2022.11.05 보안 이슈

==2022.11.05==

- VPN 앱들을 통해 안드로이드 감염시키는 샌드스트라이크 멀웨어

http://www.boannews.com/media/view.asp?idx=111257

- 록빗 3.0 그룹, 탈레스로부터 데이터 훔쳤다고 주장

http://www.boannews.com/media/view.asp?idx=111222

- 예고됐던 오픈SSL 취약점, 다행히 하트블리드까지는 아니야

http://www.boannews.com/media/view.asp?idx=111229

- 오퍼레이어 APT, 아프리카의 금융 기관들 집중 공략

http://www.boannews.com/media/view.asp?idx=111302

- 정부 기관 근무자들을 겨냥한 피싱 공격, 급하게 증가 중

http://www.boannews.com/media/view.asp?idx=111255

- 기다리고 기다리던 오픈SSL의 취약점, 초고위험군에서 고위험군으로 격하

http://www.boannews.com/media/view.asp?idx=111226

- 세계적인 구리 제련 회사 아우루비스, 사이버 공격으로 휘청

http://www.boannews.com/media/view.asp?idx=111180

- 스타링크의 시그널 활용해 새로운 GPS 구축한 해커들

http://www.boannews.com/media/view.asp?idx=111139

- 6개월만에 Excel 파일을 통해 다시 유포 중인 Emotet 악성코드 

https://asec.ahnlab.com/ko/41365/

- 29 malicious PyPI packages spotted delivering the W4SP Stealer 

https://securityaffairs.co/wordpress/138113/hacking/pypi-packages-delivers-w4sp-stealer.html

- A Very Powerful Clipboard: Analysis of a Samsung in-the-wild exploit chain 

https://googleprojectzero.blogspot.com/2022/11/a-very-powerful-clipboard-samsung-in-the-wild-exploit-chain.html

- Microsoft Warns of Uptick in Hackers Leveraging Publicly-Disclosed 0-Day Vulnerabilities

https://thehackernews.com/2022/11/microsoft-warns-of-uptick-in-hackers.html

- 다크웹에 떠도는 韓군장병정보…‘나라사랑포털’ 로그인 정보 유출돼

https://mobile.newsis.com/view.html?ar_id=NISX20221104_0002074531#_enliple

- Robin Banks phishing service returns to steal banking accounts

https://www.bleepingcomputer.com/news/security/robin-banks-phishing-service-returns-to-steal-banking-accounts/

- “Disturbing” Rise in Nation State Activity, Microsoft Reports

https://www.infosecurity-magazine.com/news/disturbing-nation-state-attacks/

- 5년에 걸쳐 진행된 사이버 보험 관련 재판, 결론에 가까워졌다

https://www.boannews.com/media/view.asp?idx=111321&kind=1&sub_kind=

- 수백 개의 미국 뉴스 사이트, 공급망 공격에 당해

http://www.boannews.com/media/view.asp?idx=111256

https://securityaffairs.co/wordpress/138052/cyber-crime/supply-chain-attack-fakeupdates.html

- MS의 애저 코스모스 DB에 영향주는 초고위험도 취약점 발견돼

http://www.boannews.com/media/view.asp?idx=111223

- TikTok Confirms Chinese Staff Can Access UK and EU User Data

https://www.infosecurity-magazine.com/news/tiktok-say-chinese-staff-can/

- Black Basta ransomware gang linked to the FIN7 hacking group

https://www.bleepingcomputer.com/news/security/black-basta-ransomware-gang-linked-to-the-fin7-hacking-group/

- 드롭박스, 깃허브 리포지터리 130여 개 도난 당해

http://www.boannews.com/media/view.asp?idx=111224

https://securityaffairs.co/wordpress/137975/hacking/dropbox-account-hacked-2fa-jpg.html

- Samsung Galaxy Store flaw could have allowed installing malicious apps on target devices

https://securityaffairs.co/wordpress/137922/mobile-2/samsung-galaxy-store-flaw.html

- [bnTV] 요즘 가장 악명이 높은 랜섬웨어 해커조직 4곳은?

https://www.boannews.com/media/view.asp?idx=111183&kind=1&sub_kind=

- 576개 기업으로 침투하는 경로 알려주고 400만 달러 챙기는 해커들

http://www.boannews.com/media/view.asp?idx=111177

https://www.bleepingcomputer.com/news/security/hackers-selling-access-to-576-corporate-networks-for-4-million/

- NSA shares supply chain security tips for software suppliers

https://www.bleepingcomputer.com/news/security/nsa-shares-supply-chain-security-tips-for-software-suppliers/

- VM웨어, CVE-2021-39144 취약점의 익스플로잇 코드 공개됐다고 경고

http://www.boannews.com/media/view.asp?idx=111176

https://securityaffairs.co/wordpress/137912/security/vmware-cve-2021-39144-exploit.html

- 윈도 MOTW 제로데이 취약점, 비공식적으로 패치돼

http://www.boannews.com/media/view.asp?idx=111140

https://securityaffairs.co/wordpress/137900/hacking/mark-of-the-web-bypass-0day.html

- 리즈 트러스 전 영국 총리의 핸드폰 해킹 사고 뒤늦게 알려져

http://www.boannews.com/media/view.asp?idx=111138

https://securityaffairs.co/wordpress/137826/intelligence/liz-truss-phone-hacked.html

- 소프트웨어 물자표, 지금 상태로는 공급망 공격 막지 못한다

https://www.boannews.com/media/view.asp?idx=110914&kind=1&sub_kind=

- 네이버 아이디 보호조치 해제로 위장한 피싱 메일 유포

https://www.boannews.com/media/view.asp?idx=111129&kind=1&sub_kind=

- Air New Zealand warns of an ongoing credential stuffing attack

https://securityaffairs.co/wordpress/137793/cyber-crime/air-new-zealand-breach.html

- New open-source tool scans public AWS S3 buckets for secrets

https://www.bleepingcomputer.com/news/security/new-open-source-tool-scans-public-aws-s3-buckets-for-secrets/