2022.11.26 보안 이슈

==2022.11.26==

- 글로벌 해킹그룹 공격 동향 살펴보니... ‘사이버보안 대연합’ 2차 보고서 발표

http://www.boannews.com/media/view.asp?idx=111706

- [보.알.남] RAID, 훼손 위협으로부터 데이터 안정성 확보하기 위한 분산 전략 

http://www.boannews.com/media/view.asp?idx=111595&kind=&sub_kind=

- Emotet is back and delivers payloads like IcedID and Bumblebee 

https://securityaffairs.co/wordpress/138824/cyber-crime/emotet-is-back-nov-2022.html

- "사용자 데이터를 익명으로 보관한다는 애플의 주장은 거짓" 

https://www.itworld.co.kr/news/265942

- New Windows Server updates cause domain controller freezes, restarts

https://www.bleepingcomputer.com/news/microsoft/new-windows-server-updates-cause-domain-controller-freezes-restarts/?mibextid=Zxz2cZ

- All You Need to Know About Emotet in 2022

https://thehackernews.com/2022/11/all-you-need-to-know-about-emotet-in.html

- “해커 꼼짝마” 뛰는 라자루스 위에 나는 체이널리시스

http://www.coindeskkorea.com/news/articleView.html?idxno=82216

- Remote Code Execution Vulnerability Found in Windows Internet Key Exchange

https://www.infosecurity-magazine.com/news/rce-vulnerability-in-windows-ike/

- Phone numbers of 487 million WhatsApp users published on the internet

https://www.royalsblue.com/phone-numbers-of-487-million-whatsapp-users-published-on-the-internet/

- Update Chrome Browser Now to Patch New Actively Exploited Zero-Day Flaw

https://thehackernews.com/2022/11/update-chrome-browser-now-to-patch-new.html

- UK urges to disconnect Chinese security cameras in government buildings

https://securityaffairs.co/wordpress/138945/digital-id/uk-ban-chinese-security-cameras.html

- 랜섬엑스 랜섬웨어, 러스트로 다시 작성돼

https://www.boannews.com/media/view.asp?idx=111961&kind=1&sub_kind=

- 도커허브에서 1650개 이상의 악성 컨테이너 발견돼

https://www.boannews.com/media/view.asp?idx=111959&kind=1&sub_kind=

https://www.infosecurity-magazine.com/news/experts-find-1600-malicious-docker/

- 사이버 용병 단체 바하무트, 가짜 VPN 앱 통해 안드로이드 사용자 크리덴셜 훔쳐

https://www.boannews.com/media/view.asp?idx=111958&kind=1&sub_kind=

- 2023년, 사이버 보안 위협 발생시킬 수 있는 10가지 요인

https://www.dailysecu.com/news/articleView.html?idxno=141592

- "완벽한 보안 없다…공개출처정보로 취약점 지속 관리 필요"

https://zdnet.co.kr/view/?no=20221124134407

- 나이트호크의 해킹 도구화에 대한 경고 나오기 시작

https://www.boannews.com/media/view.asp?idx=111905&kind=1&sub_kind=

- 메타, 페이스북에서 진행된 여론 조작 배후 세력으로 미군 지목

https://www.boannews.com/media/view.asp?idx=111903&kind=1&sub_kind=

https://www.bleepingcomputer.com/news/security/meta-links-us-military-with-covert-facebook-influence-operation/

- 34개 러시아 해킹 그룹, 5천만 사용자의 비밀번호 훔쳐

https://www.boannews.com/media/view.asp?idx=111900&kind=1&sub_kind=

- 17년 전에 수명 마친 소프트웨어, 현대 ICS 공격에 활용되고 있다

https://www.boannews.com/media/view.asp?idx=111899&kind=1&sub_kind=

- 경북대, 4만6,000여명 개인정보 유출 사고 발생... 재학생 2명 소행

https://www.boannews.com/media/view.asp?idx=111896&kind=1&sub_kind=

- A security firm hacked malware operators, locking them out of their own C&C servers

https://www.techspot.com/news/96751-security-firm-hacked-malware-operators-locking-them-out.html

- Fake MSI Afterburner targets Windows gamers with miners, info-stealers

https://www.bleepingcomputer.com/news/security/fake-msi-afterburner-targets-windows-gamers-with-miners-info-stealers/

- 알골리아 API 키, 수많은 애플리케이션 통해 노출되고 있어

https://www.boannews.com/media/view.asp?idx=111855&kind=1&sub_kind=

- Let’s give a look at API vulnerabilities by reading the API Security Top 10 published by the Open Web Application Security Project (OWASP).

https://securityaffairs.co/wordpress/138879/security/5-api-vulnerabilities.html

- Hackers breach energy orgs via bugs in discontinued web server

https://www.bleepingcomputer.com/news/security/hackers-breach-energy-orgs-via-bugs-in-discontinued-web-server/

- 인터뷰 질문지 등 외교·안보 관련 문서로 위장한 악성 문서파일 유포

https://www.boannews.com/media/view.asp?idx=111850&kind=1&sub_kind=

- "결제 취소하려면 전화 주세요" 더 고도화되는 '콜백 피싱' 사기

https://www.itworld.co.kr/tags/195574/%EC%BD%9C%EB%B0%B1%ED%94%BC%EC%8B%B1/265864#csidxb7d18fbd5a4451588d2f25734913858 

- Android file manager apps infect thousands with Sharkbot malware

https://www.bleepingcomputer.com/news/security/android-file-manager-apps-infect-thousands-with-sharkbot-malware/

- Ducktail Hacker Group Evolves, Targets Facebook Business Accounts

https://www.infosecurity-magazine.com/news/ducktail-hackers-target-facebook/

- Firms Spend $1197 Per Employee Yearly to Address Cyber-Attacks

https://www.infosecurity-magazine.com/news/firms-dollar1197-per-employee/

- Vulnerable SDK components lead to supply chain risks in IoT and OT environments

https://www.microsoft.com/en-us/security/blog/2022/11/22/vulnerable-sdk-components-lead-to-supply-chain-risks-in-iot-and-ot-environments/

- Aurora Stealer Malware is becoming a prominent threat in the cybercrime ecosystem

https://securityaffairs.co/wordpress/138851/malware/aurora-stealer-malware.html

- Google Wins Lawsuit Against Russians Linked to Blockchain-based Glupteba Botnet

https://thehackernews.com/2022/11/google-wins-lawsuit-against-russians.html

- Top trends to watch out for in Data Theft in 2023

https://www.dqindia.com/top-trends-to-watch-out-for-in-data-theft-in-2023/

- 카카오 사태 잊었나? 케이뱅크·우체국·IBK기업은행 줄줄이 시스템 장애

https://www.boannews.com/media/view.asp?idx=111777&kind=1&sub_kind=

- Octocrypt, Alice, and AXLocker Ransomware, new threats in the wild

https://securityaffairs.co/wordpress/138783/malware/octocrypt-alice-axlocker-ransomware.html

- Google Identifies 34 Cracked Versions of Popular Cobalt Strike Hacking Toolkit in the Wild

https://thehackernews.com/2022/11/google-identifies-34-cracked-versions.html

- 새로운 랜섬웨어 액스락커, 디스코드 계정 노려

https://www.boannews.com/media/view.asp?idx=111775&kind=1&sub_kind=

- 옴론 PLC의 취약점, 고급 ICS 멀웨어가 노리기 시작해

https://www.boannews.com/media/view.asp?idx=111772&kind=1&sub_kind=

- 프록시낫셸 취약점에 대한 개념증명용 익스플로잇 코드 공개돼

https://www.boannews.com/media/view.asp?idx=111771&kind=1&sub_kind=

- ‘4000억원 이더리움’ 큰손 FTX 해커, 550억원어치 팔자 시세 뚝

https://www.donga.com/news/Inter/article/all/20221121/116598626/1

- 호주 정부의 보복 해킹 선언, 제대로 실현될 수 있을까?

https://www.boannews.com/media/view.asp?idx=111769&kind=1&sub_kind=

- 나의 전화번호는 어떻게 유출될까?

https://asec.ahnlab.com/ko/42357/