2022.12.17 보안 이슈

==2022.12.17==

- 2023년, 진화하는 랜섬웨어와 기업사칭 피싱이 당신을 노린다 

http://www.boannews.com/media/view.asp?idx=112473&kind=&sub_kind=

- “보안의 가장 약한 고리를 노린다” 피싱의 이해와 대응 방안

https://www.itworld.co.kr/techlibrary/269427

- “2023년, 홈오피스·SW공급망·클라우드 보안 사각지대 겨냥 공격 증가” 

https://www.dailysecu.com/news/articleView.html?idxno=142167

- 북한 IT 엔지니어, 구인구직 사이트 통해 ‘외화벌이’ 

http://www.boannews.com/media/view.asp?idx=112471&kind=&sub_kind=

- 빠르게 증가하는 랜섬웨어의 수, 2023년에도 큰 문제 될 가능성 높다

http://www.boannews.com/media/view.asp?idx=112514

- 온라인 중고 레고 시장 브릭링크에서 기초적인 API 취약점 발견돼

https://www.boannews.com/media/view.asp?idx=112675&kind=1&sub_kind=

- Agenda Ransomware Switches to Rust to Attack Critical Infrastructure

https://www.infosecurity-magazine.com/news/agenda-ransomware-switch-to-rust/

- GitHub Announces Free Secret Scanning for All Public Repositories

https://thehackernews.com/2022/12/github-announces-free-secret-scanning.html

- Goodbye SHA-1: NIST Retires 27-Year-Old Widely Used Cryptographic Algorithm

https://thehackernews.com/2022/12/goodbye-sha-1-nist-retires-27-year-old.html

- 최신 닷넷 패커의 종류 및 국내 유포 동향

https://asec.ahnlab.com/ko/44066/

- 기생충 같은 사이버 범죄자들, 자기들끼리도 기생하고 잡아먹는다

http://www.boannews.com/media/view.asp?idx=112519

- NHN페이코의 서명키 유출 둘러싼 오해와 진실... ‘공포마케팅’ 논란 커져

https://www.boannews.com/media/view.asp?idx=112602&kind=1&sub_kind=

- Abusing JSON-Based SQL 

https://www.imperva.com/blog/abusing-json-based-sql/

- Hackers target Japanese politicians with new MirrorStealer malware

https://www.bleepingcomputer.com/news/security/hackers-target-japanese-politicians-with-new-mirrorstealer-malware/

-  2023년 전망하는 해커의 주요 공격 유형 5가지

http://www.boannews.com/media/view.asp?idx=112461

- 누겟 개발자 생태계에 떨어진 폭탄, 자동화 기술로 만들어진 악성 패키지들 

http://www.boannews.com/media/view.asp?idx=112598&kind=&sub_kind=

https://thehackernews.com/2022/12/hackers-bombard-open-source.html

- 실제 포탈 사이트와 유사하게 동작하는 피싱 페이지 주의!

https://blog.alyac.co.kr/5016

- Hacking Using SVG Files to Smuggle QBot Malware onto Windows Systems

https://thehackernews.com/2022/12/hacking-using-svg-files-to-smuggle-qbot.html

- Microsoft 인증서로 서명된 악성코드 유포 주의

https://asec.ahnlab.com/ko/44266/

https://www.bleepingcomputer.com/news/microsoft/microsoft-signed-malicious-windows-drivers-used-in-ransomware-attacks/

- 시트릭스와 NSA, 시트릭스 ADC와 게이트웨이의 제로데이 취약점에 대해 경고

https://www.boannews.com/media/view.asp?idx=112545&kind=1&sub_kind=

https://infotechlead.com/security/hacking-group-apt5-attacks-networking-gear-from-citrix-75941

- 우버에서 또 데이터 침해 사고 발생...해커는 민감 정보 공개 중

https://www.boannews.com/media/view.asp?idx=112549&kind=1&sub_kind=

- 애플, 아이폰 공격 허용하던 웹킷 제로데이 취약점 패치

https://www.boannews.com/media/view.asp?idx=112547&kind=1&sub_kind=

https://thehackernews.com/2022/12/new-actively-exploited-zero-day.html

- 구글, 오픈소스 취약점 스캔해 주는 내부 도구를 오픈소스로 전환

https://www.boannews.com/media/view.asp?idx=112546&kind=1&sub_kind=

- 2022년에 사용됐던 멀웨어 중 95.6%가 윈도 겨냥했다

https://www.boannews.com/media/view.asp?idx=112510&kind=1&sub_kind=

- 리눅스 사용자들 겨냥한 대규모 암호화폐 채굴 캠페인 발견돼

https://www.boannews.com/media/view.asp?idx=112509&kind=1&sub_kind=

https://securityaffairs.co/wordpress/139554/cyber-crime/cryptocurrency-mining-campaign-chaos-malware.html

- 포티넷, 자사 VPN 제품에서 발견된 취약점 긴급히 패치

https://www.boannews.com/media/view.asp?idx=112506&kind=1&sub_kind=

https://www.bleepingcomputer.com/news/security/fortinet-says-ssl-vpn-pre-auth-rce-bug-is-exploited-in-attacks/

- 다양한 플랫폼을 악용하는 Vidar Stealer

https://asec.ahnlab.com/ko/43871/

- Twitter confirms recent user data leak is from 2021 breach

https://www.bleepingcomputer.com/news/security/twitter-confirms-recent-user-data-leak-is-from-2021-breach/

- New North Korean cyber spy tactic: deceiving foreign experts into writing research

https://tvpworld.com/65052750/new-north-korean-cyber-spy-tactic-deceiving-foreign-experts-into-writing-research

- IIS modules: The evolution of web shells and how to detect them 

https://www.microsoft.com/en-us/security/blog/2022/12/12/iis-modules-the-evolution-of-web-shells-and-how-to-detect-them/