣戰：烏克蘭呼籲國內駭客「協助抵禦攻擊」、全球最大駭客團體對俄進行網路戰 https://www.thenewslens.com/article/163306 烏俄戰爭時間點敏感 Nvidia遭遇網路攻擊 https://news.cnyes.com/news/id/4821001 輝達內網疑遭駭客攻擊，表示正調查攻擊來源 https://technews.tw/2022/02/26/nvidia-confirmed-an-ransomware-attack-on-its-internal-network/ 俄烏網軍互鬥，俄羅斯政府網站無法存取，烏克蘭網路嚴重中斷 https://www.techbang.com/posts/94468-russian-ukrainian-net-war 全球最大駭客組織「匿名者」向俄羅斯宣戰：發動網路戰爭 https://reurl.cc/NpDW06 號召國內駭客！烏克蘭用網路情蒐抵禦俄國「資訊戰」 https://www.inside.com.tw/article/26834-ukraine-russia-war-hacker 國際駭客組織 Anonymous 成功攻破並洩露了俄羅斯國防部網站的數據庫裡面竟然有中國QQ的帳號 https://twitter.com/square76567502/status/1497286881259945984 烏克蘭政府網站遭「俄網軍大隊」攻擊！　緊急求助南韓 https://www.ettoday.net/news/20220226/2197089.htm 克里姆林宮豢養的最危險駭客「沙蟲」，烏克蘭首當其衝 https://news.readmoo.com/2022/02/23/sandworm/ 俄烏火線衝突網戰打先鋒攻擊軟體供應鏈 https://ctee.com.tw/news/tech/600613.html 針對烏克蘭政府近日遭駭，研究人員揭露攻擊工具細節 https://www.bleepingcomputer.com/news/security/new-data-wiping-malware-used-in-destructive-attacks-on-ukraine/ 對俄制裁升級! 歐美祭科技出口管制 https://ctee.com.tw/news/global/601199.html 台灣要是淪陷　民眾黨：解放軍「核彈頭潛艦」將威脅美本土 https://www.setn.com/News.aspx?NewsID=1077029 俄烏開戰陸委會：對岸可能進行認知作戰 https://newtalk.tw/news/view/2022-02-25/715100 美情報部門網路攻擊證據被發現華春瑩：強烈敦促美方解釋 https://reurl.cc/mGXgKW 日本政府呼籲產業界落實資安防範俄羅斯報復 https://news.cnyes.com/news/id/4818566 防止中國取得國防技術日本政府收購承包商設備藍圖 https://times.hinet.net/news/23769061 中共官媒造謠布林肯反對台獨　AIT斥：對台支持堅若磐石 https://www.setn.com/News.aspx?NewsID=1075848 俄國對烏克蘭灰色地帶行動學者：中共肯定仔細觀察 https://news.ltn.com.tw/news/politics/breakingnews/3838549 多家美國國防部包商遭駭侵攻擊 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=9732 朝鮮駭客組織Lazarus Group攻擊手法更加複雜 https://news.cnyes.com/news/id/4817562?exp=a 抗俄駭客澳洲擴大援烏強化網安 https://reurl.cc/dX8NAg 英國防大臣：俄國若發動網路戰，英國將隨時報復反擊 https://reurl.cc/DdDzpd 美軍「王牌飛行員」開發AR新技術應對中共威脅 https://reurl.cc/g0lVo7 美國司法部擬修改川普時代「中國計劃」 https://cn.nytimes.com/usa/20220222/justice-department-china-initiative/zh-hant/ Justice Department Appoints First Director of National Cryptocurrency Enforcement Team https://thehackernews.com/2022/02/justice-department-appoints-first.html Putin Warns Russian Critical Infrastructure to Brace for Potential Cyber Attacks https://thehackernews.com/2022/02/putin-warns-russian-critical.html 亞太電信攜手蝦皮推跨界虛實融合前進校徵招募生力軍 https://www.1111.com.tw/news/jobns/144301 IEC 62443輔導顧問 https://www.104.com.tw/job/7jo2x 【資安所】嵌入式Linux軟韌體工程師 https://www.104.com.tw/job/7jo2d 鐵飯碗敲門磚高雄國稅局徵才薪水上看40K https://news.cnyes.com/news/id/4820640 科技業搶才，台灣微軟持續推動 20 萬人才培育計畫 https://technews.tw/2022/02/25/microsoft-talent/ 【運維】資安網管工程師 https://www.104.com.tw/job/7jo28 【實習計畫】資安處(暑期實習生) https://www.104.com.tw/job/7joqd?jobsource=jolist_c_relevance 史上最大轉職潮！對手加薪搶人，104人資長親授如何不被「搶」 https://www.gvm.com.tw/article/86244 「半導體人才荒」缺口創7年新高！科技業、金融業爆搶人大戰 https://www.moneyweekly.com.tw/ArticleData/Info/Article/77723 全球半導體產業人才短缺！科技大廠提供高薪搶人 https://times.hinet.net/news/23767570 前端網頁工程師 https://www.104.com.tw/job/7jlrh 資訊安全（資深）工程師 https://job.taiwanjobs.gov.tw/Internet/jobwanted/JobDetail.aspx?R2=5&EMPLOYER_ID=44531&HIRE_ID=11010057 資安獵捕監控工程師 https://www.104.com.tw/job/7jlrp Bank / 資訊前端工程師 Frontend Engineer https://reurl.cc/Vje9o6 資安人才供不應求　企業痛悟造就大熱門職缺 https://www.ectimes.org.tw/?p=72294 全球搶台灣科技人才！疫情後更嚴重　微軟：培育不夠業界用 https://finance.ettoday.net/news/2195799 徵才40餘人集保總經理朱漢強：未來的重點是數位和數據 https://www.storm.mg/article/4209578?page=1 資安工程師 https://www.104.com.tw/job/7jdph 推廣組徵自僱人員(資安)1名 https://www.ntsec.gov.tw/User/Article.aspx?a=4043 D.資料外洩/個資法/GDPR/網路詐騙/網路釣魚/盜刷/假新聞/網路霸凌/帳號安全俄羅斯駭客APT29鎖定土耳其大使館相關人員，發動釣魚郵件攻擊 https://www.fortinet.com/blog/threat-research/nobelium-returns-to-the-political-world-stage 網路釣魚攻擊駭客利用遠端桌面連線軟體，並搭配瀏覽器Kiosk模式，來繞過雙因素驗證挾持受害者帳號 https://mrd0x.com/bypass-2fa-using-novnc/ 研究人員揭露鎖定區塊鏈的網釣攻擊手法Ice Phishing https://www.microsoft.com/security/blog/2022/02/16/ice-phishing-on-the-blockchain/ 「王品洩個資」被詐300多萬她爆這款APP有洞 https://reurl.cc/jkpAWM 王品App個資外洩有會員最高被詐80萬 http://www.ksnews.com.tw/index.php/news/contents_page/0001576092 誆露營行程下單系統遭駭　詐團假冒商家3分鐘騙10萬 https://www.mirrormedia.mg/story/20220226soc001/ 媒體應謹慎使用外電小心俄國假訊息網站和帳號 https://tfc-taiwan.org.tw/articles/6985 假QR code行釣魚之實! 四大常見QR code騙術 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=9736 簡訊及LINE誘騙入群　投資詐騙2個月達60件 https://www.cardu.com.tw/news/detail.php?45486 全聯福利中心送福利？填問卷拿10000元禮品卡？釣魚網站！切勿點擊轉發訊息 https://www.mygopen.com/2022/02/fake-pxmart.html 誰說BEC只透過電子郵件散播？美國警告濫用線上會議平臺進行的攻擊增加 https://www.ic3.gov/Media/Y2022/PSA220216 駭客利用虛擬會議發動BEC商業郵件詐騙攻擊 https://www.ithome.com.tw/news/149464 E.研究報告/工具 CISO 必懂基礎架構即代碼 IaC，現代雲構建不可或缺 https://www.informationsecurity.com.tw/article/article_detail_2021.aspx?aid=9730 How to Get Maximum from Next.js <Image/> Component https://enlear.academy/the-right-ways-to-make-use-of-image-from-nextjs-398c48378690 Python Data Structures https://selinyazicioglu99.medium.com/python-data-structures-c0f8102ff0fa Machine Learning Resume that got me shortlisted for Meta, Microsoft, NVIDIA, Uber, Samsung, Intel, and Others https://aqeel-anwar.medium.com/machine-learning-resume-that-got-me-shortlisted-for-meta-microsoft-nvidia-uber-samsung-intel-220761c1a850 The best database pagination technique is https://itnext.io/the-best-database-pagination-technique-is-530abf2aab51 17 Stunning & Modern UNIX Tools https://thelicato.medium.com/17-stunning-modern-unix-tools-e32d4f0efb64 macOS Tools and Apps for Development in 2022 https://medium.com/@etc088/macos-tools-and-apps-for-development-in-2022-963bd4d0f876 Building an NLP Chatbot for a restaurant with Flask https://medium.com/@barua.aindriya/building-a-nlp-chatbot-for-a-restaurant-with-flask-b978337049f2 Best Chatbot Frameworks You Must Know About https://medium.com/@letthedataconfess/best-chatbot-frameworks-you-must-know-about-6926d9e4d80f I am in love with my VS Code Setup https://blog.scriptmint.com/i-am-in-love-with-my-vs-code-setup-997e6a29f69e From Pet Systems to Cattle Farm — What Happened to the Data Center https://thehackernews.com/2022/02/from-pet-systems-to-cattle-farm-what.html Network-反向代理 https://reurl.cc/OpDOn9 盤點AWS/Azure十大雷區　設置失手須自擔責任不可不慎雲端後門洞開外洩資料　組態設定錯誤成最大元兇 https://www.netadmin.com.tw/netadmin/zh-tw/viewpoint/E616474B610B4CCAAB5E0BC3E7745D3C 研究人員開發破解工具馬賽克遮蓋文字瞬間還原 https://unwire.hk/2022/02/21/dont-use-mosaic-to-cover-sensitive-text/tech-secure/ F.商業星宇航空導入Aruba 整合式網路安全方案，具體實現零信任 https://www.informationsecurity.com.tw/article/article_detail.aspx?tv=11&aid=9722 企業高層、IT與資安人員的參與合作能有效降低資安風險 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=9718 Palo Alto Networks推出深度學習PAN-OS 10.2 Nebula https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=9721 Cloudflare以1.62億美元買下雲端郵件安全業者Area 1 Security https://cloudflare.net/news/news-details/2022/Cloudflare-to-Acquire-Area-1-Security-to-Expand-Its-Zero-Trust-Platform/default.aspx 騰訊收購波蘭遊戲開發商暨發行商1C Entertainment https://mashdigi.com/tencent-acquired-1c-entertainment/ 台灣微軟資料中心採用綠能緯穎技術可望引進 https://ec.ltn.com.tw/article/breakingnews/3840575 IBM資安報告指出針對製造業的攻擊已經超過金融服務業，且多數為勒索攻擊 https://times.hinet.net/topic/23775180 微軟推出適用Google雲的網絡安全產品版本 https://reurl.cc/WkWnmO 零壹去年獲利創高；現金殖利率達8% https://www.moneydj.com/kmdj/news/newsviewer.aspx?a=4da2dbfe-cdcd-4f92-a897-a55790f483c2 精誠資訊2021年EPS 4.9元　營收連6年創新高、稅後淨利年減27.15％ https://finance.ettoday.net/news/2195488?redirect=1 臺灣首家公眾科技新創　應援科技打造一站式支持者關係經營平台 https://www.taiwannews.com.tw/ch/news/4453617 Check Point Software推出高速防火牆 https://www.digitimes.com.tw/tech/dt/n/shwnws.asp?id=0000629735_HL58S6N02IFZ2E6VHBROG 迎接混合工作模式新世代 AvePoint助企業做好風險控管 https://www.inside.com.tw/article/26804-avepoint_pi_2022 OM宣布結業 BlackBerry手機回歸無望 https://reurl.cc/l9XmQd Adobe 調查：近半亞太企業未準備 Cookie 受限的數碼營銷 https://reurl.cc/LpDy5K 天睿與微軟建立夥伴關係將複雜資料分析環境簡化並現代化 https://reurl.cc/12z6XW 逸盈科技正式成為SentinelOne公司臺灣授權代理商 https://www.digitimes.com.tw/tech/dt/n/shwnws.asp?cnlid=14&cat=50&id=0000629126_asd0bkz33h8sem53nk27c G.政府率網軍辱外交官害輕生楊蕙如改判5月定讞 https://www.worldjournal.com/wj/story/121218/6124292 NCC指導辦理研討會探究5G O-RAN架構下軟體資安 https://reurl.cc/l9X1z9 110年度資安案件缺失/觀察開立統計 https://iscb.nchu.edu.tw/2022/01/110top10.html?showComment=1645871901185 民團質疑公投電子系統未上線中選會：須確認資安 https://www.cna.com.tw/news/aipl/202202240295.aspx 台灣港務公司官網突故障下午2點搶修完畢 https://news.ltn.com.tw/news/life/breakingnews/3839872 東吳大學跨域整合產學共創洞悉未來趨勢 https://www.gvm.com.tw/article/87086 發展部7月掛牌運作　府院傳內定唐鳳出任首任部長 https://www.ctwant.com/article/169580 黃偉哲積極推動產業數位轉型力促南市廠商智慧生產 https://www.tainan.gov.tw/News_Content.aspx?n=13370&s=7874526 H.工控系統/ICS/SCADA/IOT/物聯網/車聯網/電動車/人工智慧/AI/ML/人臉辨識/醫療相關資安 broadcom NEXCOM NIO50 存在安全弱點 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2022-23992 Microweber 中存在操作系統命令注入弱點 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2022-0557 Nokia BTS TRS web console 存在授權問題弱點 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2021-31932 Qualcomm 多款產品存在安全弱點 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2021-30323 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2021-35069 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2021-30317 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2021-30322 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2021-35074 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2021-35077 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2021-35075 schneider-electric 存在 CWE-434 CWE-120：無限制上傳具有危險類型的文件弱點 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2021-22803 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2021-22802 tongda2000 通過DEVICE_LIST參數發現Tongda2000 v11.10在/mobile_seal/get_seal.php中存在SQL Injection弱點 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2022-24206 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2022-23902 韋萊韜悅攜手SEMI 及全球科技龍頭共同成立資安聯盟 https://reurl.cc/e6arGK 5G軟體安全研討會　NCC：政府帶頭提升資安 https://www.ftvnews.com.tw/news/detail/2022224F11M1 資安為能源轉型的重要環節 https://ctee.com.tw/industrynews/technology/600068.html 華電聯網推動 5G 智慧應用加速數位化願景與創新 https://reurl.cc/RjD5WD 華電聯網以「超乎想像」推動5G智慧應用 https://ctee.com.tw/industrynews/technology/599423.html 依產線機台型態打造網路端點防禦製造業資安告急　工廠網路佈防 https://www.netadmin.com.tw/netadmin/zh-tw/market/E26D820A89714C51BEF3371EACBE34F6 (Daily Issue)邊緣AI巨「猩」全球淘金　寇世斌組智慧城市異業同盟 https://www.digitimes.com.tw/tech/dt/n/shwnws.asp?CnlID=1&id=0000628537_BCU4D00X497XNU6GHIXEC ISA/IEC 62443：2018 工控系統資安認證工程師訓練課程(四日班) https://www.isoleader.com.tw/iso-training-courses/detail/222876 Moxa MXview網路管理軟體存在多個安全漏洞(CVE-2021-38452、38454、38456、38458及38460) https://www.klcg.gov.tw/tw/education/3522-251962.html Moxa MXview網路管理軟體存在多個安全漏洞 https://www.informationsecurity.com.tw/article/article_detail.aspx?aid=9727 英飛凌推出量子加密技術TPM晶片保護伺服器和聯網設備安全 https://reurl.cc/WkW6gx I.教育訓練網路時代人人要學的資安基礎必修課 (How Cybersecurity Really Works) https://www.tenlong.com.tw/products/9786263240384?list_name=p-r-zh_tw 不只是工程師才要懂的 App 資訊安全：取得資安檢測合格證書血淚史（iT邦幫忙鐵人賽系列書） https://news.pchome.com.tw/living/books/20220202/index-64375841669874292009.html 【資安管理國際證照懶人包】學習心得、考試要點一次整理！2022 轉職夢幻工作看這篇 https://buzzorange.com/techorange/2021/12/30/isaca/ CISSP考試心得 – Benson https://reurl.cc/GbWvxd CPSA(CREST Practitioner Security Analyst) 資安分析師考試心得 https://tech-blog.cymetrics.io/posts/huli/crest-cpsa-prepare/ EC-Council CEH v11 考試心得、改版資訊以及準備方向 2021、2022 https://reurl.cc/1oyEM8 CEH v11 考試心得與準備方式 https://blog.sean.taipei/2022/01/ceh 110年新進人員「校園資訊安全講座」教材 https://cc.nccu.edu.tw/p/406-1001-740,r18.php 【訓練教材D】資訊安全技術教育訓練教材 https://iscb.nchu.edu.tw/2019/07/d.html 109資通安全管理法數位教育訓練 https://reurl.cc/ARlmqp 110-1初級資訊安全工程師-資訊安全管理概論 https://yamol.tw/exam.php?id=104050 中大信息工程學系栽培資訊科技領導人才 https://reurl.cc/ARZKDK 伊雲谷、中山大學產學合作累積雲端資安人才能量 https://ctee.com.tw/industrynews/technology/587459.html SANS Cyber Aces Online Tutorials https://tutorials.cyberaces.org/tutorials.html Free Online Cybersecurity Courses (MOOCs) https://www.cyberdegrees.org/resources/free-online-courses/ Develop Your Cybersecurity Skills https://www.cybrary.it/catalog/cybersecurity/ Mobile App Security https://www.cybrary.it/course/mobile-app-security/ Introduction to Cybersecurity https://reurl.cc/bnaj6d How to Tackle SaaS Security Misconfigurations https://thehackernews.com/2021/11/how-to-tackle-saas-security.html How to Build a Security Awareness Training Program that Yields Measurable Results https://thehackernews.com/2021/11/how-to-build-security-awareness.html Common Attacks https://choson.lifenet.com.tw/?p=1174 6.近期資安活動及研討會資安新知科技研習課程-「資安鑑識課程-系列Ⅰ初級課程：元宇宙時代：資安時代發行虛擬貨幣與NFT 2022/3/4 https://docs.google.com/forms/d/1xTUMHW1yF6nIH7YsQVTpZXXMrn0wD9lovoqbmXHfBT4/viewform?edit_requested=true 科技、媒體、組織聯手共同防制不實訊息論壇 2022/3/11 https://acfd2019.kktix.cc/events/831e3194-copy-2 2022嘉藥反毒與資安機器人競賽 2022/3/12 https://reurl.cc/9OO7kj Flutter Festival Taipei 2022/3/16 https://www.meetup.com/Flutter-Taipei/events/283785315/ 國家高速網路與計算中心教育訓練「大數據程式開發平台(VM版本)」建置與開發實務課程 2022/3/18 https://edu.nchc.org.tw/course/one_course_introduction.asp?lms_auto_course_id=3972&from_course_list_url=homepage OSCP 高階滲透測試精進班 2022-02-12~2022-03-20 https://college.itri.org.tw/course/all-events/35FC13F1-05A3-44CF-85B1-2D01B6F92632.html 風險導向資安稽核 2022/7/20 https://www.cisanet.org.tw/Course/Detail/2756