2022.10.01 보안 이슈

==2022.10.01==

- 아메리칸 항공, 직원 MS 365 계정 해킹 후 데이터 탈취 피해 발생 

https://www.codingworldnews.com/news/articleView.html?idxno=12578

- 다중 인증 했는데도 털렸다? 눈 뜨고 코 베이는 ‘MFA 피로’ 공격 

https://www.ciokorea.com/news/256786

- "검색 결과에 지뢰 숨겨두는" SEO 포이즈닝 공격 경보 발령 

https://www.itworld.co.kr/news/256984

- 국가보안시설인데…내부 모습까지 인터넷에 다 나온다 

https://news.sbs.co.kr/news/endPage.do?news_id=N1006912287

- Hackers Using PowerPoint Mouseover Trick to Infect System with Malware 

https://thehackernews.com/2022/09/hackers-using-powerpoint-mouseover.html

- AI·ML 개발자에게 유용한 오픈소스 프로젝트 13선 

https://www.itworld.co.kr/news/257884

- 中 “미 정부가 中 주요 공과대학 해킹했다’..해커 13명 신원공개 

https://nownews.seoul.co.kr/news/newsView.php?id=20220929601001

- 북 '금융권 해킹 능력' 세계 1위...종합 사이버 역량은 14위

http://weekly.chosun.com/news/articleView.html?idxno=22319

- Okta ‘Breaches’ Weren’t Really Breaches

https://www.esecurityplanet.com/applications/okta-breaches/

- MS “북 해커, 미∙영∙러 국방∙항공우주∙IT 기업 공격”

https://www.rfa.org/korean/in_focus/nk_nuclear_talks/nkhackers-09302022161205.html

- CISA: Hackers exploit critical Bitbucket Server flaw in attacks

https://www.bleepingcomputer.com/news/security/cisa-hackers-exploit-critical-bitbucket-server-flaw-in-attacks/

- Fake US govt job offers push Cobalt Strike in phishing attacks

https://www.bleepingcomputer.com/news/security/fake-us-govt-job-offers-push-cobalt-strike-in-phishing-attacks/

- 새 MS 익스체인지 제로데이, 이미 공격에 활용되고 있어

https://www.boannews.com/media/view.asp?idx=110350&kind=1&sub_kind=

https://www.bleepingcomputer.com/news/security/new-microsoft-exchange-zero-days-actively-exploited-in-attacks/

https://thehackernews.com/2022/10/state-sponsored-hackers-likely.html

https://www.microsoft.com/security/blog/2022/09/30/analyzing-attacks-using-the-exchange-vulnerabilities-cve-2022-41040-and-cve-2022-41082/

- Hacking group hides backdoor malware inside Windows logo image

https://www.bleepingcomputer.com/news/security/hacking-group-hides-backdoor-malware-inside-windows-logo-image/

https://securityaffairs.co/wordpress/136477/apt/witchetty-apt-steganography.html

- 북한 정부 지원 받는 해커들, 일반 소프트웨어 뜯어 고쳐

https://www.boannews.com/media/view.asp?idx=110349&kind=1&sub_kind=

https://www.bleepingcomputer.com/news/security/microsoft-lazarus-hackers-are-weaponizing-open-source-software/

- VM웨어 환경 침투하는 은밀한 멀웨어 발견돼

https://www.boannews.com/media/view.asp?idx=110346&kind=1&sub_kind=

https://www.bleepingcomputer.com/news/security/new-malware-backdoors-vmware-esxi-servers-to-hijack-virtual-machines/

- 윈도와 리눅스 공격하는 새로운 고 언어 멀웨어 출현

https://www.boannews.com/media/view.asp?idx=110295&kind=1&sub_kind=

- 포스트 익스플로잇 해킹 도구인 브루트라텔, 활발히 공유되는 중

https://www.boannews.com/media/view.asp?idx=110296&kind=1&sub_kind=

https://www.bleepingcomputer.com/news/security/hackers-now-sharing-cracked-brute-ratel-post-exploitation-kit-online/

- Auth0 warns that some source code repos may have been stolen

https://www.bleepingcomputer.com/news/security/auth0-warns-that-some-source-code-repos-may-have-been-stolen/

- Stealthy hackers target military and weapons contractors in recent attack

https://www.bleepingcomputer.com/news/security/stealthy-hackers-target-military-and-weapons-contractors-in-recent-attack/

- 北 해커조직 라자루스, 취약한 ‘BYOVD’ 드라이버 이용해 보안 시스템 노렸다

https://www.boannews.com/media/view.asp?idx=110242&kind=1&sub_kind=

- North Korea-linked Lazarus continues to target job seekers with macOS malware

https://securityaffairs.co/wordpress/136297/apt/lazarus-apt-targeting-macos.html

- Optus hacker apologizes and allegedly deletes all stolen data(API 해킹사례)

https://www.bleepingcomputer.com/news/security/optus-hacker-apologizes-and-allegedly-deletes-all-stolen-data/

- Pass-the-Hash Attacks and How to Prevent them in Windows Domains

https://www.bleepingcomputer.com/news/security/pass-the-hash-attacks-and-how-to-prevent-them-in-windows-domains/

- 입사지원 위장 메일로 유포 중인 NSIS형태의 LockBit 3.0 랜섬웨어

https://www.ahnlab.com/kr/site/securityinfo/secunews/secuNewsView.do?curPage=1&menu_dist=2&seq=32407

- 삼성전자 프랑스 트위터 계정 해킹, 여러 이미지 합성 상태로 게시

https://www.boannews.com/media/view.asp?idx=110243&kind=1&sub_kind=

- 미국 잡지사 패스트컴파니의 애플 관련 계정 해킹 당해

https://www.boannews.com/media/view.asp?idx=110298&kind=1&sub_kind=

- 캐나다 배우 트위터 계정 해킹…ADA 사칭 스캠에 악용

https://www.blockmedia.co.kr/archives/259207

- Researchers Identify 3 Hacktivist Groups Supporting Russian Interests

https://thehackernews.com/2022/09/researchers-identify-3-hacktivist.html

- UK Police Arrest Alleged GTA 6 Hacker

https://www.extremetech.com/gaming/339821-uk-police-arrest-alleged-gta-6-hacker

- 개발자 노리는 해커들, 협동 개발 플랫폼에서 도사리고 있어

https://www.boannews.com/media/view.asp?idx=110166&kind=1&sub_kind=

- Ransomware Affiliates Adopt Data Destruction

https://www.infosecurity-magazine.com/news/ransomware-affiliates-adopt-data/